geo-kompakt.de
Issued by R3
About this certificate
This digital certificate with serial number 04:4f:46:7e:0a:cf:64:67:ac:aa:0f:08:24:0c:51:70:4d:fc was issued on by Let's Encrypt.
With 13 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=geo-kompakt.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:4f:46:7e:0a:cf:64:67:ac:aa:0f:08:24:0c:51:70:4d:fcSerial Number (int): 375425151122159644212181694970466334166524
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 38:fc:be:2d:47:3e:a6:81:bf:ee:c6:e3:66:0a:f0:16:78:48:fb:be
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 46:ef:fa:da:68:5d:90:3c:90:81:0a:2f:a2:b9:99:a6:7e:e3:51:6d
Fingerprint (sha256): 58:d4:13:59:79:c5:ba:ac:2b:62:49:7c:de:36:de:cc:79:1b:8d:df:db:06:b8:14:85:5b:65:08:4a:47:72:95
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate geo-kompakt.de
13
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for geo-kompakt.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
biografie-magazin.de
geo-kompakt.de
geo-saison.de
geomini.de
guidos-deko-queen.de
henri-nannen-preis.eu
nannen-preis.de
nannenpreis.de
pm-abo.de
short.beef.de
vorname-forum.de
vornamen-forum.de
www.geo-kompakt.de
geo-kompakt.de
geo-saison.de
geomini.de
guidos-deko-queen.de
henri-nannen-preis.eu
nannen-preis.de
nannenpreis.de
pm-abo.de
short.beef.de
vorname-forum.de
vornamen-forum.de
www.geo-kompakt.de
Other certificates including the domain name geo-kompakt.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for geo-kompakt.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgISBE9GfgrPZGesqg8IJAxRcE38MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMDYwMTI1NTJaFw0yNDAyMDQwMTI1NTFaMBkxFzAVBgNVBAMT Dmdlby1rb21wYWt0LmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA rqzw9s5zNlYZAjA7WT2NsP05+zKEm+cDR8oAEmZvFsaqCKJFCqTxF508/IW63o64 RSKPvxhRBf3wAqIVeZN7Ks9EzkyeX1FO3T6mrCf54VsDt7aENU3KOkH3yUFtVuQN 6l+OieF8Xs1jU+4jZS1DGHbOptxkE0OQPY47674+Z21nVJa6m26r8O0i6cN1Vwmz qfGKC7N6fDY0pWs3oE9p9kHDunHnWx+ptVP+leZ0bqMePlmU0PbcA0nPGX6giWAK 1M6V0BT3XmLXa/oqC+GliIU8R981cldX+/0mxCzEKcCNtNlkDolI21VmQCtDzkLx yHxg9e77Gvcdcb1MeOBUpQIDAQABo4IC5TCCAuEwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBQ4/L4tRz6mgb/uxuNmCvAWeEj7vjAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzCB7QYDVR0RBIHlMIHighRiaW9ncmFmaWUtbWFnYXppbi5kZYIOZ2VvLWtvbXBh a3QuZGWCDWdlby1zYWlzb24uZGWCCmdlb21pbmkuZGWCFGd1aWRvcy1kZWtvLXF1 ZWVuLmRlghVoZW5yaS1uYW5uZW4tcHJlaXMuZXWCD25hbm5lbi1wcmVpcy5kZYIO bmFubmVucHJlaXMuZGWCCXBtLWFiby5kZYINc2hvcnQuYmVlZi5kZYIQdm9ybmFt ZS1mb3J1bS5kZYIRdm9ybmFtZW4tZm9ydW0uZGWCEnd3dy5nZW8ta29tcGFrdC5k ZTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2 ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi6JzYqIAAAQDAEcw RQIgXwvDqMkRImOZKVrOQME5/VoWZNmHALKH1eQi6yhxrrkCIQCqh3suZBohfwYY 9VGmin2XQIXe4flJIMeQ2YJZCl8NlQB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOze w1FIWUZxH7WbAAABi6JzYqoAAAQDAEcwRQIgSxQaX8QDYHtNwLu1R0ENg9pnp9YA ADskR6U8dagxrFACIQD1L8tHoRxxmlDOwmkvaObbk40nLnClWIw76QOKMRIPPjAN BgkqhkiG9w0BAQsFAAOCAQEAPQEiorQXJUllYRp7xWB3gIfBTyLD8MCIAGsZdKEs L6WuEhAqd6Uo0hvUunNAD4CP3UlgY5LmR7LOV2QzeZPxTiQZSpX2E4B7GGcDu4ma HXth770Es6WbTbdZP9UYgHEtUWVgUiH4z1WayN+J//uUAkB6p4ihALVHJx67FHQT rLAoF9XNdETVbrMkYAIOxQ5/nXxJPG1+I7mdpfaS1/z77+coQHzitlt2cKpkESLV 1d9khSwp0C1JtWcsvwyXv/uQpM2mshYM72Xgkwh/phyQjFXIfDnMTLM0mC5JhgTC FYJ4Ww2AGx+QFfiP7LZ/5CWur98BlfQuMYx6eonplVtntA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqzw9s5zNlYZAjA7WT2N sP05+zKEm+cDR8oAEmZvFsaqCKJFCqTxF508/IW63o64RSKPvxhRBf3wAqIVeZN7 Ks9EzkyeX1FO3T6mrCf54VsDt7aENU3KOkH3yUFtVuQN6l+OieF8Xs1jU+4jZS1D GHbOptxkE0OQPY47674+Z21nVJa6m26r8O0i6cN1VwmzqfGKC7N6fDY0pWs3oE9p 9kHDunHnWx+ptVP+leZ0bqMePlmU0PbcA0nPGX6giWAK1M6V0BT3XmLXa/oqC+Gl iIU8R981cldX+/0mxCzEKcCNtNlkDolI21VmQCtDzkLxyHxg9e77Gvcdcb1MeOBU pQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 375425151122159644212181694970466334166524 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-06 01:25:52 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-04 01:25:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'geo-kompakt.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22050745580791154969830921760524344384637873691532750109475661298634833320818644756119431902007568666655345970405282046545723516201420790626099422489699918005511014168241557709521156506636421981262068501856757663092445395891545987591486199460909228944918644468629276753116176837413859012335639280045051280786039248306941359266766540560195623858319217614075631325390315553302044339142961360737241151909773888863408417479741559855272971650651508874050387935982367526043248963406532670748804903545791982936830665136991534654534722867837066029431824438863364749993142488265400677196720795467291857845988057411782063445157 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 38fcbe2d473ea681bfeec6e3660af0167848fbbe . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (229 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'biografie-magazin.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'geo-kompakt.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'geo-saison.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'geomini.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'guidos-deko-queen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'henri-nannen-preis.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nannen-preis.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nannenpreis.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pm-abo.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'short.beef.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vorname-forum.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vornamen-forum.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.geo-kompakt.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018ba27362a2000004030047304502205f0bc3a8c911226399295ace40c139fd5a1664d98700b287d5e422eb2871aeb9022100aa877b2e641a217f0618f551a68a7d974085dee1f94920c790d982590a5f0d95007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ba27362aa000004030047304502204b141a5fc403607b4dc0bbb547410d83da67a7d600003b2447a53c75a831ac50022100f52fcb47a11c719a50cec2692f68e6db938d272e70a5588c3be9038a31120f3e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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