hajoscho.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:09:c6:68:dc:e8:02:d6:65:b3:ae:01:9d:b7:c9:53:ac:b2 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hajoscho.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:09:c6:68:dc:e8:02:d6:65:b3:ae:01:9d:b7:c9:53:ac:b2Serial Number (int): 264663130720119811743045771190194398276786
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a4:31:aa:43:50:e7:8e:5a:15:69:a6:01:6a:7f:5b:8c:91:6a:ad:be
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 7b:bf:67:b6:6d:73:c7:e2:12:bf:88:b3:98:db:da:bf:f8:36:31:73
Fingerprint (sha256): 55:28:d7:51:2a:33:26:18:5e:45:4d:71:54:23:11:ba:45:d3:77:97:ec:b0:7d:98:37:3b:2c:06:80:cf:bf:31
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate hajoscho.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hajoscho.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hajoscho.de
www.hajoscho.de
www.hajoscho.de
Other certificates including the domain name hajoscho.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for hajoscho.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXzCCBUegAwIBAgISAwnGaNzoAtZls64BnbfJU6yyMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MDIxMDQxMzJaFw0x OTEyMDExMDQxMzJaMBYxFDASBgNVBAMTC2hham9zY2hvLmRlMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAsIW+CLXwUVylxtYoVLJAKGnGrCqABxRDmwva RbHyPbQy1O9FBHyOo66UjAql7nzpXBTDFWd33PkyE3pvEYIYYnXruD15UJw8A587 p47YLlWmWAs8nFR21QQl6S0derzxshwh9CHH51pZT5NTwJNyuEFMg0nnM/HTlaj9 wG8QeUIML9r0j0V/Q7yMwGl5MaGLEPKvirrLg2/gfGahGuQgPc6HX+90zZVSe+p7 mCvkCTVqqUusDCk2h9iuRnZRp/vYC+U7D/BIFTF4AlOloiPtg4y5MYifnwFaGmtE KHTG4GrNpy4FpfrWIt0lp8ZBEMoE5+kBLwQ5U6z7ISOwS+hFvgmpqyESWpjiW7bQ aeGF3MElzCUZ50Z9WBFGuCsbdv9fHhJsKRH/slfPdSH0peKcVxmgUPai0uWkvqqL 0H+ScsLWaIe3j3QoHtlv14CyTkHL7gC7o95MdhlC8oDOV4eHkmHyin6OqIUa5VmW kADy7X2gf2bcnTxYc2yGNDHd4ueyw7yb4a4XWEfB3akU+57vzk2A5ScSuIJiPI7S HBPCx7Wj7IKSvqNIw0FDMcgpCO4mLBU/xnHL9vLbXco4fkJkVbxZ7t3gg24Uf5a6 4kgnhGmsPK+T2oLWaMzuiQi1DD67EGkuqSn80Z1u3PkBvfvOpqIn4Hfv1FvckhiO DpoTToECAwEAAaOCAnEwggJtMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUpDGqQ1Dn jloVaaYBan9bjJFqrb4wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAnBgNVHREEIDAeggtoYWpvc2Noby5kZYIPd3d3Lmhh am9zY2hvLmRlMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgw JgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYB BAHWeQIEAgSB9QSB8gDwAHYAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7 zFYAAAFs8ce0MwAABAMARzBFAiEAxuzlqHHW9He8HN4fHdJ2u7D99qsBF7rRXLrf wke4zVsCIGJY1a02h0axxx09aT2t+LJaw5hraz2Lrio7ibAjVmt5AHYAY/Lbzeg7 zCzPC3KEJ1drM6SNYXePvXWmOLHHaFRL2I0AAAFs8ce0JQAABAMARzBFAiEAyi4U F0Ae+2K8vgZPokzZtzNulCM5GBgHLR/TkghLXHoCIFJQ/7WZWM7jnCG/7HhUDHBZ HkV3XN5kLTs3dRKRaXw9MA0GCSqGSIb3DQEBCwUAA4IBAQBU/QVZHDFxEYD/Wfyt R9Dt9oikscbSioaGUVa/1buAQfcVq5qI77u3UxWxiVfSRqIiujf51MofdUeLIUmz Wou77xgRhMdbh6HULyFgjS4Hy2agY1Fw3dKTtjjaz50ebR+Sr26iZrpYXewTQDSZ maZJrezfKvkn9DEMdmS8FeXOuGfRngiM8xnoeBTivurJq9aiJELOCuxmrXLwEf4w DUiorpT2JVb/wcMxNZnknf88GbDCNZnJEWYhbCu3plaWx3H1uKhn/h3Y54Om3tAt +Olyl+haJbX2dvCoqunuQVB36r0ul1VraRD95bNpl34VT6QHAidHglu2wdWZsytc 37nI -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsIW+CLXwUVylxtYoVLJA KGnGrCqABxRDmwvaRbHyPbQy1O9FBHyOo66UjAql7nzpXBTDFWd33PkyE3pvEYIY YnXruD15UJw8A587p47YLlWmWAs8nFR21QQl6S0derzxshwh9CHH51pZT5NTwJNy uEFMg0nnM/HTlaj9wG8QeUIML9r0j0V/Q7yMwGl5MaGLEPKvirrLg2/gfGahGuQg Pc6HX+90zZVSe+p7mCvkCTVqqUusDCk2h9iuRnZRp/vYC+U7D/BIFTF4AlOloiPt g4y5MYifnwFaGmtEKHTG4GrNpy4FpfrWIt0lp8ZBEMoE5+kBLwQ5U6z7ISOwS+hF vgmpqyESWpjiW7bQaeGF3MElzCUZ50Z9WBFGuCsbdv9fHhJsKRH/slfPdSH0peKc VxmgUPai0uWkvqqL0H+ScsLWaIe3j3QoHtlv14CyTkHL7gC7o95MdhlC8oDOV4eH kmHyin6OqIUa5VmWkADy7X2gf2bcnTxYc2yGNDHd4ueyw7yb4a4XWEfB3akU+57v zk2A5ScSuIJiPI7SHBPCx7Wj7IKSvqNIw0FDMcgpCO4mLBU/xnHL9vLbXco4fkJk VbxZ7t3gg24Uf5a64kgnhGmsPK+T2oLWaMzuiQi1DD67EGkuqSn80Z1u3PkBvfvO pqIn4Hfv1FvckhiODpoTToECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 264663130720119811743045771190194398276786 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-02 10:41:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-01 10:41:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hajoscho.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 720148688253273226218994143471351037549479214873323586778923541035349668750281765102368504164615547623607091530323427080007905754328541168402646196910833875914417381505966646086161118758980134273339548595883020185738975056620751526829219520350993596261035493311191535810917706299519478464294829073961770544555413125045265224095644195106740960423833154717072036265290032007068768446925627320701095760827886106805689230912054118572247284751238923328271436144061599573686073358840406507765334579253590275604196997434975850501718508537095945039776185070630576432579089222005498633782765448868420371794188502441895952593621241901672982237270186389841514427797082620748159346559017966474681407740848277775433759012911368890730485560091427437819784079207124077786273641476953419608753594905728608082925086432485558281720234940157831851865118522317649072248430945672720300427136032913136883186710952788324459332662580856350697656716239351123178476753989885472129593099092978479222648329150176010713616886701994898688705824357852807729390542042207770843562424308572390607437962079075480196165264795051681705900086674282968740988067126082830913671096789527020640350632514861064604968391819319713357433808862374285638972308258671720933589470849 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a431aa4350e78e5a1569a6016a7f5b8c916aadbe . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hajoscho.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hajoscho.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016cf1c7b4330000040300473045022100c6ece5a871d6f477bc1cde1f1dd276bbb0fdf6ab0117bad15cbadfc247b8cd5b02206258d5ad368746b1c71d3d693dadf8b25ac3986b6b3d8bae2a3b89b023566b7900760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016cf1c7b4250000040300473045022100ca2e1417401efb62bcbe064fa24cd9b7336e9423391818072d1fd392084b5c7a02205250ffb59958cee39c21bfec78540c70591e45775cde642d3b37751291697c3d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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