www.lorenz-snackworld.de
Issued by RapidSSL SHA256 CA - G4
About this certificate
This digital certificate with serial number 1c:e5 was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.lorenz-snackworld.de,OU=GT81154669+OU=See www.rapidssl.com/resources/cps (c)15+OU=Domain Control Validated - RapidSSL(R)
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 1c:e5Serial Number (int): 7397
Serial Number lenght: 13 bits, 2 octets
SubjectKeyId:
AuthorityKeyId: f3:b5:56:0c:c4:09:b0:b4:cf:1f:aa:f9:dd:23:56:f0:77:e8:a1:f9
Fingerprint (sha1): 92:12:3f:d8:a1:b7:65:ee:31:cf:55:ec:ed:c9:80:81:fa:6a:4c:d0
Fingerprint (sha256): 57:5e:a8:2c:38:8e:86:40:1a:d9:55:5b:59:cf:98:4b:18:7e:ec:2d:53:6c:da:3e:57:ce:b0:1f:41:e8:60:fa
Issuing Certificate URL: http://gz.symcb.com/gz.crt
Revocation information
OCSP Server: http://gz.symcd.comCRL Distribution Point: http://gz.symcb.com/gz.crl
Check the revocation status for certificate www.lorenz-snackworld.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.lorenz-snackworld.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
Other certificates including the domain name lorenz-snackworld.de
(limited to 100 certificates)
lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
sni.cloudflaressl.com
www.lorenz-snackworld.de
lorenz-snackworld.de
www.lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
www.lorenz-snackworld.de
lorenz-snackworld.de
www.lorenz-snackworld.de
www.lorenz-snackworld.de
www.lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
www.lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
bettersnack-betterworld.com
lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
sni.cloudflaressl.com
www.lorenz-snackworld.de
lorenz-snackworld.de
www.lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
www.lorenz-snackworld.de
lorenz-snackworld.de
www.lorenz-snackworld.de
www.lorenz-snackworld.de
www.lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
www.lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
bettersnack-betterworld.com
lorenz-snackworld.de
lorenz-snackworld.de
lorenz-snackworld.de
Certificate
The complete raw certificate details for www.lorenz-snackworld.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEyDCCA7CgAwIBAgICHOUwDQYJKoZIhvcNAQELBQAwRzELMAkGA1UEBhMCVVMx FjAUBgNVBAoTDUdlb1RydXN0IEluYy4xIDAeBgNVBAMTF1JhcGlkU1NMIFNIQTI1 NiBDQSAtIEc0MB4XDTE1MDkyMTA2MDUxOFoXDTE2MTIyMjIxNDMwMlowgZwxEzAR BgNVBAsTCkdUODExNTQ2NjkxMTAvBgNVBAsTKFNlZSB3d3cucmFwaWRzc2wuY29t L3Jlc291cmNlcy9jcHMgKGMpMTUxLzAtBgNVBAsTJkRvbWFpbiBDb250cm9sIFZh bGlkYXRlZCAtIFJhcGlkU1NMKFIpMSEwHwYDVQQDExh3d3cubG9yZW56LXNuYWNr d29ybGQuZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6EF9G02B9 /d+H14aXZQEqaxRSo1xAqGMzv/qUapv8mbPywzE3Jx9sMBv2kCeImO7K63TalsSR RXRQGX915Fh8hhS9kpdwmPM+1Cup9q2GxNA0p9SuHyIHOBCalpQKDE+y5AWF7XEw xs5qD+FeMSO7qy38e1q+y78eGzzJX688RMQAWSbXm8rtAZULELXW2vIeKyeDzTGL 6+RRvkX4P2wczY1khDYn3BAdJLzjSonMEIGp6EHvE0C5BgR5jzgo8QLHGyuGQQZM aBhFaA+pm1Bfk4hIyOQMeBQghNAl9seEkXlqYXr19B1ODv2AEho26G809Fti0H2k DziCcgC9VGhTAgMBAAGjggFmMIIBYjAfBgNVHSMEGDAWgBTztVYMxAmwtM8fqvnd I1bwd+ih+TBXBggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly9nei5z eW1jZC5jb20wJgYIKwYBBQUHMAKGGmh0dHA6Ly9nei5zeW1jYi5jb20vZ3ouY3J0 MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw OQYDVR0RBDIwMIIYd3d3LmxvcmVuei1zbmFja3dvcmxkLmRlghRsb3Jlbnotc25h Y2t3b3JsZC5kZTArBgNVHR8EJDAiMCCgHqAchhpodHRwOi8vZ3ouc3ltY2IuY29t L2d6LmNybDAMBgNVHRMBAf8EAjAAMEEGA1UdIAQ6MDgwNgYGZ4EMAQIBMCwwKgYI KwYBBQUHAgEWHmh0dHBzOi8vd3d3LnJhcGlkc3NsLmNvbS9sZWdhbDANBgkqhkiG 9w0BAQsFAAOCAQEAItHzMsCZTVVfqi0XdCJWe+vDmSN/9/3uXtyNUHb9EjMgzUrT 6cvOFnZPpNyai6YNGvOcLDTfg/S7z04t/oi/amAh2EF50mYVG9ANJKTBwPxzf9cr IK1CBT2rTcCFKnaEZUIzG4KVTkWlGwWLGW3djG3+wWxtAGM1AK4WCKLaLO8WGcTv OZhdG4uCI5xHjynLYfFG9UoR+e3TAF+Fa0e/K2XjCOQCkR0GUvYd5pV0E43wPYCX X2kwLuXUmApsvBlowG31z4caEGg5T/pm9DBymGsN1CF9q8hV9rW2e6KJ5EuAUpXh DbjScCvrY0+4IHAG+KJiVJ9Q5/T5xcGJcY3yHg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhBfRtNgff3fh9eGl2UB KmsUUqNcQKhjM7/6lGqb/Jmz8sMxNycfbDAb9pAniJjuyut02pbEkUV0UBl/deRY fIYUvZKXcJjzPtQrqfathsTQNKfUrh8iBzgQmpaUCgxPsuQFhe1xMMbOag/hXjEj u6st/Htavsu/Hhs8yV+vPETEAFkm15vK7QGVCxC11tryHisng80xi+vkUb5F+D9s HM2NZIQ2J9wQHSS840qJzBCBqehB7xNAuQYEeY84KPECxxsrhkEGTGgYRWgPqZtQ X5OISMjkDHgUIITQJfbHhJF5amF69fQdTg79gBIaNuhvNPRbYtB9pA84gnIAvVRo UwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7397 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA - G4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-09-21 06:05:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-22 21:43:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT81154669' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)15' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.lorenz-snackworld.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23488398143815729488672151161419005272816666436003305748179524720342890585107532972941725558887112701964117669403474294770672015402488783118192753979243146139267206187362021934710055352738585329616473397941559364955840032314623926392945036798628687857558064753532874631512228453593878053530168480892945539248006541930038497580879642954651281398590473593277123443711502267132780243207800496137943622486973701981461971333568016380776936488417919956481663273988754385912475921587677972051897122062575144177513063712101185781816370209696427947516148914355941282700171987695352543315111347951551474897803425814346745538643 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f3b5560cc409b0b4cf1faaf9dd2356f077e8a1f9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gz.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gz.symcb.com/gz.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lorenz-snackworld.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lorenz-snackworld.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gz.symcb.com/gz.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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