www.berndhauser.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:72:2c:6a:bf:08:28:7e:1c:94:9d:75:4c:81:3d:86:f7:2a was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.berndhauser.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:72:2c:6a:bf:08:28:7e:1c:94:9d:75:4c:81:3d:86:f7:2aSerial Number (int): 387300373845896103869053711623527084783402
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: f8:e3:25:67:78:fb:90:18:97:6b:55:a1:c9:da:07:52:cb:e1:32:61
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 66:b3:87:4c:75:6e:85:03:27:8b:d9:e7:58:f9:2e:58:db:fc:fe:db
Fingerprint (sha256): 4a:64:56:95:a2:bb:dc:c9:9b:be:5f:e8:92:66:6f:eb:be:6a:4a:ea:c7:58:65:3f:3f:ba:a4:02:49:fc:de:e0
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.berndhauser.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.berndhauser.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
berndhauser.de
www.berndhauser.de
www.berndhauser.de
Other certificates including the domain name berndhauser.de
(limited to 100 certificates)
www.berndhauser.de
www.berndhauser.de
berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
www.berndhauser.de
Certificate
The complete raw certificate details for www.berndhauser.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgISBHIsar8IKH4clJ11TIE9hvcqMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMTAyMTQ1NTJaFw0y MDA1MTAyMTQ1NTJaMB0xGzAZBgNVBAMTEnd3dy5iZXJuZGhhdXNlci5kZTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAN3fzPsBOm6YITBzYlfJpy4yJ6pZ PCpCASD58xUaa24z27S/sYODdhkSoxcltib6OYo88/ehuivIwNsjII1Fg4dtp+Rc b/63XEWEcR/n/NbQVKRmnYKDv4Ew/4p9osgrnmHE61BAXJp42lMuyWCOVbKeUw8x uymoq4VyLm2zQkid0jvcomI1Dxyp2lfbjosT7ewWzasDEV81cpRWUhmqBaLOSJNG sJ2fpph3tj7Su7Mm470tBmwfOwUG1oj/jhr7j8jrQ3Uv5rtYw4DvW3sY71UzsxQa duj2gAkfFbi52a2wjDustioqC3EQQuDOSZJ0D2aCRNz/ewQ/QgJCz9ABXq0CAwEA AaOCAncwggJzMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU+OMlZ3j7kBiXa1WhydoH UsvhMmEwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUH AQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5 cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5 cHQub3JnLzAtBgNVHREEJjAkgg5iZXJuZGhhdXNlci5kZYISd3d3LmJlcm5kaGF1 c2VyLmRlMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHW eQIEAgSB9QSB8gDwAHYAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMA AAFwMUfIPQAABAMARzBFAiEAsS5YTNqZuxyQb1n9cYoCtAyth/gltLdeJUb1Fnvx +TYCIBvSFC6wI284e9Ls/wsZ6wY9dzDVFZMo3akiGY1urH7tAHYAB7dcG+V9aP/x sMYdIxXHuuZXfFeUt2ruvGE6GmnTohwAAAFwMUfIOQAABAMARzBFAiAvlfRjpZXM /OnK8+mYwFELOrzw2KxJ6z8MwyPQlv1kewIhAPxfi/pgRrH4LGOG570Y3nU1BmWb K6HZsehjDaM6lsPBMA0GCSqGSIb3DQEBCwUAA4IBAQB0qx8YG8HuakbrGhHReiDg 4PVxm6yNxCXToh+9J8dngMV1QldUxtn/IMcuGfG9V9XafNLlijuvtw9TTUUihWVu Vh9Zw2oSyHMdytswjlYE77By/aMcKE5zbUvIeCZnbv7CHpABQp7D1QZ/8qufQNje Z0Ns7xN5i4MhCqk2N7+EnlvbKgzGuffNUC15b09Di5UOn/LjaCDoouOx7CvKrgec vddHI3zfjQrvqsoUgxVzFflLMbtPMHNYoRTz2RsmO+Xn8laWqxhHubhT8Mk/ZbrG PkNUbaKV6viHcqoBSbaIGauEXk4CD/HcbRvHgBBFStgFK803GdHZmk0817UjnSBF -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3d/M+wE6bpghMHNiV8mn LjInqlk8KkIBIPnzFRprbjPbtL+xg4N2GRKjFyW2Jvo5ijzz96G6K8jA2yMgjUWD h22n5Fxv/rdcRYRxH+f81tBUpGadgoO/gTD/in2iyCueYcTrUEBcmnjaUy7JYI5V sp5TDzG7KairhXIubbNCSJ3SO9yiYjUPHKnaV9uOixPt7BbNqwMRXzVylFZSGaoF os5Ik0awnZ+mmHe2PtK7sybjvS0GbB87BQbWiP+OGvuPyOtDdS/mu1jDgO9bexjv VTOzFBp26PaACR8VuLnZrbCMO6y2KioLcRBC4M5JknQPZoJE3P97BD9CAkLP0AFe rQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 387300373845896103869053711623527084783402 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-10 21:45:52 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-10 21:45:52 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.berndhauser.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28009025638331389780776287867397051004195171541255277703726115204625558214041220766708300564439143651993501709018653535502251641695667440207190406768435342099583249245421729482092819908661217744542866043753170570546667267084283138781642281073780720346644457001391108633592941224720892940730056226566521416386743945296736878849668236325248588233661594842694234620614493715173787948386827133111043177537997031074799267786471412151913779179216005131905392069681033981036681738864242333909366484855829019463386951405791488987286011944878744988151870876976364822172662714638296279987052377756907555698041713714249049661101 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f8e3256778fb9018976b55a1c9da0752cbe13261 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'berndhauser.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.berndhauser.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d913000001703147c83d0000040300473045022100b12e584cda99bb1c906f59fd718a02b40cad87f825b4b75e2546f5167bf1f93602201bd2142eb0236f387bd2ecff0b19eb063d7730d5159328dda922198d6eac7eed00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c000001703147c839000004030047304502202f95f463a595ccfce9caf3e998c0510b3abcf0d8ac49eb3f0cc323d096fd647b022100fc5f8bfa6046b1f82c6386e7bd18de753506659b2ba1d9b1e8630da33a96c3c1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0074ab1f181bc1ee6a46eb1a11d17a20e0e0f5719bac8dc425d3a21fbd27c76780c575425754c6d9ff20c72e19f1bd57d5da7cd2e58a3bafb70f534d452285656e561f59c36a12c8731dcadb308e5604efb072fda31c284e736d4bc87826676efec21e9001429ec3d5067ff2ab9f40d8de67436cef13798b83210aa93637bf849e5bdb2a0cc6b9f7cd502d796f4f438b950e9ff2e36820e8a2e3b1ec2bcaae079cbdd747237cdf8d0aefaaca1483157315f94b31bb4f307358a114f3d91b263be5e7f25696ab1847b9b853f0c93f65bac63e43546da295eaf88772aa0149b68819ab845e4e020ff1dc6d1bc78010454ad8052bcd3719d1d99a4d3cd7b5239d2045