*.rms-online.de
Issued by RapidSSL SHA256 CA - G4
About this certificate
This digital certificate with serial number 10:f2 was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=*.rms-online.de,OU=GT54340565+OU=See www.rapidssl.com/resources/cps (c)15+OU=Domain Control Validated - RapidSSL(R)
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 10:f2Serial Number (int): 4338
Serial Number lenght: 13 bits, 2 octets
SubjectKeyId:
AuthorityKeyId: f3:b5:56:0c:c4:09:b0:b4:cf:1f:aa:f9:dd:23:56:f0:77:e8:a1:f9
Fingerprint (sha1): a0:e7:7d:ae:59:65:87:2f:07:91:5e:f0:df:6c:72:b2:34:b9:02:27
Fingerprint (sha256): 37:78:6e:30:f7:34:b3:c2:d8:85:37:69:14:f8:40:43:2d:61:53:fc:d6:a6:54:93:73:4f:01:33:7a:1b:4c:81
Issuing Certificate URL: http://gz.symcb.com/gz.crt
Revocation information
OCSP Server: http://gz.symcd.comCRL Distribution Point: http://gz.symcb.com/gz.crl
Check the revocation status for certificate *.rms-online.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.rms-online.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.rms-online.de
rms-online.de
rms-online.de
Other certificates including the domain name rms-online.de
(limited to 100 certificates)
x3.rms-online.de
*.rms-online.de
*.rms-online.de
x7.rms-online.de
*.rms-online.de
x3.rms-online.de
naccontrol.rms-online.de
x3.rms-online.de
*.rms-online.de
x2.rms-online.de
daten.rms-online.de
x2.rms-online.de
*.rms-online.de
*.rms-online.de
x1.rms-online.de
x3.rms-online.de
*.rms-online.de
x2.rms-online.de
x3.rms-online.de
x2.rms-online.de
*.rms-online.de
*.rms-online.de
x7.rms-online.de
*.rms-online.de
x3.rms-online.de
naccontrol.rms-online.de
x3.rms-online.de
*.rms-online.de
x2.rms-online.de
daten.rms-online.de
x2.rms-online.de
*.rms-online.de
*.rms-online.de
x1.rms-online.de
x3.rms-online.de
*.rms-online.de
x2.rms-online.de
x3.rms-online.de
x2.rms-online.de
Certificate
The complete raw certificate details for *.rms-online.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgICEPIwDQYJKoZIhvcNAQELBQAwRzELMAkGA1UEBhMCVVMx FjAUBgNVBAoTDUdlb1RydXN0IEluYy4xIDAeBgNVBAMTF1JhcGlkU1NMIFNIQTI1 NiBDQSAtIEc0MB4XDTE1MDgyNzE4MzAyNloXDTE4MDgyOTA4NTkwNlowgZMxEzAR BgNVBAsTCkdUNTQzNDA1NjUxMTAvBgNVBAsTKFNlZSB3d3cucmFwaWRzc2wuY29t L3Jlc291cmNlcy9jcHMgKGMpMTUxLzAtBgNVBAsTJkRvbWFpbiBDb250cm9sIFZh bGlkYXRlZCAtIFJhcGlkU1NMKFIpMRgwFgYDVQQDDA8qLnJtcy1vbmxpbmUuZGUw ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDN9tbh5lghKUeatZbGAmI9 PC10CLwl3W8oBBaWoNy5Z7RejGPrqhppzEzRm+6ZCfiQiv5Nxnfcu9mgP0bcsHBQ VbHbCO2cgXziTql/vO0WUzzNIunH24H8JqUcWQb+c2nAwgD6oP+p2K4lLGAFaMZh ytb7Ae1HdKwa6g6Jk5k7rILnLYI7+rpbYTilY9mQ7aZ4+1UijJGtv15g1grI54XV D9ZRlkE6fLWDSjCgQhtXsrdbh006p4SxbBqQ0lUJhuoCFjeb4sT6HKk4/MHC60Tf znGjF+MoPdxECtdWeEj/Bt2YY9OApVAbxWgSG7SkGwIyfCIcZJPhL4DW8W6itzHZ d9Lp4fxpLUWhL7t1QU4uLqO9GduuVd5Wo3Oq/WT+289S3q+fjy5hdc22QKuvQgRA gHfAjfNh45xcEE8Qm30etwg0o8OzkYGUWPzmZW7znb7yucbnv/hQlyvx2Ty9+RU+ 6VZFC38RLqG/yujW79HUwki0DHvS2tq6Uu6j5SQJ8aQEfCu4VY7kbPq6evjZF1fo fwqh09QrfR4i3APqcayg76BlXM2ZjIbY2ckpJFyFWL9q+hUytIE2XbWJVbJuxe7k aBaQzdfPhyKjsW9VvjlQP8BPZoVwfFeWKOqAsV1XOSE4daRGmF/a7RFQczRwJHX5 bmMBBGEtbVbEb4k4aEwbBwIDAQABo4IBVjCCAVIwHwYDVR0jBBgwFoAU87VWDMQJ sLTPH6r53SNW8HfoofkwVwYIKwYBBQUHAQEESzBJMB8GCCsGAQUFBzABhhNodHRw Oi8vZ3ouc3ltY2QuY29tMCYGCCsGAQUFBzAChhpodHRwOi8vZ3ouc3ltY2IuY29t L2d6LmNydDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMCkGA1UdEQQiMCCCDyoucm1zLW9ubGluZS5kZYINcm1zLW9ubGluZS5k ZTArBgNVHR8EJDAiMCCgHqAchhpodHRwOi8vZ3ouc3ltY2IuY29tL2d6LmNybDAM BgNVHRMBAf8EAjAAMEEGA1UdIAQ6MDgwNgYGZ4EMAQIBMCwwKgYIKwYBBQUHAgEW Hmh0dHBzOi8vd3d3LnJhcGlkc3NsLmNvbS9sZWdhbDANBgkqhkiG9w0BAQsFAAOC AQEAMPSCAycWy9BllJJN2aY41HYu71cZvkqNRA6dfrzIcmRef1YRXtTl/+kfijVh 4ZbxsDxpf8jvIsxSGapTB0G+JgfvciKOR8LyjSfPMLTb7JE+TnHCPQIFY69arsnz InGbmhGNdQDu5gvyiZ3CfYfZQ4gGnMFejuYVTc4BIFrujUpI92rEdWNTPU5ukLwa LXJzkSxG+qwg1TffHzoJW/EFgBZdvnoCe/uz296M7f03FKwgTFBwTeCZcvdHpulU QQxbRZAryVALNjgtnEta4SGfdjykSSl9xaHxYuECeA7/kSgOjf6Vy61l0MRqIc7u pydP0r6n2+Cnxh8jG3u5GMefdw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzfbW4eZYISlHmrWWxgJi PTwtdAi8Jd1vKAQWlqDcuWe0Xoxj66oaacxM0ZvumQn4kIr+TcZ33LvZoD9G3LBw UFWx2wjtnIF84k6pf7ztFlM8zSLpx9uB/CalHFkG/nNpwMIA+qD/qdiuJSxgBWjG YcrW+wHtR3SsGuoOiZOZO6yC5y2CO/q6W2E4pWPZkO2mePtVIoyRrb9eYNYKyOeF 1Q/WUZZBOny1g0owoEIbV7K3W4dNOqeEsWwakNJVCYbqAhY3m+LE+hypOPzBwutE 385xoxfjKD3cRArXVnhI/wbdmGPTgKVQG8VoEhu0pBsCMnwiHGST4S+A1vFuorcx 2XfS6eH8aS1FoS+7dUFOLi6jvRnbrlXeVqNzqv1k/tvPUt6vn48uYXXNtkCrr0IE QIB3wI3zYeOcXBBPEJt9HrcINKPDs5GBlFj85mVu852+8rnG57/4UJcr8dk8vfkV PulWRQt/ES6hv8ro1u/R1MJItAx70traulLuo+UkCfGkBHwruFWO5Gz6unr42RdX 6H8KodPUK30eItwD6nGsoO+gZVzNmYyG2NnJKSRchVi/avoVMrSBNl21iVWybsXu 5GgWkM3Xz4cio7FvVb45UD/AT2aFcHxXlijqgLFdVzkhOHWkRphf2u0RUHM0cCR1 +W5jAQRhLW1WxG+JOGhMGwcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4338 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA - G4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-08-27 18:30:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-29 08:59:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT54340565' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)15' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.rms-online.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 840260693438478593782163061228698686877195505005718261730801241706928050276589762043839116172440441451743634836381119202955581007262476633277663228557048728505725669717190016744962409879303130067335803853634185364320460942181247426540109047439031149794036845811369661070815455091491387014428508268006314838250550851547979914343842019571226533280899766812978477225759584508678316770503298461877641780681436165465701185070510063099174180903246946090144964344263454827545057177729017868976453181756276014742483913558882942624905181029210659331413809617858252138685474181677028529390095484397792747243151164791718874039006421491585338687691154051905282560823165845348268952833485656538435457017780671498049349851631198693956945938777713363940179292491484327965092319290510042381991948165683479785645006275689001188690960707516634000491683230093351042537751636762104445574957653913122160646136853474594736966397723319631604639284050277149278207945651909302154250981180283380929033378137558233621492068799566484655752095449830341049955210868853281427923410749966466945944383863472324784470346394719068401959115915222646213084984669486922275915553587566642314548231064362697476020472317099443849104410339969860239254339056464474714124589831 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f3b5560cc409b0b4cf1faaf9dd2356f077e8a1f9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gz.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gz.symcb.com/gz.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rms-online.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rms-online.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gz.symcb.com/gz.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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