annatom.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:a9:58:d9:b1:7b:45:8d:e8:50:64:c4:6a:f6:6e:b8:85:2e was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=annatom.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:a9:58:d9:b1:7b:45:8d:e8:50:64:c4:6a:f6:6e:b8:85:2eSerial Number (int): 406074966128480051423107274437992948204846
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b6:30:a4:a0:75:ae:ff:9d:99:ac:19:81:cc:f4:e5:b7:6a:93:73:b3
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ba:35:4e:46:c7:b5:8a:ef:40:5e:5e:7c:09:e8:00:a9:f7:66:06:fc
Fingerprint (sha256): 3d:e2:a9:c8:80:a3:28:79:c7:30:53:7c:2f:34:b8:61:12:64:9e:fe:65:08:fe:3d:8e:41:4f:2b:1f:74:08:e2
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate annatom.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for annatom.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
annatom.de
www.annatom.de
www.annatom.de
Other certificates including the domain name annatom.de
(limited to 100 certificates)
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
annatom.de
Certificate
The complete raw certificate details for annatom.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgISBKlY2bF7RY3oUGTEavZuuIUuMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMDEwMjE2NDZaFw0y MDAxMzAwMjE2NDZaMBUxEzARBgNVBAMTCmFubmF0b20uZGUwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDHsiOH49J8pJK/pEndh5l8TeAXBI7yUnHVOnpe N/gQZRI2KbTorEOnkGShB2Atx0Vo/XG/lVzSTQLSjIc/g9s565vKwOD0tHIHsmrk zcGmGlvVWN9ij5AzriK67kYFcRXPu72UxTM4kQgiAR5NNc7h/Doljng5QK3PX1N+ bsi2Ie6D9R69kANa8+Gp0ew1Y77T688Sa19viPcTBxiG4bK/TKYq1g9cp7LPq6sy R5c6X1R78OYORo5FXrnkPFCRDCd4v9J8KU6O3dYHUEFpfwtySyphv3kypMI8wQT+ mR98kW6BzrDMS4b99Ht5iMd3bFFfGIPRq5UAH03XoH/J0DWdAgMBAAGjggJuMIIC ajAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFLYwpKB1rv+dmawZgcz05bdqk3OzMB8G A1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAu BggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAv BggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8w JQYDVR0RBB4wHIIKYW5uYXRvbS5kZYIOd3d3LmFubmF0b20uZGUwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdgDw laRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAW4k9yKpAAAEAwBHMEUC IQDu5XL+oakhY5BWOy2hFmMmID6IsPD2eJX/zKDyQho1gQIgAL37TqwjqM28qRW1 tPH2C1BG0LwAwVg1lQyM8JZDWGcAdQCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOey SVMt74uQXgAAAW4k9yKbAAAEAwBGMEQCIFC8TRc7XYasHEZuusgXbs//gqtINovI FW4IXCIkGXQhAiBp0kXAbxknfG0ubAJPnGCm6AaKee4bMlZXruOyKbYDqzANBgkq hkiG9w0BAQsFAAOCAQEABRa/dVG3lvrkYx3XJGGDGhHVGh3GLziEa6/mpgZvhCjo VuJ27YLdtB0lI7AhUB1FaBgbQ6n1qyiNwwYpTN+XxzwtUK6OyQf/vtbBNiPUpstk Vmp13V6COnhxnsGCFb/f9tec86VOU3zEdLVyb98rpEQINXTeqMDWTqfCYm6681Jg 9xrk5hqTQ3CfzcApt53b0WEb8cDOoxrxrD05I5T4915Ss7bQkMHX13N58rcjtoR/ ldYDmMw6lhYAjaeDqaOJE7uI8hiwSpRuClbrQ3mFOKcBymoLlnm5KQRbVN3tnFcC kNTYzRh8LL9dpcp0BImQDoOPscVNeT8LDoM2h7YsxQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7Ijh+PSfKSSv6RJ3YeZ fE3gFwSO8lJx1Tp6Xjf4EGUSNim06KxDp5BkoQdgLcdFaP1xv5Vc0k0C0oyHP4Pb OeubysDg9LRyB7Jq5M3Bphpb1VjfYo+QM64iuu5GBXEVz7u9lMUzOJEIIgEeTTXO 4fw6JY54OUCtz19Tfm7ItiHug/UevZADWvPhqdHsNWO+0+vPEmtfb4j3EwcYhuGy v0ymKtYPXKeyz6urMkeXOl9Ue/DmDkaORV655DxQkQwneL/SfClOjt3WB1BBaX8L cksqYb95MqTCPMEE/pkffJFugc6wzEuG/fR7eYjHd2xRXxiD0auVAB9N16B/ydA1 nQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 406074966128480051423107274437992948204846 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-01 02:16:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-30 02:16:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'annatom.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25209266200684468985466108801085581633438667650302046860493315979707401346766949315666491441389119685685048478785200729772086169938961963256725005618965102426629260556058419153049420513337618871042454975104199256144261946766806805813512521570468214957187131641308072909046127332054587586420984929208649765288157018933678196056584939523859885613130079603207211782826287288871237135393184670120988984011048713089920454805941923865804209574838459156560595857700325733791243363739513833670716582409162427431552686438684135107137767615576810222917972946246226074510866293130505989918958295695720988258703376198990690268573 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b630a4a075aeff9d99ac1981ccf4e5b76a9373b3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'annatom.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.annatom.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016e24f722a90000040300473045022100eee572fea1a9216390563b2da1166326203e88b0f0f67895ffcca0f2421a3581022000bdfb4eac23a8cdbca915b5b4f1f60b5046d0bc00c15835950c8cf096435867007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016e24f7229b0000040300463044022050bc4d173b5d86ac1c466ebac8176ecfff82ab48368bc8156e085c2224197421022069d245c06f19277c6d2e6c024f9c60a6e8068a79ee1b325657aee3b229b603ab . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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