nagelstudio-bretten.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:17:87:0b:56:e6:2f:ba:7c:99:4a:1f:70:e9:27:ef:f8:00 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=nagelstudio-bretten.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:17:87:0b:56:e6:2f:ba:7c:99:4a:1f:70:e9:27:ef:f8:00Serial Number (int): 269342856891683206661864884743304754755584
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: e1:97:a9:05:26:b3:91:69:15:84:a5:05:59:ef:06:0b:ef:62:1f:2e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 3d:0c:06:16:04:76:8e:6b:90:c1:f8:9e:64:51:7d:3e:0a:ff:cd:75
Fingerprint (sha256): 30:e6:fe:0a:5f:2e:0f:91:95:37:e0:e6:8b:cd:48:0c:db:75:ac:1a:a5:e7:49:91:80:14:49:dd:44:c6:29:88
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate nagelstudio-bretten.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nagelstudio-bretten.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
nagelstudio-bretten.de
www.nagelstudio-bretten.de
www.nagelstudio-bretten.de
Other certificates including the domain name nagelstudio-bretten.de
(limited to 100 certificates)
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
nagelstudio-bretten.de
Certificate
The complete raw certificate details for nagelstudio-bretten.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGKzCCBROgAwIBAgISAxeHC1bmL7p8mUofcOkn7/gAMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzA4MDQwNTQxMDBaFw0x NzExMDIwNTQxMDBaMCExHzAdBgNVBAMTFm5hZ2Vsc3R1ZGlvLWJyZXR0ZW4uZGUw ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDeC5WE9JdSsatPg3AKzYGe 8p9V4Tyqqn4mgdad+KzsL5nF85tsMfLOYiyYgJmX7nzfMm1mZZXItuSjvpIWHPBw XjZzCiBmTYoDaHKv9BGznUdfbkNylT915zlSlxBn4oc2dkQbQW1WbT75/6jqloxd PVbmIQBXmKx8oc39cknJxNNhphk9yBVrPARyEShpECaAxN3f4iEGkrUlWLfoSTRg eDTAoDZZfADUpjKaynKGuj4u5ACHQ6F/X24jQENL97DHGgwRLN2uRrtx8rGeAy+x jsQ05TsG8tm1D6HFEbKXsBOT5ySwWuJgrm0DKSEySOzehXCCDwCk0LK6qGK7VX48 suraUAES1B3Mde3AAKhjQpwXbeyR7NzTFcThYHXBp2xysePa7mfwaDnJgluTIl7J Pemckay9cIGfUfxi701gsZOshHwrl8nAwk3MU0tG49VaEfOITSqN2iVwjsvh5XQW PBh0xHZFLboAFM8WJJcid3fYM1j8FLYIa9RPLEgVAyg7qPmqqCMcSoLaU5FEf+zP qYAhSwU9Hgvpiko0q6FFUfwBn9hUHrijU9sqJ6qb+1R62LsI40SdaAN0j/Iv41Iy vBIGI8PZ0XWwQFO51LFv/BE+yO+KjJvQGyuO2sZo+frVPLfH9670PzoAog2q9fYo kIVcm/XpVnNGt+6m8YcRIwIDAQABo4ICMjCCAi4wDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBThl6kFJrORaRWEpQVZ7wYL72IfLjAfBgNVHSMEGDAWgBSoSmpjBH3duubR ObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9v Y3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9j ZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMD0GA1UdEQQ2MDSCFm5hZ2Vsc3R1 ZGlvLWJyZXR0ZW4uZGWCGnd3dy5uYWdlbHN0dWRpby1icmV0dGVuLmRlMIH+BgNV HSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggrBgEFBQcC ARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwICMIGeDIGb VGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBieSBSZWx5 aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBDZXJ0 aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5vcmcv cmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEBAAlrTqF/c2Y2cD77Vrhh92ii HoqwmIFvWVN1E0B4kd6FXpanLJB9gaQK/ZzlRmAYeGuiHkMrKgUiMCNd/QcbHbr4 wRtMmuBC/zvde0ToCkciCVh8mRDnzFIs4BzblbHJstSSjFR6xy3tr15AiwCTsV2T 909qIBewNSTCxAbCZZXp0BY9xPmglyCza1/TcEXkYg38cEj+Q8CFmJk+lRaUJ2xH Lxc5X9kfa1xBc8+TKe62ic4P9PXa+2uTC4Pko5YiE6fOTorH3qCwnxwQgPmDUXjc qENnKktbX80W3jc1oRYOnP0bm3VHW1uizBwG2XLU9QiHmok8xltwdMHJSXggOP0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3guVhPSXUrGrT4NwCs2B nvKfVeE8qqp+JoHWnfis7C+ZxfObbDHyzmIsmICZl+583zJtZmWVyLbko76SFhzw cF42cwogZk2KA2hyr/QRs51HX25DcpU/dec5UpcQZ+KHNnZEG0FtVm0++f+o6paM XT1W5iEAV5isfKHN/XJJycTTYaYZPcgVazwEchEoaRAmgMTd3+IhBpK1JVi36Ek0 YHg0wKA2WXwA1KYymspyhro+LuQAh0Ohf19uI0BDS/ewxxoMESzdrka7cfKxngMv sY7ENOU7BvLZtQ+hxRGyl7ATk+cksFriYK5tAykhMkjs3oVwgg8ApNCyuqhiu1V+ PLLq2lABEtQdzHXtwACoY0KcF23skezc0xXE4WB1wadscrHj2u5n8Gg5yYJbkyJe yT3pnJGsvXCBn1H8Yu9NYLGTrIR8K5fJwMJNzFNLRuPVWhHziE0qjdolcI7L4eV0 FjwYdMR2RS26ABTPFiSXInd32DNY/BS2CGvUTyxIFQMoO6j5qqgjHEqC2lORRH/s z6mAIUsFPR4L6YpKNKuhRVH8AZ/YVB64o1PbKieqm/tUeti7CONEnWgDdI/yL+NS MrwSBiPD2dF1sEBTudSxb/wRPsjvioyb0BsrjtrGaPn61Ty3x/eu9D86AKINqvX2 KJCFXJv16VZzRrfupvGHESMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 269342856891683206661864884743304754755584 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-04 05:41:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-02 05:41:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nagelstudio-bretten.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 905865587950536141743193784089104688153140115197830316612252695320013477017723604007130306712276782738761083126613517249201941887992292524349886806816332314834968056729043117367348741384434966352387659512266215499319630173513795851772293103229061822004206174168906631609748889310092031054752034076647010193803239453236883567905660855848146634815246794060981389438836261254482162024278764358448196385817427761996463486155326250956884607060913486983004983606763832520847288862388221121074052198039565464372011821340520886579206002035322105338199470186973628140813767185021427036114180439766091813133577575371920990406544370354687177680380406335782685206201393738411986096698800702769921777990202245276418313033714869262192297103669587919591278934788787881778732063513713988362507581147594309470421932387675911871514420560743267301622314096183878643387172181839055945084754831902965517536805956991621036905218935524000329394753180726806738159423147742859389570521100973933025798789915574306655862359928251262031722304330587457072219688098702107874084770271944747420996825578165826007823556261897300446284885311966879606274202790798173440433242468644616358066333193679495213079527683643359799959250629035369334431821985896266868680233251 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e197a90526b391691584a50559ef060bef621f2e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nagelstudio-bretten.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nagelstudio-bretten.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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