*.fliegergemeinschaft.de
Issued by Encryption Everywhere DV TLS CA - G2
About this certificate
This digital certificate with serial number 0b:9a:73:ee:5c:36:db:da:88:a2:fb:5f:61:17:c0:ee was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.fliegergemeinschaft.de
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0b:9a:73:ee:5c:36:db:da:88:a2:fb:5f:61:17:c0:eeSerial Number (int): 15423473031794477521065276236694536430
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 2a:33:76:18:20:22:21:11:70:7c:22:61:90:7b:d9:12:8f:52:19:63
AuthorityKeyId: 78:df:91:90:5f:ee:de:ac:f6:c5:75:eb:d5:4c:55:53:ef:24:4a:b6
Fingerprint (sha1): e8:f4:58:d9:88:fc:ad:56:19:7c:56:a4:2c:15:af:42:88:31:66:96
Fingerprint (sha256): 4e:2d:6a:b7:f9:76:bd:c6:1f:c2:52:0f:d0:85:51:90:6f:89:b2:18:37:80:66:c9:f7:61:9a:e3:3e:0f:fe:1d
Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCheck the revocation status for certificate *.fliegergemeinschaft.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.fliegergemeinschaft.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.fliegergemeinschaft.de
fliegergemeinschaft.de
fliegergemeinschaft.de
Other certificates including the domain name fliegergemeinschaft.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for *.fliegergemeinschaft.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGHjCCBQagAwIBAgIQC5pz7lw229qIovtfYRfA7jANBgkqhkiG9w0BAQsFADBu MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg RFYgVExTIENBIC0gRzIwHhcNMjQwMTExMDAwMDAwWhcNMjUwMTIzMjM1OTU5WjAj MSEwHwYDVQQDDBgqLmZsaWVnZXJnZW1laW5zY2hhZnQuZGUwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQCuVBwFmYB7OpaDYZYyyftBtleblI6IG4P9ABnY FQZGnSHogLjxv73GL3/jAilpaakArgxppRm/LljR5lU3MgDrezLwE+MLQKKO33D8 +ZSr8KkXxI8Kn9GBLIWY77R8Ir4bvxNNCtaCTHbrGLjsDHUlhz1RqSKjmwPxc5BB IRZzdquEIqgaMPRV0KUwnmvstPB8PABiYnwf9OKu7/YJCbmfvPesJ/M4f0NkMljE 3SpBdtjfyvzcw43uHdU4IYirJsdI1eJaTVxvKkM1WZGEOW+PJA04h0STMZjalSov gRwTAQi1A+FW0m+FEHO6GxD5GGtiAdzGlpHD0REfNEuKrtEzAgMBAAGjggMBMIIC /TAfBgNVHSMEGDAWgBR435GQX+7erPbFdevVTFVT7yRKtjAdBgNVHQ4EFgQUKjN2 GCAiIRFwfCJhkHvZEo9SGWMwOwYDVR0RBDQwMoIYKi5mbGllZ2VyZ2VtZWluc2No YWZ0LmRlghZmbGllZ2VyZ2VtZWluc2NoYWZ0LmRlMD4GA1UdIAQ3MDUwMwYGZ4EM AQIBMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMIGA BggrBgEFBQcBAQR0MHIwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0 LmNvbTBKBggrBgEFBQcwAoY+aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Vu Y3J5cHRpb25FdmVyeXdoZXJlRFZUTFNDQS1HMi5jcnQwDAYDVR0TAQH/BAIwADCC AXwGCisGAQQB1nkCBAIEggFsBIIBaAFmAHUAzxFW7tUufK/zh1vZaS6b6RpxZ0qw F+ysAdJbd87MOwgAAAGM+EMLqgAABAMARjBEAiAQlLUnt6miAI4WpFhvDvHI80F9 ZnHso6RqCgXH41U1UwIgJm89D38kUnv1mT+YfjPNOWb9uvh5wI7xS+ftpp4RXpQA dQB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAYz4QwtbAAAEAwBG MEQCIGcHbxzBJqz+P2pQPKH3R9SHhc2F8uSXJ99OeFadqCDCAiBwFUaUzJnKRQT8 TORHMGdmKznxgCb2KKt+jR7AuEJ3jgB2AObSMWNAd4zBEEEG13G5zsHSQPaWhIb7 uocyHf0eN45QAAABjPhDC4QAAAQDAEcwRQIhAOqVKN9vgWlMM57OVcg1qivWLzN8 NHE1Mb2m4ADi5WUHAiA13l1DICoZc9Ij7aQT7g5QSkZfZAzcaaG3RYem0P/R/zAN BgkqhkiG9w0BAQsFAAOCAQEAjc7b8p2MxVwnBoqBE7uP8PwOVmrP/ELuRuJXJLq8 j8Jit3HebRXNMBqUbHx+ruSBjPHT5JhdA52wLCBzkrNAbBjv8wyCbRLx//EGmYkK wAvhzURlSK6YfyeGOUQIEYtjYf7TYxTU0Hr+pPI3ZOGh2ZevY5EVRV8kMYetwAdg 2tjaVTK3uTKMxWSJre8Klng8odCV5pYNW+qvnKrdaXH/n3z231HxM0midVTDJujV iWT72Xi3lAcTNYRg8+ImsTyATsFEHR5mmuLcrcSMXDtfOvw3RYOXnDQ8cY0ykTMl V4amYxSfWE0H3mnoVGj+1+FhT8I71EoWyf5vtmi0kMhZYA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArlQcBZmAezqWg2GWMsn7 QbZXm5SOiBuD/QAZ2BUGRp0h6IC48b+9xi9/4wIpaWmpAK4MaaUZvy5Y0eZVNzIA 63sy8BPjC0Cijt9w/PmUq/CpF8SPCp/RgSyFmO+0fCK+G78TTQrWgkx26xi47Ax1 JYc9Uakio5sD8XOQQSEWc3arhCKoGjD0VdClMJ5r7LTwfDwAYmJ8H/Tiru/2CQm5 n7z3rCfzOH9DZDJYxN0qQXbY38r83MON7h3VOCGIqybHSNXiWk1cbypDNVmRhDlv jyQNOIdEkzGY2pUqL4EcEwEItQPhVtJvhRBzuhsQ+RhrYgHcxpaRw9ERHzRLiq7R MwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15423473031794477521065276236694536430 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-23 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.fliegergemeinschaft.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22006940984867562899538355928263235915012479903512992523860038526390841685199620098895843788305492807455149629760506873896481444498448850395157537921279560113695600578513665987673753731801908332237842514467147888378130707308790743222371218184917198564074022686520188694701507731539689490916872826692747053486696413639944310154647948442179869997201247065959201320091734085762582949300991595922226137838103553012224865583301942166092388482818224004000350008761277394802310310437800934669806440077644635010087299391841841775137880244996290667127401244654016157886188123125464072741830659197173029172991931870669196677427 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 78df91905feedeacf6c575ebd54c5553ef244ab6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2a33761820222111707c2261907bd9128f521963 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.fliegergemeinschaft.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fliegergemeinschaft.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 008dcedbf29d8cc55c27068a8113bb8ff0fc0e566acffc42ee46e25724babc8fc262b771de6d15cd301a946c7c7eaee4818cf1d3e4985d039db02c207392b3406c18eff30c826d12f1fff10699890ac00be1cd446548ae987f2786394408118b6361fed36314d4d07afea4f23764e1a1d997af639115455f243187adc00760dad8da5532b7b9328cc56489adef0a96783ca1d095e6960d5beaaf9caadd6971ff9f7cf6df51f13349a27554c326e8d58964fbd978b7940713358460f3e226b13c804ec1441d1e669ae2dcadc48c5c3b5f3afc374583979c343c718d329133255786a663149f584d07de69e85468fed7e1614fc23bd44a16c9fe6fb668b490c85960