bahntest2.otris.de

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:4a:5c:22:21:59:94:e6:93:94:24:6a:76:10:08:00:b4:93 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=bahntest2.otris.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:4a:5c:22:21:59:94:e6:93:94:24:6a:76:10:08:00:b4:93
Serial Number (int): 286640219137552494596195275359226955871379
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 1b:9d:81:90:ed:ba:65:7d:7d:f8:7c:77:7e:bb:3a:eb:b2:a5:0c:d8
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 45:49:38:f4:1b:48:46:15:8e:1f:4c:4a:94:3a:82:43:71:51:42:03
Fingerprint (sha256): 48:7e:df:22:37:c8:0d:6e:e8:45:ce:b9:6f:a2:de:94:3f:5c:8c:6b:0a:ec:2d:90:05:7a:3f:28:3f:f4:58:24

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate bahntest2.otris.de

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for bahntest2.otris.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

bahntest2.otris.de

Other certificates including the domain name otris.de

(limited to 100 certificates)
cloud5.otris.de
cloud2.otris.de
cloud2.otris.de
otris.de
cloud2.otris.de
cloud3.otris.de
*.otris.de
*.otris.de
cloud3.otris.de
otris.de
otris.de
cloud2.otris.de
cloud4.otris.de
www.otris.de
cloud3.otris.de
playground.otris.de
cloud3.otris.de
otris.de
cloud2.otris.de
cloud5.otris.de
bahntest2.otris.de
www.otris.de
playground.otris.de
otris.de
order.otris.de
*.otris.de
otris.de
otris.de
www.otris.de
cloud3.otris.de
bahntest2.otris.de
cloud2.otris.de
cloud2.otris.de
otris.de
cloud2.otris.de
cloud5.otris.de
cloud3.otris.de
otris.de
otris.de
otris.de
*.otris.de
*.otris.de
cloud2.otris.de
cloud2.otris.de
cloud3.otris.de
cloud2.otris.de
cloud3.otris.de
cloud5.otris.de
cloud3.otris.de
bahntest2.otris.de
cloud4.otris.de
cloud3.otris.de
cloud3.otris.de
cloud2.otris.de
cloud2.otris.de
cloud2.otris.de
www.otris.de
*.otris.de
privacydemo4.otris.de
cloud2.otris.de
bahntest2.otris.de
cloud2.otris.de
bahntest2.otris.de
cloud2.otris.de
cloud2.otris.de
cloud2.otris.de
cloud2.otris.de
cloud2.otris.de
cloud2.otris.de
cloud5.otris.de
otris.de
cloud2.otris.de
*.otris.de
cloud3.otris.de
cloud2.otris.de
cloud3.otris.de
privacydemo4.otris.de
cloud2.otris.de
bahntest2.otris.de
bahntest2.otris.de
*.otris.de
www.otris.de

Certificate

The complete raw certificate details for bahntest2.otris.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFXDCCBESgAwIBAgISA0pcIiFZlOaTlCRqdhAIALSTMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMTQwMDM0MTlaFw0y
MDA0MTMwMDM0MTlaMB0xGzAZBgNVBAMTEmJhaG50ZXN0Mi5vdHJpcy5kZTCCASIw
DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMDivPDBUVUPSQzXiP5k27+Svp1R
J1WGw0XxdEF4jEE1bYQpfpyVUDbZsSg/oFcWlHjJhWqp9LgoIcSf3QGbzPW2EY7l
Ra7DMBgovKD4pALpsrDGtrpJ8IZBW/GRd458tGVCfB3y9YjCATV907WRNAnBVzWB
fz+YMb4VOU6JgRNZFjWElL967QjsHspzw1EDD86IWCg3AzA0RXKZsLulc8ONHav5
Kw+GXbTJYDfsDKGggDk0dHTPtIqHA8flYtF9q545l5l0H8xJrx+xmda6LYuKSR4W
u3Hso04SPtgy/kN7gk5SKJuGQUICsj2S2/irQ05rkHLTi18KYHlzCVyIAtECAwEA
AaOCAmcwggJjMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI
KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUG52BkO26ZX19+Hx3frs6
67KlDNgwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUH
AQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5
cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5
cHQub3JnLzAdBgNVHREEFjAUghJiYWhudGVzdDIub3RyaXMuZGUwTAYDVR0gBEUw
QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov
L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdwCy
HgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAW+hr+8lAAAEAwBIMEYC
IQDCJ6AgxDaU1oqyE7BgFXgZqBiNmQiznhhz28TbTGpO3gIhAJBFI3Vnv9pF39NT
HyI+dmGeQFlOuw7MtU4d8E6bxVbPAHUAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQAp
Bo2yCJo32RMAAAFvoa/vpwAABAMARjBEAiBMJsSBsHGtMs3fvnxcEiedsKm5wydq
1Duri6DRl6swFwIgIrkphAUzNcsrOVtgQB8Un8xpjcjoD5RCejTdlLzGkVMwDQYJ
KoZIhvcNAQELBQADggEBADqLyQ8R8XQjYBGj5ikfXndRg6aGyzx2UoyD4vUuRyjc
tOv+IhmuUqJdBmcZFSY2yvgfHKT2f7z0t3GNJ1V+x4RLOdJXDF9GS8J9T6cGO84q
MHDlrdNr4q1yJM+7u9OGLgYJaTMDcrCw+vqy3g/KClmZImHfJ8pjvtYxXEUZQPDl
LM92UgQv90RKTyUOz1YMQyLU1cN3TpAyFHAM/lLyFuvIFZ8rusJM3t6kwNmIfYhY
r70RGQRRo+N9KxWSMZUKio04nhRAArjDsX9F+idp6A74FnFx/O/m+5CJWgL99QiH
Tk8bWKn2sUl2UR/XlRrFen3YAi/IPc+J9eN7IqQkcc8=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOK88MFRVQ9JDNeI/mTb
v5K+nVEnVYbDRfF0QXiMQTVthCl+nJVQNtmxKD+gVxaUeMmFaqn0uCghxJ/dAZvM
9bYRjuVFrsMwGCi8oPikAumysMa2uknwhkFb8ZF3jny0ZUJ8HfL1iMIBNX3TtZE0
CcFXNYF/P5gxvhU5TomBE1kWNYSUv3rtCOweynPDUQMPzohYKDcDMDRFcpmwu6Vz
w40dq/krD4ZdtMlgN+wMoaCAOTR0dM+0iocDx+Vi0X2rnjmXmXQfzEmvH7GZ1rot
i4pJHha7ceyjThI+2DL+Q3uCTlIom4ZBQgKyPZLb+KtDTmuQctOLXwpgeXMJXIgC
0QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 286640219137552494596195275359226955871379
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-14 00:34:19 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-13 00:34:19 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bahntest2.otris.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24349563252430976052331819833034994035598718319577907270743711694639763521052937112735353156702070839473250361246966066959783023853571716118286077001947302059015366918496091274599065431329402641700012188462027940315266277365822017003596404567606149948985324053540066492967610702965570427401609626102052623801917976608925972059925108696180846219003251780705875992674097616930822846839787348525339072922342640242957528109687212876096158361837657807135127182103441500257360069315045121134208404570453693673311288397486143829180917367797491840566072233980905440067787737844616309752591204003077348873751481855738437436113
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							1b9d8190edba657d7df87c777ebb3aebb2a50cd8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bahntest2.otris.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016fa1afef250000040300483046022100c227a020c43694d68ab213b060157819a8188d9908b39e1873dbc4db4c6a4ede0221009045237567bfda45dfd3531f223e76619e40594ebb0eccb54e1df04e9bc556cf0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016fa1afefa7000004030046304402204c26c481b071ad32cddfbe7c5c12279db0a9b9c3276ad43bab8ba0d197ab3017022022b92984053335cb2b395b60401f149fcc698dc8e80f94427a34dd94bcc69153
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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