thinkbox.berlin

Issued by R3

About this certificate

This digital certificate with serial number 03:b6:c6:26:c7:37:c8:48:72:0c:a3:0d:68:a6:70:2c:39:63 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=thinkbox.berlin

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:b6:c6:26:c7:37:c8:48:72:0c:a3:0d:68:a6:70:2c:39:63
Serial Number (int): 323531637065956622604663838355260281993571
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 74:00:3b:e9:69:65:50:27:ed:16:c8:bc:82:d9:cb:a1:2b:f7:80:3e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 61:85:f5:2a:64:ac:ff:33:88:34:1d:9d:44:1a:be:57:5a:64:c0:a5
Fingerprint (sha256): 5c:54:af:c1:63:6d:37:a8:34:03:4f:d5:e7:5a:22:18:51:af:94:2b:be:ce:4f:db:d6:ae:09:1d:ba:80:13:d6

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate thinkbox.berlin

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for thinkbox.berlin

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

thinkbox.berlin

Other certificates including the domain name thinkbox.berlin

(limited to 100 certificates)
project.thinkbox.berlin
cloud.thinkbox.berlin
thinkbox.berlin
cloud.thinkbox.berlin
cloud.thinkbox.berlin
cloud.thinkbox.berlin
project.thinkbox.berlin
project.thinkbox.berlin
svn.thinkbox.berlin
mail.thinkbox.berlin
thinkbox.berlin
thinkbox.berlin
thinkbox.berlin
project.thinkbox.berlin
project.thinkbox.berlin
thinkbox.berlin
cloud.thinkbox.berlin
thinkbox.berlin
thinkbox.berlin
mail.thinkbox.berlin
project.thinkbox.berlin
thinkbox.berlin
thinkbox.berlin
svn.thinkbox.berlin
thinkbox.berlin
thinkbox.berlin
project.thinkbox.berlin
thinkbox.berlin
project.thinkbox.berlin
project.thinkbox.berlin
svn.thinkbox.berlin
project.thinkbox.berlin
thinkbox.berlin
thinkbox.berlin
thinkbox.berlin
project.thinkbox.berlin
project.thinkbox.berlin
thinkbox.berlin
project.thinkbox.berlin
cloud.thinkbox.berlin
cloud.thinkbox.berlin
svn.thinkbox.berlin
project.thinkbox.berlin
thinkbox.berlin
cloud.thinkbox.berlin
thinkbox.berlin
thinkbox.berlin
project.thinkbox.berlin
project.thinkbox.berlin
project.thinkbox.berlin
thinkbox.berlin
project.thinkbox.berlin
imap.thinkbox.berlin
cloud.thinkbox.berlin

Certificate

The complete raw certificate details for thinkbox.berlin in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Afr9SZ/xgtJd5IZshTM
Mt+9vMFOauI4wdTgLYO6m8BffzIDXziB9kx+pLH0BdeGqUmB8bgOj57hzGY7M+mD
dwYMHh1yZhjiEW8VbAMBa32kdafPlhBd8svgZw+CU7wZO9UmIMSpSTfreAsmL3kO
QeveykfAZQCWxLJezISKKaxCBj8cfkVcvw2rfREiQSUbJ6XPk4eP0Hdo69YygPvm
Tfl/iSneftdJF9q7RpgSgOe6eyO/DE52MjwagoHyl7I40EYGyXhZGjbRwTopPOHS
bKTHB19qx1eQJkSxAl5nOM+R3JMvozaUOba84Aet0/apSunQwCvrIe5n1sOAeGxy
6wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 323531637065956622604663838355260281993571
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-27 14:25:25 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-28 14:25:24 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thinkbox.berlin'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28281286652917268078033719089218181054723580828213070937510557090194897133060446658836158957181629752979597842948441768659823017589767522236540792586296504865700287979259039640171218845202926117375202858303971723959103179337713410656904578761488555914623352237370601945931937873631997551726398452115325297670451121768786954843049145216419127722709785124760435023845006697391716803255683513815262422420058058348718794907507287144593548988174162323848614860147106029742164705288284189302116783622711140737869763448569327551893123219497082170006870537758961642462516010063042084921861503113071449211450460848847388963563
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							74003be969655027ed16c8bc82d9cba12bf7803e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thinkbox.berlin'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000186937a82ca0000040300483046022100f74d4a844e84693febd235d9d881f3c14976de8c4081164c7f85ca1ddf5fe823022100db52957109eaaf4383daeaeae1f47ba139b5ece3b1ba1bf939fa26311347fd6f0076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000186937a82d7000004030047304502207744cb0ebfb52c07b28334f3d0746760e55d7c3afa3f5bec707cccd2bfd49f55022100e4f6402ecbaeb3e950da13b4f83b8d4879cec9bd37c9a9ddde4a45bb7c2663af
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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