Deutsches Herzzentrum Berlin Zertifizierungsstelle

Issued by DFN-Verein PCA Global - G01

About this certificate


This digital certificate with serial number 17:af:f6:cb:68:bf:3e was issued on by DFN-Verein .

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

Cerificate errors/warnings *beta

  • ERROR: Certificate has key usage [CertSign] set
  • ERROR: Certificate has key usage [CRLSign] set

Deutsches Herzzentrum Berlin

Organization: Deutsches Herzzentrum Berlin
Organization unit: Informationstechnik
Locality: Berlin
Country: DE

DFN-Verein

Organization: DFN-Verein
Organization unit: DFN-PKI
Locality: Berlin
Country: DE

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 17:af:f6:cb:68:bf:3e
Serial Number (int): 6667398973800254
Serial Number lenght: 53 bits, 7 octets

SubjectKeyId: a5:3f:61:eb:46:21:5b:8b:94:23:2a:60:b0:ac:5d:1b:16:e6:5c:59
AuthorityKeyId: 49:b7:c6:cf:e8:3d:1f:7f:ea:44:7b:13:29:f7:f1:0a:70:3e:de:64

Fingerprint (sha1): 33:a7:de:ed:d4:d2:65:8d:07:59:77:e0:44:c0:02:a1:d0:19:37:e8
Fingerprint (sha256): b2:e7:cb:00:5f:d7:8b:e2:e5:e8:0d:64:a8:3c:a5:0f:1a:cc:2d:ac:f9:e6:7a:89:cb:5b:fd:1d:ab:3b:71:98

Issuing Certificate URL: http://cdp1.pca.dfn.de/global-root-ca/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/global-root-ca/pub/cacert/cacert.crt

Revocation information

OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSP
CRL Distribution Point: http://cdp1.pca.dfn.de/global-root-ca/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/global-root-ca/pub/crl/cacrl.crl

Check the revocation status for the current certificate on Deutsches Herzzentrum Berlin Zertifizierungsstelle
0
DNS Names
1
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA



Key Usage

Cert Sign
CRL Sign

Extended Key Usages

Extensions

8 extensions
No unhandled critical extensions



CA Certificate

This is a CA certificate
Maximum Path Lenght:

1

Subject Alternative Names

This certificate doesn't contain any subject alternative names (DNS Name). [email protected]

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgIHF6/2y2i/PjANBgkqhkiG9w0BAQsFADBaMQswCQYDVQQG EwJERTETMBEGA1UEChMKREZOLVZlcmVpbjEQMA4GA1UECxMHREZOLVBLSTEkMCIG A1UEAxMbREZOLVZlcmVpbiBQQ0EgR2xvYmFsIC0gRzAxMB4XDTE0MDYwNTE0MDU0 N1oXDTE5MDcwOTIzNTkwMFowgbwxCzAJBgNVBAYTAkRFMQ8wDQYDVQQHEwZCZXJs aW4xJTAjBgNVBAoTHERldXRzY2hlcyBIZXJ6emVudHJ1bSBCZXJsaW4xHDAaBgNV BAsTE0luZm9ybWF0aW9uc3RlY2huaWsxOzA5BgNVBAMTMkRldXRzY2hlcyBIZXJ6 emVudHJ1bSBCZXJsaW4gWmVydGlmaXppZXJ1bmdzc3RlbGxlMRowGAYJKoZIhvcN AQkBFgtwa2lAZGh6Yi5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMmiUMhfUMsoIv/NoFZMs+h0e8/gv3hZXHiVxFoF/czQpfovTlt85a8P3c6NLEXn ipnxgvifDXCC81+6vgs4xLGpUN9aZU3DOjtgfyhDrbvPnNqAqA/71aYNTVMJSkUR hdqSDdVheStgHBBL256xM3JKwehH0uWHS8x46huOkmkLtxwGV1N6dSoFrpNLA+0I 1uZUNrmKsTrciXfUn+VCbuRx24GDgke+nMKYxAXpbM2oRfCwrNSk/ux6a8JUnoSo TcEwNl+93o8Zp2Icxkq+8VtJbL9+CLXIuxW/Pa/3zWvN4bvDyQazDUbV8VJQPdQU jQIkoE04cJBr6ezD3L5r05sCAwEAAaOCAfgwggH0MBIGA1UdEwEB/wQIMAYBAf8C AQEwDgYDVR0PAQH/BAQDAgEGMBEGA1UdIAQKMAgwBgYEVR0gADAdBgNVHQ4EFgQU pT9h60YhW4uUIypgsKxdGxbmXFkwHwYDVR0jBBgwFoAUSbfGz+g9H3/qRHsTKffx CnA+3mQwFgYDVR0RBA8wDYELcGtpQGRoemIuZGUwgYgGA1UdHwSBgDB+MD2gO6A5 hjdodHRwOi8vY2RwMS5wY2EuZGZuLmRlL2dsb2JhbC1yb290LWNhL3B1Yi9jcmwv Y2FjcmwuY3JsMD2gO6A5hjdodHRwOi8vY2RwMi5wY2EuZGZuLmRlL2dsb2JhbC1y b290LWNhL3B1Yi9jcmwvY2FjcmwuY3JsMIHXBggrBgEFBQcBAQSByjCBxzAzBggr BgEFBQcwAYYnaHR0cDovL29jc3AucGNhLmRmbi5kZS9PQ1NQLVNlcnZlci9PQ1NQ MEcGCCsGAQUFBzAChjtodHRwOi8vY2RwMS5wY2EuZGZuLmRlL2dsb2JhbC1yb290 LWNhL3B1Yi9jYWNlcnQvY2FjZXJ0LmNydDBHBggrBgEFBQcwAoY7aHR0cDovL2Nk cDIucGNhLmRmbi5kZS9nbG9iYWwtcm9vdC1jYS9wdWIvY2FjZXJ0L2NhY2VydC5j cnQwDQYJKoZIhvcNAQELBQADggEBAJPpFyu/49r506M3ATHYok2tEdrIbzjiCKst 4QI9EGfWlSgKMCR16ZZokBEbFL8KPux3vRX0dDhvhip4fAsbn2QB+h3j3hHIFtoD wIn+o+/jsBh8y9+vfrNcIhJKWNZKVsOfaZSoNllbgJSRk9blsmgia48EwR2cvhxj dL52/LLgsa/SLbwZm7YM+KrnI0dY9C0PUPJPjGJjf5qnc/Q8O1Fwojakl9p0hhF3 z9ZfT/MwisatFBtokQ/0KgkKGM77t7XNo9JuKrEYDCo55gBqJDb/pL/OOL9sp+Jg weAxpRFrzjE9ASw/zLjyi92dwDMF3l3GIeEx5fUDcHdsZ9xPYZ8= -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyaJQyF9Qyygi/82gVkyz 6HR7z+C/eFlceJXEWgX9zNCl+i9OW3zlrw/dzo0sReeKmfGC+J8NcILzX7q+CzjE salQ31plTcM6O2B/KEOtu8+c2oCoD/vVpg1NUwlKRRGF2pIN1WF5K2AcEEvbnrEz ckrB6EfS5YdLzHjqG46SaQu3HAZXU3p1KgWuk0sD7QjW5lQ2uYqxOtyJd9Sf5UJu 5HHbgYOCR76cwpjEBelszahF8LCs1KT+7HprwlSehKhNwTA2X73ejxmnYhzGSr7x W0lsv34Itci7Fb89r/fNa83hu8PJBrMNRtXxUlA91BSNAiSgTThwkGvp7MPcvmvT mwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6667398973800254 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DFN-Verein' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DFN-PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DFN-Verein PCA Global - G01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-06-05 14:05:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-09 23:59:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Deutsches Herzzentrum Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Informationstechnik' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Deutsches Herzzentrum Berlin Zertifizierungsstelle' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25453940082711878738467431809413195017894866202524404348509493616353709128558988858265320682704021108827943503535536978250830838787504463686794959561541564524714297510383670777629705535673494648237000718836226318634705865711320938705087339851190599858716995177525072522457895852417764373783373224368599129427702799435431662712717795955671519787662724640097783524003847132349949682283464816316769356037968116525800039536111767905499367848695202056372250484734593282276326713814536142756115578476909640627848222070213950148210054967067990631119653414352843196520718442742594799739500902776149058322178719705920994792347 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (8 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (7 bits) 0106 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (10 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32.0 (anyPolicy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a53f61eb46215b8b94232a60b0ac5d1b16e65c59 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 49b7c6cfe83d1f7fea447b1329f7f10a703ede64 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:1|false] IA5String '[email protected]' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (128 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/global-root-ca/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/global-root-ca/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (202 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/global-root-ca/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/global-root-ca/pub/cacert/cacert.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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