hajoscho.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:1e:dc:5c:39:46:cf:4c:c4:57:3d:69:db:03:bc:54:41:4b was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hajoscho.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:1e:dc:5c:39:46:cf:4c:c4:57:3d:69:db:03:bc:54:41:4bSerial Number (int): 271838237815000035526685748712840856093003
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: c7:b5:f2:a7:42:3b:cf:e5:3c:98:1b:f4:a6:b9:9b:f0:24:d0:9c:ff
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ca:2e:09:23:c8:cc:fc:aa:4c:74:50:ed:8b:43:af:65:d2:5f:42:94
Fingerprint (sha256): 3c:54:90:84:17:31:5b:f1:e5:00:14:31:fa:5e:54:c8:31:43:1c:fc:70:96:34:4c:9b:b7:e7:91:0a:8b:c6:9d
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate hajoscho.de
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hajoscho.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hajoscho.de
hajoscho.e-dcs.de
www.hajoscho.de
hajoscho.e-dcs.de
www.hajoscho.de
Other certificates including the domain name hajoscho.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for hajoscho.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGcTCCBVmgAwIBAgISAx7cXDlGz0zEVz1p2wO8VEFLMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAyMjgwNTEyMDhaFw0x OTA1MjkwNTEyMDhaMBYxFDASBgNVBAMTC2hham9zY2hvLmRlMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAqGB0J/tF1RItmIUf20KXd9pMaa2zGXcG8lN/ DnzXeOHwfpVUF1aV4Wmrxk6kC3WrDR6RzDRGaallxU/l7cFjPck9gNY5MrivMbH+ oUIiHtbywkeG04efe+ilw6/TEk2r5Fkzf5M7DvEfjZ1cHrRU45gon0CLm9xCKF4h d2Fr/r4iHK973RtAS4mN5gawDIZBGDoAtBlbwR2QxVa/3hRSTeTBF8V0MAVeHD3Q bfEPHsrokhCEu97W1dgngWDo465rTTjJWF6oUdfo2HsuXl1nddgUzD5o7JCMG/Bx VPN17yE88sawv1blo9cIySaygTel+CWOZeVcHrq0vREav+mjp/D1WIT9ZMAMHYpC R5Nazsifs8FfWIw+obFfiqIkl7i9aROjLp4Bq9EsnJxMz3Vh0iuAg6lAum8bB6wb nOwsM1piYvmpBfQu1Gv1P3TKr645WH8iGqHRyw34yUxKUDizL7BmXZGuE7Ta0t/M XbhJXlHxcy+zNi7XwJUiG6oNUpl6vDuhE0GCaF6XqR1SNt6FaQT7k0agdIPHrhmK 0/2UUX9uunZ9pyj0I6fb/qahj0b28iuPVqrSaswRTpFylGyuteuqWJKAtsFHXA4A HZwq40MoG2abFxFv8Dp3onjlNwRrPVXlfsDBQGbRUu4+rqTPNcFiWZVYy1atePgr jEOWbdkCAwEAAaOCAoMwggJ/MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUx7Xyp0I7 z+U8mBv0prmb8CTQnP8wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzA6BgNVHREEMzAxggtoYWpvc2Noby5kZYIRaGFqb3Nj aG8uZS1kY3MuZGWCD3d3dy5oYWpvc2Noby5kZTBMBgNVHSAERTBDMAgGBmeBDAEC ATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNl bmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2AHR+2oMxrTMQkSGc ziVPQnDCv/1eQiAIxjc1eeYQe8xWAAABaTK7TDcAAAQDAEcwRQIhAPSvd586SBDA QGhFwdbj3/o7valmUmnrI+E0X21bid46AiALo8G46QJ9lH8LsgQmIl0Qd2NbHrvC MCE3DSwsgvq9cAB1ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVFR/R4AAAB aTK7Sp4AAAQDAEYwRAIgaI9546FvG4NrlUVGeZHFswq4SOizsaMQSLifJ2Z+BUgC IHvzRM+rTXl4XxpvDUipmb4ZFHyX8JqLbPdVHhmUsHhRMA0GCSqGSIb3DQEBCwUA A4IBAQB08nC0ohIS2PP1c8syvjF055UI+kPsKLCBZK/BZ3QQoKdfOcwO0kHqrXjO brflLP2lgoBcLbnSYxGcW0PCSLAlfKs8hmI0BUV4dClB9VFLYDKTjQpADGFIastM 8BkMsKVzZHxH+t1f8dNdi3Wxrjd99hIPd0LlKLzKjdWQzMPa5O6RI5LSPA4ZZrK5 igRMbDUMu8XyaZ3NhoAS3xZZohrLUtUd2l/HBbRzeFduTMzVp9W/qNVeqpAA+V5h 2h+xcXx4Fxuzsm5ZkZY6GnqeMvVMPZtfRTV6mP+c59Go9ipnEG4OLI+wO+mRftHB zqObpcxbGJ2hqC/uQx44PEVBIPPs -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqGB0J/tF1RItmIUf20KX d9pMaa2zGXcG8lN/DnzXeOHwfpVUF1aV4Wmrxk6kC3WrDR6RzDRGaallxU/l7cFj Pck9gNY5MrivMbH+oUIiHtbywkeG04efe+ilw6/TEk2r5Fkzf5M7DvEfjZ1cHrRU 45gon0CLm9xCKF4hd2Fr/r4iHK973RtAS4mN5gawDIZBGDoAtBlbwR2QxVa/3hRS TeTBF8V0MAVeHD3QbfEPHsrokhCEu97W1dgngWDo465rTTjJWF6oUdfo2HsuXl1n ddgUzD5o7JCMG/BxVPN17yE88sawv1blo9cIySaygTel+CWOZeVcHrq0vREav+mj p/D1WIT9ZMAMHYpCR5Nazsifs8FfWIw+obFfiqIkl7i9aROjLp4Bq9EsnJxMz3Vh 0iuAg6lAum8bB6wbnOwsM1piYvmpBfQu1Gv1P3TKr645WH8iGqHRyw34yUxKUDiz L7BmXZGuE7Ta0t/MXbhJXlHxcy+zNi7XwJUiG6oNUpl6vDuhE0GCaF6XqR1SNt6F aQT7k0agdIPHrhmK0/2UUX9uunZ9pyj0I6fb/qahj0b28iuPVqrSaswRTpFylGyu teuqWJKAtsFHXA4AHZwq40MoG2abFxFv8Dp3onjlNwRrPVXlfsDBQGbRUu4+rqTP NcFiWZVYy1atePgrjEOWbdkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 271838237815000035526685748712840856093003 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-28 05:12:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-29 05:12:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hajoscho.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 686917300724709019387563256798836043688805757462376457451456283118179171512973714869246251228443923584749379843743866168431512314132945096049941470027440803252390813364240909495459926149635854241426103213849230553557272046828094289257135739321691954789936805935085388288875160406251744027102928712526487982373571215845993239383330073892171493604847826650582415136537364649597763945482570705444004214298985144353877000870948993607299955698800653684265119579252412296423574473199538141412378184357536111080163314129074927636030857268802390355742729888750428508525827663786998630103532100922434141822081718859976245024682704998789713282858996676966442346857830242157389519619014585762730039811089264249146080009602657379847573307899417549409559090944433112567538615733398486052438343307740589050080316765216800041627144903982081866946084042812390339877935372341204742451184153529724032206974071248358896108045802642650204137720851532999269949181781783935989847538578786372714107779649733007400585136400812726186698472537699414496620376865047992900246879012988150690480759604412701025524082182643950229103461066979208119488701186764314239211415733049930169246630548931576494608443125902084844504789306316865802869466098649688958385417689 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c7b5f2a7423bcfe53c981bf4a6b99bf024d09cff . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hajoscho.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hajoscho.e-dcs.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hajoscho.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016932bb4c370000040300473045022100f4af779f3a4810c0406845c1d6e3dffa3bbda9665269eb23e1345f6d5b89de3a02200ba3c1b8e9027d947f0bb20426225d1077635b1ebbc23021370d2c2c82fabd70007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016932bb4a9e00000403004630440220688f79e3a16f1b836b9545467991c5b30ab848e8b3b1a31048b89f27667e054802207bf344cfab4d79785f1a6f0d48a999be19147c97f09a8b6cf7551e1994b07851 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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