habgmbh.de

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:ee:0a:43:bb:30:15:c3:11:fd:5b:eb:21:d6:87:a2:b6:97 was issued on by Let's Encrypt.

With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=habgmbh.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:ee:0a:43:bb:30:15:c3:11:fd:5b:eb:21:d6:87:a2:b6:97
Serial Number (int): 342337705082931747930577015156288816068247
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 14:be:f3:a9:f0:44:57:28:c3:14:5c:67:85:87:92:aa:39:f9:bc:de
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): ba:f7:c2:6e:a9:da:34:f0:8f:31:04:54:7f:21:84:e0:40:a9:60:0f
Fingerprint (sha256): 39:e0:81:aa:ca:bf:02:8d:1b:1f:a1:98:53:92:97:a6:33:13:d3:34:89:30:43:88:aa:66:d1:b7:78:15:ba:54

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate habgmbh.de

9

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for habgmbh.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

api.habgmbh.de
backend.habgmbh.de
cron.habgmbh.de
hab.api.itool4.net
hab.b01.itool4.net
hab.cron.itool4.net
hab.f01.itool4.net
habgmbh.de
www.habgmbh.de

Other certificates including the domain name habgmbh.de

(limited to 100 certificates)
habgmbh.de
habgmbh.de
habgmbh.de
habgmbh.de
habgmbh.de
habgmbh.de
habgmbh.de
habgmbh.de
habgmbh.de
habgmbh.de
habgmbh.de
habgmbh.de
habgmbh.de
habgmbh.de

Certificate

The complete raw certificate details for habgmbh.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsOK8j2JLoSfjryAPd6JN
wH6GfIcfHMbxp3cZN7UdZYvOIgyJWJa5WudZ90zN1wsiB7w+tunzy3/6rZIcCz+q
/zlmr2Fs6uWG95pbPCJNG0InPu7LvVU4by5BAy6IT6Axh9GapVOHiSFA85tucGMO
HJOXoJLX8cD1S1tH+3qfr5TZXGAqapaLC5NcTxrkaOAiuYB2JpEfNWIbklUm83hU
u2ffzqiNyTy96onD7eHcbQtnmSGjLpopETOA+X7auyyT1vFFDvUdzbL5LLqlB/6p
el5Ve9DVIbVwa92lzuhzt+4YD+8HgOMkIqhxTfG2ppApEgsis2pbdEA1iTPIPkHU
BQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 342337705082931747930577015156288816068247
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-23 01:03:09 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-22 01:03:09 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'habgmbh.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22329749640315365013659645176455157295027183825008890579675492129243815616220866487728892218806153723765723794560670389367960351258211270693345332196530387990482272627629559530286262737492818871412299707442525074662895692713610117621206298719764261617320885043697292695484224051312785240228209264101404351273224966312670087901251359888194764512696314726575420238797815520918691158224285391606092457574316859447633482575413435198080118455755658068850933596980491825858255361992549948080588576436780481010829368813992516161464868705971345104034256278176920897609241497877967370052501819800071696385502569530127349306373
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							14bef3a9f0445728c3145c67858792aa39f9bcde
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.habgmbh.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'backend.habgmbh.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cron.habgmbh.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hab.api.itool4.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hab.b01.itool4.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hab.cron.itool4.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hab.f01.itool4.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'habgmbh.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.habgmbh.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f307e6eb70000040300483046022100a6d5dfbb453db159e1003ac272b1623d3c0fb560217176b5dadf043adef011ea0221009265dca5fff3c4ed0705461673d45e44f850d8547e35bbd5c53d3506d31ffb84007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f307e6ea4000004030046304402201798e479832650e3dd245027ecc24cd6c11939646b1a319ae4612251ce320fa80220313d95dc972fb005026f578300264fad7e27fdef12a3fd1d1ac7de1e19a4c9d1
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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