shopintern.de
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number a2:2e:1f:b9:01:77:b5:e5:13:0b:4e:9b:59:b3:b8:0f was issued on by Google Trust Services LLC.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=shopintern.de
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): a2:2e:1f:b9:01:77:b5:e5:13:0b:4e:9b:59:b3:b8:0fSerial Number (int): 215574424385010957978380298933362735119
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 71:49:87:70:a8:4f:aa:99:8f:32:0d:62:5e:42:5d:0d:38:e9:2f:60
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): 96:f4:c0:4f:7a:2c:fa:cf:54:b7:ae:1a:e1:c9:0a:f6:c6:bc:7e:a0
Fingerprint (sha256): 3c:43:80:3e:e2:d3:19:d9:08:bc:5d:0b:6d:d9:59:aa:2d:cc:95:7e:4a:ab:fb:86:26:1b:61:9e:24:62:2a:9c
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/yRGsm6-TaeUCRL Distribution Point: http://crls.pki.goog/gts1p5/jR-B-0EooAg.crl
Check the revocation status for certificate shopintern.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for shopintern.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
shopintern.de
*.shopintern.de
*.shopintern.de
Other certificates including the domain name shopintern.de
(limited to 100 certificates)
shopintern.de
shopintern.de
shopintern.de
shopintern.de
www.shopintern.de
shopintern.de
search.shopintern.de
shopintern.de
sni.cloudflaressl.com
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
*.shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
www.shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
www.shopintern.de
shopintern.de
search.shopintern.de
shopintern.de
sni.cloudflaressl.com
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
*.shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
shopintern.de
www.shopintern.de
shopintern.de
Certificate
The complete raw certificate details for shopintern.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIRAKIuH7kBd7XlEwtOm1mzuA8wDQYJKoZIhvcNAQELBQAw RjELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBM TEMxEzARBgNVBAMTCkdUUyBDQSAxUDUwHhcNMjQwMTA1MTY0NjU2WhcNMjQwNDA0 MTY0NjU1WjAYMRYwFAYDVQQDEw1zaG9waW50ZXJuLmRlMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAhTDWFLLLxMpkX71/6Wqv5cYCKYGCwmqaEWzGEM8i 2zcmkW3HEjmjD2inrcSDDkd1xTFfUi0roVKAaVmgU3+MeMLpv/km6x9KbV7ak0CT Q8tJSjXXFNCF3NIfw4V+jJeShak3LX0oATLSvlt/0vsY09Kl1XdIbXqKJkbl01WN ievqG7TNobtUCAmlonxy4MWgwB7W02vtgi0pANX2dO7s94q/+ehDAwE8+AqDQc0C Blyf+E5kki9uJ08Ta86gvVN1ECBdP7pgY2GVYJ63jmVxiIRXTF3prEayE56CxvGe aKz4WcmYBGfPakwhV6hY5d04HxpfmPQdR8kLeHOem5MmgQIDAQABo4IChjCCAoIw DgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQC MAAwHQYDVR0OBBYEFHFJh3CoT6qZjzINYl5CXQ046S9gMB8GA1UdIwQYMBaAFNX8 ng3fHsrdCJeXbivFX8Ur9ey4MHgGCCsGAQUFBwEBBGwwajA1BggrBgEFBQcwAYYp aHR0cDovL29jc3AucGtpLmdvb2cvcy9ndHMxcDUveVJHc202LVRhZVUwMQYIKwYB BQUHMAKGJWh0dHA6Ly9wa2kuZ29vZy9yZXBvL2NlcnRzL2d0czFwNS5kZXIwKQYD VR0RBCIwIIINc2hvcGludGVybi5kZYIPKi5zaG9waW50ZXJuLmRlMCEGA1UdIAQa MBgwCAYGZ4EMAQIBMAwGCisGAQQB1nkCBQMwPAYDVR0fBDUwMzAxoC+gLYYraHR0 cDovL2NybHMucGtpLmdvb2cvZ3RzMXA1L2pSLUItMEVvb0FnLmNybDCCAQUGCisG AQQB1nkCBAIEgfYEgfMA8QB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZx H7WbAAABjNq8NjsAAAQDAEcwRQIgeeVKT2qFsnBgTP6tU5EJ3/pmoDfffq0mdrDX Sw0nX3MCIQCWpIt6Vsgp/couKmGk5Pm0tED95Qt7ppXZRTBVxW7z1wB3ANq2v2s/ tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABjNq8N4sAAAQDAEgwRgIhAPTY ilR76x9QLSMb/xzb7AjAyIC251ASRqRMyuUUv7/HAiEAsNPc0gOHXTX08EM35bCL cRCZjaAGNtyJ4vSzo1mGMUkwDQYJKoZIhvcNAQELBQADggEBAKfusHatl4+cGFEN DtD/8wLhnUmkxQAKDF/utz0RPi2h5324DfE9zF3Fe9CUh5MQyIBLSIcjrsUn51vE ckTpbqjSw6x2qXPdeC25eqceGu0xot/nwn1KyY0KMaaDIuMfxzfstaesUt8Xafau jJSmvxVCfssDZGq/bAdVCK2kRogp8PrVKgbKiUIonZfx0qAsrQRKNtEgi5oYbivJ 8VGFe3rFzLkZ9FJDFkHsXu04GnVizvVZJ36xQMSq9O7bkXi4ZOEeTDeQ5zHRsIg0 LAXzdQDLSNg55zRkZDfQhLqUybbxG2k6nMatZ+Cvuj+kWN8W1zjic7D2CHwVEVhD HGp8by4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhTDWFLLLxMpkX71/6Wqv 5cYCKYGCwmqaEWzGEM8i2zcmkW3HEjmjD2inrcSDDkd1xTFfUi0roVKAaVmgU3+M eMLpv/km6x9KbV7ak0CTQ8tJSjXXFNCF3NIfw4V+jJeShak3LX0oATLSvlt/0vsY 09Kl1XdIbXqKJkbl01WNievqG7TNobtUCAmlonxy4MWgwB7W02vtgi0pANX2dO7s 94q/+ehDAwE8+AqDQc0CBlyf+E5kki9uJ08Ta86gvVN1ECBdP7pgY2GVYJ63jmVx iIRXTF3prEayE56CxvGeaKz4WcmYBGfPakwhV6hY5d04HxpfmPQdR8kLeHOem5Mm gQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 215574424385010957978380298933362735119 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-05 16:46:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-04 16:46:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shopintern.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16813776614554672619864677127284526966156710453395831123793582025345041161239537694232966264467642482309740988083131282065873166850704054905322551350277691947353386745082239148131494095309930341245803939344568972234516869394408949954269611267547905058634926722003276657415300528023847107879054427248841649654306995930581429446470222914295397640234692188720644294535208677944704309391638511879884673981690748558971055891270011210660373917589347339065505526943120254220307437922911687579156459062633372653900133267718139134519797893687042648278552513016215002556278044936923240920869752241360578591329999975646986708609 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 71498770a84faa998f320d625e425d0d38e92f60 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/yRGsm6-TaeU' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shopintern.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.shopintern.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/jR-B-0EooAg.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018cdabc363b0000040300473045022079e54a4f6a85b270604cfead539109dffa66a037df7ead2676b0d74b0d275f7302210096a48b7a56c829fdca2e2a61a4e4f9b4b440fde50b7ba695d9453055c56ef3d7007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018cdabc378b0000040300483046022100f4d88a547beb1f502d231bff1cdbec08c0c880b6e7501246a44ccae514bfbfc7022100b0d3dcd203875d35f4f04337e5b08b7110998da00636dc89e2f4b3a359863149 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00a7eeb076ad978f9c18510d0ed0fff302e19d49a4c5000a0c5feeb73d113e2da1e77db80df13dcc5dc57bd094879310c8804b488723aec527e75bc47244e96ea8d2c3ac76a973dd782db97aa71e1aed31a2dfe7c27d4ac98d0a31a68322e31fc737ecb5a7ac52df1769f6ae8c94a6bf15427ecb03646abf6c075508ada4468829f0fad52a06ca8942289d97f1d2a02cad044a36d1208b9a186e2bc9f151857b7ac5ccb919f452431641ec5eed381a7562cef559277eb140c4aaf4eedb9178b864e11e4c3790e731d1b088342c05f37500cb48d839e734646437d084ba94c9b6f11b693a9cc6ad67e0afba3fa458df16d738e273b0f6087c151158431c6a7c6f2e