habgmbh.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:ee:0a:43:bb:30:15:c3:11:fd:5b:eb:21:d6:87:a2:b6:97 was issued on by Let's Encrypt.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=habgmbh.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:ee:0a:43:bb:30:15:c3:11:fd:5b:eb:21:d6:87:a2:b6:97Serial Number (int): 342337705082931747930577015156288816068247
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 14:be:f3:a9:f0:44:57:28:c3:14:5c:67:85:87:92:aa:39:f9:bc:de
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ba:f7:c2:6e:a9:da:34:f0:8f:31:04:54:7f:21:84:e0:40:a9:60:0f
Fingerprint (sha256): 39:e0:81:aa:ca:bf:02:8d:1b:1f:a1:98:53:92:97:a6:33:13:d3:34:89:30:43:88:aa:66:d1:b7:78:15:ba:54
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate habgmbh.de
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for habgmbh.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api.habgmbh.de
backend.habgmbh.de
cron.habgmbh.de
hab.api.itool4.net
hab.b01.itool4.net
hab.cron.itool4.net
hab.f01.itool4.net
habgmbh.de
www.habgmbh.de
backend.habgmbh.de
cron.habgmbh.de
hab.api.itool4.net
hab.b01.itool4.net
hab.cron.itool4.net
hab.f01.itool4.net
habgmbh.de
www.habgmbh.de
Other certificates including the domain name habgmbh.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for habgmbh.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5TCCBM2gAwIBAgISA+4KQ7swFcMR/VvrIdaHoraXMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMjMwMTAzMDlaFw0y MDAzMjIwMTAzMDlaMBUxEzARBgNVBAMTCmhhYmdtYmguZGUwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQCw4ryPYkuhJ+OvIA93ok3AfoZ8hx8cxvGndxk3 tR1li84iDIlYlrla51n3TM3XCyIHvD626fPLf/qtkhwLP6r/OWavYWzq5Yb3mls8 Ik0bQic+7su9VThvLkEDLohPoDGH0ZqlU4eJIUDzm25wYw4ck5egktfxwPVLW0f7 ep+vlNlcYCpqlosLk1xPGuRo4CK5gHYmkR81YhuSVSbzeFS7Z9/OqI3JPL3qicPt 4dxtC2eZIaMumikRM4D5ftq7LJPW8UUO9R3NsvksuqUH/ql6XlV70NUhtXBr3aXO 6HO37hgP7weA4yQiqHFN8bamkCkSCyKzalt0QDWJM8g+QdQFAgMBAAGjggL4MIIC 9DAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFBS+86nwRFcowxRcZ4WHkqo5+bzeMB8G A1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAu BggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAv BggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8w ga0GA1UdEQSBpTCBooIOYXBpLmhhYmdtYmguZGWCEmJhY2tlbmQuaGFiZ21iaC5k ZYIPY3Jvbi5oYWJnbWJoLmRlghJoYWIuYXBpLml0b29sNC5uZXSCEmhhYi5iMDEu aXRvb2w0Lm5ldIITaGFiLmNyb24uaXRvb2w0Lm5ldIISaGFiLmYwMS5pdG9vbDQu bmV0ggpoYWJnbWJoLmRlgg53d3cuaGFiZ21iaC5kZTBMBgNVHSAERTBDMAgGBmeB DAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxl dHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB3AF6nc/nfVsDn tTZIfdBJ4DJ6kZoMhKESEoQYdZaBcUVYAAABbzB+brcAAAQDAEgwRgIhAKbV37tF PbFZ4QA6wnKxYj08D7VgIXF2tdrfBDre8BHqAiEAkmXcpf/zxO0HBUYWc9ReRPhQ 2FR+NbvVxT01BtMf+4QAdQCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQ XgAAAW8wfm6kAAAEAwBGMEQCIBeY5HmDJlDj3SRQJ+zCTNbBGTlkaxoxmuRhIlHO Mg+oAiAxPZXcly+wBQJvV4MAJk+tfif97xKj/R0ax94eGaTJ0TANBgkqhkiG9w0B AQsFAAOCAQEADLudfOAqwi3vG8vrLsanV9xd+AacnS8OsrX9E/GP7UowfFO7vSfc 7CEBoG8K3y6Vy4MKTvIjF33oUkpsVZQgWr+riZJjyCNblWHPakfPj98gBTrHAiua ym33RLksxgehQdrubil1QD1rVRPYeHmgYO/xC0OYsR6b8zR1yXdrwXDGNtzVd5Ww zF06TWg/dTOEF1tuYnitM6FGBpjWDRYEZ5dttJPt52fDUDAPxD7F7D7ZOPTLyYUh XijVL4kuCmqS3FNeb5ccs/aJm1aQMMy3XGayOZ/gwVrDcE8ls2+VtEYBMQ6PnqYG 6KOrI2elUDMS9vgHtQ0eZrnTu2KWPZrGzA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsOK8j2JLoSfjryAPd6JN wH6GfIcfHMbxp3cZN7UdZYvOIgyJWJa5WudZ90zN1wsiB7w+tunzy3/6rZIcCz+q /zlmr2Fs6uWG95pbPCJNG0InPu7LvVU4by5BAy6IT6Axh9GapVOHiSFA85tucGMO HJOXoJLX8cD1S1tH+3qfr5TZXGAqapaLC5NcTxrkaOAiuYB2JpEfNWIbklUm83hU u2ffzqiNyTy96onD7eHcbQtnmSGjLpopETOA+X7auyyT1vFFDvUdzbL5LLqlB/6p el5Ve9DVIbVwa92lzuhzt+4YD+8HgOMkIqhxTfG2ppApEgsis2pbdEA1iTPIPkHU BQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 342337705082931747930577015156288816068247 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-23 01:03:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-22 01:03:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'habgmbh.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22329749640315365013659645176455157295027183825008890579675492129243815616220866487728892218806153723765723794560670389367960351258211270693345332196530387990482272627629559530286262737492818871412299707442525074662895692713610117621206298719764261617320885043697292695484224051312785240228209264101404351273224966312670087901251359888194764512696314726575420238797815520918691158224285391606092457574316859447633482575413435198080118455755658068850933596980491825858255361992549948080588576436780481010829368813992516161464868705971345104034256278176920897609241497877967370052501819800071696385502569530127349306373 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 14bef3a9f0445728c3145c67858792aa39f9bcde . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.habgmbh.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'backend.habgmbh.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cron.habgmbh.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hab.api.itool4.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hab.b01.itool4.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hab.cron.itool4.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hab.f01.itool4.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'habgmbh.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.habgmbh.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f307e6eb70000040300483046022100a6d5dfbb453db159e1003ac272b1623d3c0fb560217176b5dadf043adef011ea0221009265dca5fff3c4ed0705461673d45e44f850d8547e35bbd5c53d3506d31ffb84007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f307e6ea4000004030046304402201798e479832650e3dd245027ecc24cd6c11939646b1a319ae4612251ce320fa80220313d95dc972fb005026f578300264fad7e27fdef12a3fd1d1ac7de1e19a4c9d1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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