medi-media.de
Issued by Let's Encrypt Authority X1
About this certificate
This digital certificate with serial number 01:78:14:ed:ee:f7:dc:b1:19:07:7e:91:70:fc:ac:79:ef:1c was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=medi-media.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:78:14:ed:ee:f7:dc:b1:19:07:7e:91:70:fc:ac:79:ef:1cSerial Number (int): 127973989943395175944183919727923043102492
Serial Number lenght: 137 bits, 18 octets
SubjectKeyId: 95:89:c7:24:38:84:1c:56:7b:3b:f7:43:ce:e1:16:a1:ba:da:ee:cb
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 34:80:be:d8:bf:2d:db:6c:2f:d9:4b:38:f9:40:63:3c:7f:83:27:30
Fingerprint (sha256): 4c:5f:1b:65:38:14:3d:9b:7d:34:92:48:ff:8a:8c:45:0c:96:62:09:31:10:c5:61:a6:c3:fd:6b:df:b5:66:02
Issuing Certificate URL: http://cert.int-x1.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x1.letsencrypt.org/Check the revocation status for certificate medi-media.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for medi-media.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
medi-media.de
www.medi-media.de
www.medi-media.de
Other certificates including the domain name medi-media.de
(limited to 100 certificates)
www.medi-media.de
medi-media.de
medi-media.de
medi-media.de
www.medi-media.de
www.medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
www.medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
www.medi-media.de
www.medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
www.medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
medi-media.de
Certificate
The complete raw certificate details for medi-media.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGETCCBPmgAwIBAgISAXgU7e733LEZB36RcPysee8cMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMTAeFw0xNjAyMDcyMjAyMDBaFw0x NjA1MDcyMjAyMDBaMBgxFjAUBgNVBAMTDW1lZGktbWVkaWEuZGUwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDZXjYSM8wxRwSLlfLVOu8lyxS/fJ8mJf99 z31CXJi5vIeFfw1V5WGhclw1KP8gdtHRME+c/XfZ/Ztsz+wuvBMcfw3uMuIA5pnY C/sXP0kpb/jfOMbIAeQC6fs+3CI/bnNJlzsUQ7QlDiPepcJw2yNE95bapTHfRji9 Td9OZPbX8DntXjKS3gPqzxb/Ldx2DxAfs8KgvPPQWtCFedfzAkpc5rgHoHWSII6B E4XqhQGGMA71284b3uOVdrnjr8fC9HeOAIM0KdurapqfqObtbbvrge9WemnBXIYa RZRykOpsScOdGvUpKq5eu0vY+X/40IGegHUWqg8PSZ1+KD0fCHpPvMbfceRo97/B DQa8iMyNbQhSPw9MO5koeLYSyGEQgxJHzt2aYH8XIS5bDOnnYrYplYkUmilMT1vJ yEhhExEe6ZklyYylgL5hRJeAEZphhwymuoCl7EDDst+Q3/C+EMVQlxbJfGEMn1wa XnZ22mM4J/CXzDgSjI8pnDjuZnO0HLgyAw8SI9djeK5v4t4q1Ehjf/5VM9F0n64N lOLKxP3SXVUZTZNor8hTXhKVuvTx9n7aYtFh6KYvM0LdItUWjRqXLcy/SlNjYbe0 luGiOYv3yEf7Ik/GcuMD5nobeXBoSeaZD7ulCh4ZAPPO+ohl3MvM0ByXjm89wB1M 0ZALFDW/ewIDAQABo4ICITCCAh0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSVicck OIQcVns790PO4RahutruyzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBwBggrBgEFBQcBAQRkMGIwLwYIKwYBBQUHMAGGI2h0dHA6Ly9vY3NwLmludC14 MS5sZXRzZW5jcnlwdC5vcmcvMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDEubGV0c2VuY3J5cHQub3JnLzArBgNVHREEJDAigg1tZWRpLW1lZGlhLmRlghF3 d3cubWVkaS1tZWRpYS5kZTCB/gYDVR0gBIH2MIHzMAgGBmeBDAECATCB5gYLKwYB BAGC3xMBAQEwgdYwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQu b3JnMIGrBggrBgEFBQcCAjCBngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5IG9ubHkg YmUgcmVsaWVkIHVwb24gYnkgUmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5IGluIGFj Y29yZGFuY2Ugd2l0aCB0aGUgQ2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0 dHBzOi8vbGV0c2VuY3J5cHQub3JnL3JlcG9zaXRvcnkvMA0GCSqGSIb3DQEBCwUA A4IBAQBW5K3RzGFeXN3aiKB/fF+zCSM1RuzfoX2jkdDxzTdKlQxL7UV/IyFvr5z6 rVzUb2Gg7Sws3mxBrN+4Q/Uz5NSgq7D46kzJySCkGkWV7bG2q9IsemnXQuHkk/ty A+7ieKIw5536fJY3yy3u8N+Y2uiQF9/ZKyzKWTQ2NpWuLCwpRLEEApquSJLFMl+q tNXUlArg+ubHuKwOijGuaUytttVsqFima0IewwQKHvpV2MhUyjSiaRO4UoVRmLg9 lfQuvRxR4oeujE9pT5t+ITYvi7P92tvg7zaXIkifMKPs+sC2vb3moqVm3Hig4oUL q+4z/oCrY8OUrtPA+a63O1VR3DsC -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2V42EjPMMUcEi5Xy1Trv JcsUv3yfJiX/fc99QlyYubyHhX8NVeVhoXJcNSj/IHbR0TBPnP132f2bbM/sLrwT HH8N7jLiAOaZ2Av7Fz9JKW/43zjGyAHkAun7PtwiP25zSZc7FEO0JQ4j3qXCcNsj RPeW2qUx30Y4vU3fTmT21/A57V4ykt4D6s8W/y3cdg8QH7PCoLzz0FrQhXnX8wJK XOa4B6B1kiCOgROF6oUBhjAO9dvOG97jlXa546/HwvR3jgCDNCnbq2qan6jm7W27 64HvVnppwVyGGkWUcpDqbEnDnRr1KSquXrtL2Pl/+NCBnoB1FqoPD0mdfig9Hwh6 T7zG33HkaPe/wQ0GvIjMjW0IUj8PTDuZKHi2EshhEIMSR87dmmB/FyEuWwzp52K2 KZWJFJopTE9bychIYRMRHumZJcmMpYC+YUSXgBGaYYcMprqApexAw7LfkN/wvhDF UJcWyXxhDJ9cGl52dtpjOCfwl8w4EoyPKZw47mZztBy4MgMPEiPXY3iub+LeKtRI Y3/+VTPRdJ+uDZTiysT90l1VGU2TaK/IU14Slbr08fZ+2mLRYeimLzNC3SLVFo0a ly3Mv0pTY2G3tJbhojmL98hH+yJPxnLjA+Z6G3lwaEnmmQ+7pQoeGQDzzvqIZdzL zNAcl45vPcAdTNGQCxQ1v3sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 127973989943395175944183919727923043102492 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-02-07 22:02:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-05-07 22:02:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'medi-media.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 886784123015905082189345436483212328057237841655233185625120881659756709083534013755004698349413279187900909766948048926778480634237502067385972556594580676617057778446310328928674295090590849803891042556197674075434887553217802721128916681211530832765667544029610389836810766581114964958763704183735394877103134762087330427362805411039484769701602739389186685870937780042731490212601039461336308946753017834481065443621491154343850978923457545927896630789353885283062184392427025239409328460810073747196954343316258570033450072515289208378066433752069246624963673433054895661449934417809185186817152918191844704463621839253585798777403236130382544700165462853334526112153140906266522817420707327327828364395331651047061024016431982430568078560461919146400780819230120352689520462575234995003212958179696666509327553237232242293870141489577116151738377345674538700428527030579791881772400816118596594561210509157722392845711692902031748019590930613664197441918947981933889474366196310717737630146897306328901141072436184870881072433829189027994309972670912818591286230661943007986811120323488443105845110745786972428646888128082545232283524273376923324270028428278716472869238737594608254101489941847136135901568930256477653050965883 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9589c72438841c567b3bf743cee116a1badaeecb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x1.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x1.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'medi-media.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.medi-media.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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