www.touchandscreen.de

Issued by RapidSSL SHA256 CA - G4

About this certificate

This digital certificate with serial number 4d:bf was issued on by GeoTrust Inc..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

Certificate Subject

CN=www.touchandscreen.de

GeoTrust Inc.

Organization: GeoTrust Inc.
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 4d:bf
Serial Number (int): 19903
Serial Number lenght: 15 bits, 2 octets

SubjectKeyId:
AuthorityKeyId: f3:b5:56:0c:c4:09:b0:b4:cf:1f:aa:f9:dd:23:56:f0:77:e8:a1:f9

Fingerprint (sha1): 50:3f:9a:08:d3:4c:61:c2:bd:b5:0e:54:ce:ef:5e:7b:6b:7c:88:0f
Fingerprint (sha256): 4c:a1:eb:4b:72:cc:82:24:4f:d9:50:9b:55:2b:d7:be:34:ed:a4:2d:4e:11:19:8a:de:02:4a:3a:59:24:8e:31

Issuing Certificate URL: http://gz.symcb.com/gz.crt

Revocation information

OCSP Server: http://gz.symcd.com
CRL Distribution Point: http://gz.symcb.com/gz.crl

Check the revocation status for certificate www.touchandscreen.de

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.touchandscreen.de

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.touchandscreen.de
touchandscreen.de

Other certificates including the domain name touchandscreen.de

(limited to 100 certificates)
touch-and-screen.de
www.touchandscreen.de
www.touchandscreen.de
www.touchandscreen.de
touch-and-screen.de
touchandscreen.de
msd.touchandscreen.de
*.touchandscreen.com
www.touchandscreen.de
www.touchandscreen.de
www.touchandscreen.de
msd.touchandscreen.de
*.touch-and-screen.de
msd.touchandscreen.de
touch-and-screen.de
www.touchandscreen.de
touchandscreen.com
touch-and-screen.de
touchandscreen.de

Certificate

The complete raw certificate details for www.touchandscreen.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyLJWRPolOS7WrKQswSEm
ZbUHSv7yCVatwfPB7Pr25r68LWs3YBQI2r/6UD/i+k7H3FrPL6mnPwtIZIpg9klw
Ze+N2abM1L63aLfCTTKJxXBTuI89SvtWrRiSt7EQGtilhHuiK99Wo+qVAuvJczq5
pTHf4YAmqqkhsUC5Uc8cFNnY9z5iPe7FRUxOQ1q+0X28nQrzcL8s2vlWb7hYU6i6
gWdMnfdcMfP3bLhdhi6DS4DcoR5nAeCui7nUqAJt4JM9kEdU6agxcaBp0guEeq/R
4sR5m9WQR3azmK8m7m5BnOOWlBOq0eDxq1V7EqgH0sHIu1X2R9Wa0e8i08ryzwEN
LvVDGei+3QFHQqXSlesGjJztUY/TytwHUSskD+E7YdZAXuznr0d8TcOq3bRhYN4G
z1GXmQ5XM0F8ZBpuYCgaX33qN2tF86iIY6VIe5FxeDEBlsZw48FDXxhW/cB46jQ2
31C8r2vsapruVZ3GDmr3nSSBf7ihhhyGPBqy7tkHlpkekppieNdjPzAP++4oAsRf
NMht4B8SZ9yZEkYMa4jVlx7/seJWfoXUmIIk1l2ORRKLo4KN/IBMXum7P9MDC/OJ
fexAO5H+oJiz+g+rmRtL/nYVh/HjWxxVV7qcn71zeKjMEs9SxmwE6QFBPw9FbLhc
hET8Q0JagwFdmKnTjanPbn0CAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 19903
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA - G4'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-12-27 10:57:53 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-02-26 19:31:09 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.touchandscreen.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 818770811429777729903399400032463499710510125081970960678988574459123991014881403037197092266697732419104419508262138597028942390812618896219941788694279330409326372874553707518743680306543100673893017608170912444606125186370153585450120356136211016321097494725948531292346782684969266072251941508450460847525663649063771294004650805788707332350469774398544897691995593571377910795213959197532577110568218395633698345369769313572626460557379458806398550873450087550575680047735995893664365036325345541586068448085992446231312169610159646323352089051517494837361713792073609847974898944354749061615119913819207778418273806794723470228342866546252892802567195292672722564935925880162182944875958109821747381085628129720219006960185313785655837859845746839282712763632585914357761891560547346361414568460642597431782263776950478444589467794344373028328529107596235322947367668017294501143501089077388754922153404895461831361820701219668336597584421019650137387136043354363081408207627866744415045122986400504760580911119956705738742179341199695923778646147485219781757063544601728374220289490411766261341389910738218782396865511629598249251461131352954607152704873451984215556685397045727690885824080990890622461036505414781278459227773
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f3b5560cc409b0b4cf1faaf9dd2356f077e8a1f9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gz.symcd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gz.symcb.com/gz.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.touchandscreen.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'touchandscreen.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gz.symcb.com/gz.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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