klopotek.de
Issued by R3
About this certificate
This digital certificate with serial number 04:2b:ce:fc:be:7c:80:18:bf:1b:fc:12:b1:c2:91:41:9d:cf was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=klopotek.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:2b:ce:fc:be:7c:80:18:bf:1b:fc:12:b1:c2:91:41:9d:cfSerial Number (int): 363356418794103144805352465494452306288079
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a3:62:63:57:54:f1:d6:0c:7c:f9:b8:7f:2c:3e:58:ca:09:05:0d:2a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 92:ef:5e:8e:a5:29:34:b4:51:1d:b1:8b:e4:9a:da:51:b7:c6:b8:4c
Fingerprint (sha256): 4c:29:4e:4c:e0:49:b7:5b:6a:ae:66:a2:42:ee:44:2c:6e:89:ae:27:2a:92:12:2a:f3:49:f8:51:e3:ad:82:f5
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate klopotek.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for klopotek.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
klopotek.de
www.klopotek.de
www.klopotek.de
Other certificates including the domain name klopotek.de
(limited to 100 certificates)
*.klopotek.de
klopotek.de
webmail.klopotek.de
*.klopotek.de
klopotek.de
klopotek.de
klopotek.de
klopotek.de
klopotek.de
klopotek.de
klopotek.de
webmail.klopotek.de
klopotek.de
www.klopotek.com
klopotek.de
klopotek.de
*.klopotek.de
www.klopotek.de
klopotek.de
klopotek.de
*.klopotek.de
saas.klopotek.de
asp-unesco.klopotek.de
sip.klopotek.com
saas.klopotek.de
klopotek.de
autodiscover.klopotek.com
klopotek.de
mail.klopotek.com
klopotek.com
*.klopotek.de
klopotek.de
*.stream.klopotek.com
asp-unesco.klopotek.de
klopotek.de
*.klopotek.de
klopotek.de
klopotek.de
klopotek.de
*.klopotek.de
*.klopotek.de
klopotek.de
klopotek.de
klopotek.de
webmail.klopotek.de
*.klopotek.de
klopotek.de
klopotek.de
klopotek.de
klopotek.de
klopotek.de
klopotek.de
klopotek.de
webmail.klopotek.de
klopotek.de
www.klopotek.com
klopotek.de
klopotek.de
*.klopotek.de
www.klopotek.de
klopotek.de
klopotek.de
*.klopotek.de
saas.klopotek.de
asp-unesco.klopotek.de
sip.klopotek.com
saas.klopotek.de
klopotek.de
autodiscover.klopotek.com
klopotek.de
mail.klopotek.com
klopotek.com
*.klopotek.de
klopotek.de
*.stream.klopotek.com
asp-unesco.klopotek.de
klopotek.de
*.klopotek.de
klopotek.de
klopotek.de
klopotek.de
*.klopotek.de
*.klopotek.de
klopotek.de
klopotek.de
Certificate
The complete raw certificate details for klopotek.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE9jCCA96gAwIBAgISBCvO/L58gBi/G/wSscKRQZ3PMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA3MjYwMjQwNTRaFw0yMzEwMjQwMjQwNTNaMBYxFDASBgNVBAMT C2tsb3BvdGVrLmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgkq7 eMCVSmr3es7aZGUBNYZkmmvd7G83CrOrxeagN1jLIFE6jJPZrqdRpjBcyuUpxkXx SJJdq43k4Nk/vltIHv0yHQ/KqhlLAGQ5oqu3JDj7BrbyYIY0y7pMeYHI98C+83q5 GeDXgnYMK3IrOe0jcUPgTU9TFjdQ+bgOqEclC/cIp32vK/vjSmtPFQLlHJB/wHzY EpmCj++jXChZ2v1S6KG4yvJ/dNwR9guptUS2oZLapZBrST+UL5PArb1SRwElYJhH iZUh49HThDOMwrtRqTJWZetBQRcwwiFcQvQRd8THIUD35Afc/W+YGHiCpW4LLznJ I2mmSbjlvL9dM8jdgwIDAQABo4ICIDCCAhwwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBSjYmNXVPHWDHz5uH8sPljKCQUNKjAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDm H6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5v LmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAn BgNVHREEIDAeggtrbG9wb3Rlay5kZYIPd3d3Lmtsb3BvdGVrLmRlMBMGA1UdIAQM MAowCAYGZ4EMAQIBMIIBBgYKKwYBBAHWeQIEAgSB9wSB9ADyAHcAtz77JN+cTbp1 8jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGJkEkR9wAABAMASDBGAiEAj1+hB9Ac 64pD8n3MFl2XIW/E6M02t8qUYh8Z/VW6j4ECIQC+/9QOtQ9ZYZxBXleM6nkkeB7q FDgANlwjFVJYrJ0oVwB3AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1u AAABiZBJEj0AAAQDAEgwRgIhAJ8LLNwTR0WxcwcVIVDKMMP+yyeIb7o9ZNM5aGrF mpd6AiEApB79Np3pKR8b8YsbvZI/SnYpRVto6JKPZY8Y80G38C0wDQYJKoZIhvcN AQELBQADggEBAAsdVokATLmW19PyGeK6NO1haJr7VyQQgUccgiVxBhk1fZqPbgjq WN2mA4NtyM9jifmN2lNk+n2ze7mfH1XoOd5wGQ62qxjByU8StAhORD3Irooj5PDM akzK6tjhIAQbI1PbT5jZOu0yFrQYQ8dMHs360og596JpcetIHbtRZpNr0uTO7cro zXAaqU15gY+wvMBp6o/ve85GdHdYz4/Qhe1dayfgUAPi5kcX8ifWpTx71GqWSKbU Clx5RQLx8tUy1xOHwPEJVjZfbxZQEY0Rh8nQJC+PmGXTkwCPSW9gUbsFzVyYxzmc a40iY47xvV9BbLTRXQxuulUoYOnkZS+O0mU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgkq7eMCVSmr3es7aZGUB NYZkmmvd7G83CrOrxeagN1jLIFE6jJPZrqdRpjBcyuUpxkXxSJJdq43k4Nk/vltI Hv0yHQ/KqhlLAGQ5oqu3JDj7BrbyYIY0y7pMeYHI98C+83q5GeDXgnYMK3IrOe0j cUPgTU9TFjdQ+bgOqEclC/cIp32vK/vjSmtPFQLlHJB/wHzYEpmCj++jXChZ2v1S 6KG4yvJ/dNwR9guptUS2oZLapZBrST+UL5PArb1SRwElYJhHiZUh49HThDOMwrtR qTJWZetBQRcwwiFcQvQRd8THIUD35Afc/W+YGHiCpW4LLznJI2mmSbjlvL9dM8jd gwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 363356418794103144805352465494452306288079 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-26 02:40:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-24 02:40:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'klopotek.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16447831521769768504332907434299834873270743985686955246375101392329345296968976123127604329856114205478935290717240990577554516296283073079631103215149466897723080313081900288903400747356043577964173184314445101736904554108122484471638379883067290030565405597015132793169071186421651856706754256714040751528076539016182185017804852579981683228058950429221491051292310072448858159785090232199612097412591313271859452301344917988794864740570536836846102336029078263861492225933550366420604335559482381264172347372906134870262362472536876565446476757503841781425274143331398802567130935828944793827647073902156833152387 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a362635754f1d60c7cf9b87f2c3e58ca09050d2a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'klopotek.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.klopotek.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000189904911f700000403004830460221008f5fa107d01ceb8a43f27dcc165d97216fc4e8cd36b7ca94621f19fd55ba8f81022100beffd40eb50f59619c415e578cea7924781eea143800365c23155258ac9d2857007700e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e000001899049123d00000403004830460221009f0b2cdc134745b17307152150ca30c3fecb27886fba3d64d339686ac59a977a022100a41efd369de9291f1bf18b1bbd923f4a7629455b68e8928f658f18f341b7f02d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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