akk-birkenheide.org
Issued by R3
About this certificate
This digital certificate with serial number 04:9d:7f:30:30:88:c2:d8:69:c8:30:6e:35:58:20:53:e4:dd was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=akk-birkenheide.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:9d:7f:30:30:88:c2:d8:69:c8:30:6e:35:58:20:53:e4:ddSerial Number (int): 402042537503733212134474191604290579326173
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 9c:08:fe:72:7e:65:f4:9c:c0:fa:be:4d:7b:da:af:9b:25:57:e3:7c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 0b:94:54:84:fb:81:77:77:11:7d:29:27:60:c2:9d:65:55:99:ab:c7
Fingerprint (sha256): 54:f2:fd:64:d0:bc:f6:d9:08:2b:84:c0:65:a8:48:96:b7:4d:18:0c:6f:25:08:e6:ec:a2:9d:34:f0:b1:d9:0b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate akk-birkenheide.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for akk-birkenheide.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
akk-birkenheide.org
Other certificates including the domain name akk-birkenheide.org
(limited to 100 certificates)
securetest.akk-birkenheide.org
akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
www.akk-birkenheide.org
Certificate
The complete raw certificate details for akk-birkenheide.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgISBJ1/MDCIwthpyDBuNVggU+TdMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMjEwNTI4NTFaFw0yNDAxMTkwNTI4NTBaMB4xHDAaBgNVBAMT E2Fray1iaXJrZW5oZWlkZS5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDkeZ7QAi7eXqf4yZASyKuRn3+wQ8Wne43w8/GXFTZTLypcwBm8BQUU4oDz 2mZXcsEy7dCczPmmMLRuSt+ghduz4ecZm194x2gx0fJvYXGd1NBzw3FCaIM8dXmr a99vcLI8eItt2HKsXtiz0VSBBZfR/8STjgYNs4jg93KsyltJrvS/t4jO4fX4GFDr ABZBLScmTMcfIfkNDPhYPKDR5ARH3myWNXM5SI4t4u9alHGTDnRRuDl7yOvsTGCt HTcRi2sp0Av0FwBNF7zECKeKlamtpn8WHgq4G/eGZP4gmb3SQPpdXc6GvWtqj354 ezCyrBp8n0Vbwx8mRJ01RC5BNtc7AgMBAAGjggIWMIICEjAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAw HQYDVR0OBBYEFJwI/nJ+ZfScwPq+TXvar5slV+N8MB8GA1UdIwQYMBaAFBQusxe3 WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0 cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5j ci5vcmcvMB4GA1UdEQQXMBWCE2Fray1iaXJrZW5oZWlkZS5vcmcwEwYDVR0gBAww CjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgDatr9rP7W2Ip+b wrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYtQ7BbiAAAEAwBHMEUCIAxqR0nVgCiJ Cpv//gk+9pAwV76MWxXk10T8R7RGK6BlAiEA/ylrrZrXraWA3DkYZ/7ow/fRUg0p DT4gXoYcb+9JDtwAdwDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAA AYtQ7BbxAAAEAwBIMEYCIQCm7SFOd8VKa4RaHyeonDWRsuMid6Dba3vBh17hEMrM LgIhAMiAWjzUPCrmYT2zSz+FBxqx0F8JtVc9tTFdSx6uGT4lMA0GCSqGSIb3DQEB CwUAA4IBAQClkpdx/RmzM4F/iwEkxR1EGD/x/icG181ASDDv24nja9sZ3YUuNTB4 juhErC6kkpplPgligZg46qwa2Xk/eqOMTPLcHQXn9uQQPfldunxzWF/mxMmzZe9t Za6IzPNIk+2wDcey3IOkHXPFpq0kxFq84UlfgsdM/Su4JUJOnrN5oxJge50L+5AZ YXEXbljncnTsY0fXMLj0+xUoxyjWYIwFnB7+r49JZBFkC5sW3nDr9pqY4y9zET7L x9Wz3v5xKrHBOWEz6av/SmdLbYkwRAUpQTWg0uTnWTYf74U2oUVgoUxu/GsjuJ5/ 5QiA42VUevao9wVHCBHnEjcbCHPB51X9 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Hme0AIu3l6n+MmQEsir kZ9/sEPFp3uN8PPxlxU2Uy8qXMAZvAUFFOKA89pmV3LBMu3QnMz5pjC0bkrfoIXb s+HnGZtfeMdoMdHyb2FxndTQc8NxQmiDPHV5q2vfb3CyPHiLbdhyrF7Ys9FUgQWX 0f/Ek44GDbOI4PdyrMpbSa70v7eIzuH1+BhQ6wAWQS0nJkzHHyH5DQz4WDyg0eQE R95sljVzOUiOLeLvWpRxkw50Ubg5e8jr7ExgrR03EYtrKdAL9BcATRe8xAinipWp raZ/Fh4KuBv3hmT+IJm90kD6XV3Ohr1rao9+eHswsqwafJ9FW8MfJkSdNUQuQTbX OwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 402042537503733212134474191604290579326173 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-21 05:28:51 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-19 05:28:50 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'akk-birkenheide.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28842306767729523824519185252128544049889184422942062902494683314042515762966632377004897998853770876665553941326157663846252650647039978390145897712018122599411007199817609690011560294716294558496758917790353155475010663762911762440470984014079780140217616754207143647440749978343698732492168478811877997011302795770168048670068029401591692427645209622522250886390353564174427946260043645289402317969208707029676421087297856850021942138711693323837199838806153542466065463584716835323981033940864301376013417408009449307347757195494226624101555677721323692877190866029652109204578879708784406706732904568322807748411 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9c08fe727e65f49cc0fabe4d7bdaaf9b2557e37c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'akk-birkenheide.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b50ec16e2000004030047304502200c6a4749d58028890a9bfffe093ef6903057be8c5b15e4d744fc47b4462ba065022100ff296bad9ad7ada580dc391867fee8c3f7d1520d290d3e205e861c6fef490edc007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018b50ec16f10000040300483046022100a6ed214e77c54a6b845a1f27a89c3591b2e32277a0db6b7bc1875ee110cacc2e022100c8805a3cd43c2ae6613db34b3f85071ab1d05f09b5573db5315d4b1eae193e25 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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