orencia.de
Issued by R3
About this certificate
This digital certificate with serial number 04:98:b3:6d:a8:d5:aa:8b:13:26:41:98:8e:fc:e4:50:54:ca was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=orencia.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:98:b3:6d:a8:d5:aa:8b:13:26:41:98:8e:fc:e4:50:54:caSerial Number (int): 400410564694999905882197985987701018481866
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 51:47:ec:6a:b9:ed:69:d9:96:6e:c4:b5:8b:42:c0:7e:56:fb:8c:e0
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 3a:a5:82:74:d4:4b:59:69:26:b6:23:77:b3:6e:0b:75:b9:b6:49:fd
Fingerprint (sha256): 5e:87:27:dd:64:df:f6:5e:4b:24:be:da:7f:19:aa:34:ba:bf:7a:71:5e:26:34:c1:bf:e7:74:4a:97:0c:6a:74
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate orencia.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for orencia.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
orencia.de
Other certificates including the domain name orencia.de
(limited to 100 certificates)
www.orencia.de
www.orencia.de
www.orencia.de
www.orencia.de
orencia.de
orencia.de
www.orencia.de
www.orencia.de
www.orencia.de
www.orencia.de
www.orencia.de
orencia.de
www.orencia.de
www.orencia.de
bms.com
www.orencia.de
www.orencia.de
www.orencia.de
orencia.de
www.orencia.de
orencia.de
www.orencia.de
orencia.de
www.orencia.de
www.orencia.de
www.orencia.de
orencia.de
orencia.de
www.orencia.de
www.orencia.de
www.orencia.de
www.orencia.de
www.orencia.de
orencia.de
www.orencia.de
www.orencia.de
bms.com
www.orencia.de
www.orencia.de
www.orencia.de
orencia.de
www.orencia.de
orencia.de
www.orencia.de
orencia.de
Certificate
The complete raw certificate details for orencia.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGGTCCBQGgAwIBAgISBJizbajVqosTJkGYjvzkUFTKMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzAzMTMwNzQwNTBaFw0yMzA2MTEwNzQwNDlaMBUxEzARBgNVBAMT Cm9yZW5jaWEuZGUwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC2dAPp iDcJOOMZKQfr91lRnQcXNSlX7hAcQrJEFVE+FaZ9g9EQqBP7MStuD/P7g78nUfb3 zwGrt5rd2AdD54GYQPoIlRGi5UIhLdStvxFd5QRg0tvzZJCr4eXSsD4lVmnVsDVg 6eo2z8G0aIum/KbOY0Aw1i9EXZy6zpQVE8V6GvoCvg4B2hJzy9Tn3MNcBw+pZ9OO zjnk9xVfxPwLy3UiZMRjzk7qojodFTs1tjkw5phoQLfvm4EcDYlaqrKL/s52bfWU iwgM0EMgdwGt6wmfDnHDLD/q17dDI1ZQiDwYGZ35d/wWlVDIkc9e9pjuFPUrjwlY QE4Np266dhpK1fcPv+RzE3IYCjuk0wIqVLaaGdw57e2EfYbRt/R155UHgipo/ZSD EndN3s+4Z6+3BeUdvJYdd+EP3IS2LgFZHdrkjppYjirVAUf993DoMeLeTqYES7Ym xglErYOnXtgRUYQPdNB9kNtrJnxYFuXmYDA85KKsTmmj7lTJXcNH4xOZwdZcxded yfSfcNaHcaKydcDD7KOpQl6vAM+Vah6NQdD8IjdYOeZcYQJUAxqMpsvmfzeIeGgu V/qrheymd5YbrPU1EB7ANGcXXyH+L5uSd9A8dhMPY6+oRm+f8B1R48YmrykBqKb1 RpiGudHMo66duhOdM6ZbjuTpO8iRzX8bjMskiQIDAQABo4ICRDCCAkAwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBRRR+xque1p2ZZuxLWLQsB+VvuM4DAfBgNVHSMEGDAW gBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUH MAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3Iz LmkubGVuY3Iub3JnLzAVBgNVHREEDjAMggpvcmVuY2lhLmRlMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUAejKM VNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGG2iEknwAABAMARjBEAiBL DfypscaAGlcbWBiV3sdSyR6YV5XJhIxbKFFiYWdRgAIgRe9Q/kWlqn1081QPf3jQ ca+BbX6WUzIXjRr0EJWSDpcAdgCt9776fP8QyIudPZwePhhqtGcpXc+xDCTKhYY0 69yCigAAAYbaISS+AAAEAwBHMEUCIQCeKPb/oXafdorPI3tUcouapBnIz0s402VF NEjCyOFlsQIgWK8iY0LC9hHfDJthA+63eJ1zVdHKMQoLUtom8tMTDnUwDQYJKoZI hvcNAQELBQADggEBAIU+UOINaszWVx22jz649zYwL8HpLl/aa15il2SXdgRCyL9i YMdVJJmN3I0HVxXomMhotpHkZ7jXDjWbm8KkY1U558FFNYTcJl1DnZjK2wMZ3wxv 5vrMzv6XV4HL5oyxj2GhxheeHRvLn9jhNbqwLZ/D5V3TkHRjCRUFw5I7t2h08GC3 w3nvt60qvLQJSg7G611GEywPHZ7mss6LFnyrRJeJoIhGGmRbkr/8Gmr2gT5tqIG0 +25iNN4JEknGZ/BrMGMgzxG10l4YI581/467Vsn6CzqZBt2AK+s7W/1SHpKvLOCY EWB7d/REavLemU7h/4HguetjDEOCwBomxH82RtQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtnQD6Yg3CTjjGSkH6/dZ UZ0HFzUpV+4QHEKyRBVRPhWmfYPREKgT+zErbg/z+4O/J1H2988Bq7ea3dgHQ+eB mED6CJURouVCIS3Urb8RXeUEYNLb82SQq+Hl0rA+JVZp1bA1YOnqNs/BtGiLpvym zmNAMNYvRF2cus6UFRPFehr6Ar4OAdoSc8vU59zDXAcPqWfTjs455PcVX8T8C8t1 ImTEY85O6qI6HRU7NbY5MOaYaEC375uBHA2JWqqyi/7Odm31lIsIDNBDIHcBresJ nw5xwyw/6te3QyNWUIg8GBmd+Xf8FpVQyJHPXvaY7hT1K48JWEBODaduunYaStX3 D7/kcxNyGAo7pNMCKlS2mhncOe3thH2G0bf0deeVB4IqaP2UgxJ3Td7PuGevtwXl HbyWHXfhD9yEti4BWR3a5I6aWI4q1QFH/fdw6DHi3k6mBEu2JsYJRK2Dp17YEVGE D3TQfZDbayZ8WBbl5mAwPOSirE5po+5UyV3DR+MTmcHWXMXXncn0n3DWh3GisnXA w+yjqUJerwDPlWoejUHQ/CI3WDnmXGECVAMajKbL5n83iHhoLlf6q4XspneWG6z1 NRAewDRnF18h/i+bknfQPHYTD2OvqEZvn/AdUePGJq8pAaim9UaYhrnRzKOunboT nTOmW47k6TvIkc1/G4zLJIkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 400410564694999905882197985987701018481866 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-13 07:40:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-11 07:40:49 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'orencia.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 744344052636271953564889319576850383461703821804003639258427975137865848374096228197886817338482975256027291210714144695860588310915966049843368723008816432733035924020876995098448340681023901229734197763261415422559466896290920610157899825776024166668984596517570254036523721491180045093503505064322574114889588652416120010952715283185936497920601870738040131838658486989922343816007640418506025654200818086630087038227879769301505977091541620337045452330384428573340291157342710207624542559610744165331470642227375815238239100148067492226780064134409580565440860764179592885294639592898483912816279750696905313226863420220827180780408659278480783744709370214457527346860243794205447781501233966063616634414081830574892040374732591290469151470636873304758905250324625477038584995046141577563669297030912933837817229323940631001648306088066068618515309462795589046432794539409654416853250105009855264902114612228817031184546607668203068692071403856574347476961206061187712775696370408842733273592241787500604852102840667588986656222432205003377300948308379137238298306244514572378829482722137714310236121737100000058258142541796310070739582960755838524155372472824526963121384583694317826070910272754788949772458342847974390274663561 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5147ec6ab9ed69d9966ec4b58b42c07e56fb8ce0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'orencia.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000186da21249f000004030046304402204b0dfca9b1c6801a571b581895dec752c91e985795c9848c5b28516261675180022045ef50fe45a5aa7d74f3540f7f78d071af816d7e965332178d1af41095920e97007600adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a00000186da2124be00000403004730450221009e28f6ffa1769f768acf237b54728b9aa419c8cf4b38d365453448c2c8e165b1022058af226342c2f611df0c9b6103eeb7789d7355d1ca310a0b52da26f2d3130e75 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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