www.marlis-john.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:ce:61:e1:a3:ad:c4:31:21:d8:bf:f5:73:44:24:77:ae:3f was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.marlis-john.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:ce:61:e1:a3:ad:c4:31:21:d8:bf:f5:73:44:24:77:ae:3fSerial Number (int): 418677418014938573205155432788167449095743
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: c7:1a:84:77:e8:01:87:ed:82:18:d0:dc:70:d1:df:3a:82:6f:08:79
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): b8:a9:31:29:4c:6a:ab:84:df:8f:51:af:a8:2f:64:ec:6b:58:db:cb
Fingerprint (sha256): 54:3d:21:cc:b2:ec:00:95:fb:28:79:0d:24:5e:c6:de:af:42:ab:66:f7:41:34:ea:42:66:44:74:e8:a6:e1:2f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.marlis-john.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.marlis-john.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.marlis-john.de
Other certificates including the domain name marlis-john.de
(limited to 100 certificates)
marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
www.marlis-john.de
marlis-john.de
www.marlis-john.de
www.marlis-john.de
Certificate
The complete raw certificate details for www.marlis-john.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgISBM5h4aOtxDEh2L/1c0Qkd64/MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MTcxMTA2NTlaFw0x OTExMTUxMTA2NTlaMB0xGzAZBgNVBAMTEnd3dy5tYXJsaXMtam9obi5kZTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANIup5CliKLUp+7h9n9UtRQRqxMi loJBr+kqfjYVYkmQgp2jAjRaWjA/JuWL0jmv2luHHGmoAMyrol09DN9VaBZvSc0e KIhWfTYgSGyV9cxRAJ8Y162A/epZc25L+f5uhKwt6UlDYUIshXbQer+hIqqKoJ24 GVGEnHfMy8fAm+DGTgLe4QZ76jaxDjOtCB9rmcm5x/ZbYA7XpvfvT79W+kgEwJ8E JrHuFRBmtmzogkM8nKphdpxlQBjDNxN40QdCD0+96A5hE78fdfEobj31UM5AEamv O1fujfP5fFAfY4lj/H7WQxJvQfCiN3D8vn145ERRduxJyydQ2YemQMepLOkCAwEA AaOCAmYwggJiMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUxxqEd+gBh+2CGNDccNHf OoJvCHkwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUH AQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5 cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5 cHQub3JnLzAdBgNVHREEFjAUghJ3d3cubWFybGlzLWpvaG4uZGUwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdgB0 ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWyfeULrAAAEAwBHMEUC IQCAHiLe2+aakeWne9DeBTMJXWQu2QiOzNV5C6QFcY/YyAIgVIQlNQg0edysII/1 K7y/5FltlofedVx4NI1k7GN8+qYAdQBj8tvN6DvMLM8LcoQnV2szpI1hd4+9daY4 scdoVEvYjQAAAWyfeUDMAAAEAwBGMEQCIDxYONTOCVeYwCtYmoMYn810bql4tZfk RXgRReeUTAqVAiBrRQGxPZEBpy23ZJkdVlzlcSWWPhhWdtfTRFos6ocO1DANBgkq hkiG9w0BAQsFAAOCAQEAhb4XDy/zisGurkj815RkEt4tptHOuuo0B1v1bnsCSbGd 5KBwhglLzHRX+l9VSGUYUan92/UqDwlRXZMc+l/LinQtKZDM2CaOMRhksBwjSZGu RZGbjTWIZaAZjrMW091r1FjXFJb36ZGwtcOYs8oMdD1p6p5vJnQAr5lqiod3SdoN weqxdWhIYBzy7z/z7YAESfqK2LThopbs7clppcraFiIpiqDa3NblR0nyON+Licvq yMgzhbiKmiy0EDKyw+Xh3oaXdwAJlg7M8gWCtNKB7q9DySmZeb0j2jA9c9SpmNWX l0ibElnzNTevV3xvqlKjmn8VW061rlvT5bo4aFk0qA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0i6nkKWIotSn7uH2f1S1 FBGrEyKWgkGv6Sp+NhViSZCCnaMCNFpaMD8m5YvSOa/aW4ccaagAzKuiXT0M31Vo Fm9JzR4oiFZ9NiBIbJX1zFEAnxjXrYD96llzbkv5/m6ErC3pSUNhQiyFdtB6v6Ei qoqgnbgZUYScd8zLx8Cb4MZOAt7hBnvqNrEOM60IH2uZybnH9ltgDtem9+9Pv1b6 SATAnwQmse4VEGa2bOiCQzycqmF2nGVAGMM3E3jRB0IPT73oDmETvx918ShuPfVQ zkARqa87V+6N8/l8UB9jiWP8ftZDEm9B8KI3cPy+fXjkRFF27EnLJ1DZh6ZAx6ks 6QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 418677418014938573205155432788167449095743 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-17 11:06:59 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-15 11:06:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.marlis-john.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26533050259365756866158572709207944308521015077078643710676681525798137593915320529096760468718928650132933310549388946393675605961467060472584490506985694094273826745840555052918924041020689011855369038461450847122590214228574261920831302803871525669703097638856139140200717047210858426331745687442343594618299586206820977097656915103460273281904535649164972252498819969876386465863590304550596541328624333184528972165931716130749388664311547862547659956504003246232919474580741543156054657918062267614949493721617157584737310860798145573791195280511622123981633826980354484973238745491515918441046418671708590910697 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c71a8477e80187ed8218d0dc70d1df3a826f0879 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.marlis-john.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016c9f7942eb0000040300473045022100801e22dedbe69a91e5a77bd0de0533095d642ed9088eccd5790ba405718fd8c8022054842535083479dcac208ff52bbcbfe4596d9687de755c78348d64ec637cfaa600750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016c9f7940cc000004030046304402203c5838d4ce095798c02b589a83189fcd746ea978b597e445781145e7944c0a9502206b4501b13d9101a72db764991d565ce57125963e185676d7d3445a2cea870ed4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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