*.dfg.de

- Deutsche Forschungsgemeinschaft DFG -

Issued by Thawte SSL CA

About this certificate

This digital certificate with serial number 37:93:5e:6a:32:1e:a8:ff:6f:51:c3:cb:9c:7e:ea:50 was issued on by Thawte, Inc..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

Deutsche Forschungsgemeinschaft DFG

Organization: Deutsche Forschungsgemeinschaft DFG
Organization unit: I-INF-1
State / Province: Nordrhein-Westfalen
Locality: Bonn
Country: DE

Thawte, Inc.

Organization: Thawte, Inc.
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 37:93:5e:6a:32:1e:a8:ff:6f:51:c3:cb:9c:7e:ea:50
Serial Number (int): 73872722366574278775308968131500632656
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId:
AuthorityKeyId:

Fingerprint (sha1): 5a:9b:61:e5:cc:d4:10:06:78:c9:74:9a:91:75:a7:00:ef:62:d8:6b
Fingerprint (sha256): 54:73:38:2f:62:35:f6:ef:1f:4b:9c:c2:d9:56:35:cf:4c:75:f8:4c:12:db:87:e5:98:38:e7:0a:80:47:a6:b2


Revocation information

OCSP Server: http://ocsp.thawte.com
CRL Distribution Point: http://svr-ov-crl.thawte.com/ThawteOV.crl

Check the revocation status for certificate *.dfg.de

0

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.dfg.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA

Key Usage

Extended Key Usages

Server Authentication
Client Authentication

Extensions

4 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any subject alternative names.

Other certificates including the domain name dfg.de

(limited to 100 certificates)
fta.dfg.de
remote.dfg.de
dfg.de
mediathek.dfg.de
mail.dfg.de
remote.dfg.de
elan-t.dfg.de
elan.dfg.de
wlan.dfg.de
mbx.t.dfg.de
remote.dfg.de
konten-entw.dfg.de
mediant.dfg.de
jira.dfg.de
mx2.dfg.de
mediathek.dfg.de
ai-initiative.dfg.de
elan-entw.dfg.de
log-t.dfg.de
oos.dfg.de
log-t.dfg.de
jobs.dfg.de
autodiscover.t.dfg.de
ot.dfg.de
mediant.dfg.de
dfg.de
log.dfg.de
spamverdacht.dfg.de
fta-eval.dfg.de
elan.dfg.de
remote.dfg.de
log-t.dfg.de
telearbeit.int.dfg.de
srwgp319.dfg.de
jobs.dfg.de
captiveportal.dfg.de
uc.dfg.de
instrumentenkasten.dfg.de
mediant.dfg.de
elan-ci-entw.dfg.de
srlgp042.dfg.de
elan.dfg.de
dfg.de
dfggast.dfg.de
meeting.dfg.de
jobs.dfg.de
ics.t.dfg.de
dfg.de
konten-entw.dfg.de
log.dfg.de
wlan.dfg.de
remote.dfg.de
fta.dfg.de
elan-entw-en.dfg.de
da.dfg.de
autodiscover.dfg.de
uc.dfg.de
autodiscover.dfg.de
wlan.dfg.de
log-t.dfg.de
dfg.de
dfggast.dfg.de
itsm-web.int.dfg.de
elan.dfg.de
www.events.dfg.de
mediathek.dfg.de
*.dfg.de
elan.dfg.de
remote.dfg.de
eduroam.dfg.de
quicklink-t.dfg.de
elan-entw.en.dfg.de
konten-entw.dfg.de
wlan.dfg.de
uc.t.dfg.de
elan.dfg.de
dfg.de
*.dfg.de
remote.dfg.de
itsm-web.int.dfg.de
ai-initiative.dfg.de
wlan.dfg.de
quicklink-t.dfg.de
log.dfg.de
vpn-tau.dfg.de
fta.dfg.de
ai-initiative.dfg.de
dfggast.dfg.de
groupware.dfg.de
remote-entw.dfg.de
dfg.de
dfg.de
wlan.dfg.de
dfggast.dfg.de
konten-entw.dfg.de
quicklink-t.dfg.de
dfg.de
dfg.de
remote.dfg.de
groupware.dfg.de

Certificate

The complete raw certificate details for *.dfg.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxykpBV5lyB3/usnucneX
/BIaBywC4qQJK2AIZT8TBIJo+OxUhN7MseW4baVpX2yiolbp53Sw0Jz9DdvvlMWA
nE5HWNzHZAS42WCqWewWyY5Eg4hpB7/QG2vVsTZGpS4r/YAwtCgTMfim6BGSML5t
jkqM3l6KV5plMcr2fYOf5duqIqBvKUdMT4LSr+nQW/Bq9/pX1pcOjzZg6hkiOtTj
4hzbYPpoDNUdPdJCCQCyQvU47IGNJUyptSl4yeskGRpOjNwNha9NhB2hfmdDw0ET
AWMrlNJCfKs+PIH6A7tV84kU+CUNOf1ttfPQ5/hJy3vc17IsZHZAAhraYiJX47+g
BQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 73872722366574278775308968131500632656
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2011-01-20 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-03-02 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nordrhein-Westfalen'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Bonn'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Deutsche Forschungsgemeinschaft DFG'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'I-INF-1'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String '*.dfg.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25141719558162230825805042234293360075222383858841517395046225056030789277259396665203446190803270841028497046771290479330511179329578711710813518017695084945630139213052123696085605395699192402193558809324425455629253612849370212130323153068948609375568911056803870016586867862360017022841508797893010671447438875215256723437961229490156042427245999241753199298491775142354584191900986888544567573953309814820152707378892226629482912335327310511317724857061224277029592290994344172393967056178627020694240756497261194112816539167095336125516014716387454448846127918802945280293871136142721337975538883236201836290053
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-crl.thawte.com/ThawteOV.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		000a8d4ca7103b7e27e6b27b5e4518fbe44e49406f4136a6fe1345c64b70e312d005d6882f5be53fbbf49d644f97ac8a4db75e03bbbd5631597a4f813395ea46b3c770a95b70de875447ba702a868ee9186a6334c0376a3f1726988f91d202b143baa7b39b5775a2bd88724435d6e6d11ea0ac23292a265593df15bd0b7777129f65f00c303bb0d32f1631312e0b19817a14253038cd3992e2ddda9275dee3915f5d59a0555ddaab93fc99bcc31c1a760acccef947164483292067055e0477c131f229abcc29d7be8635b98dbe802d157c62c12f1360a4355132fb90d8c54bfc3ac1e84e39c24b13f219817412705004428d2ae88f216af50a9e7af67068abbcb0