www.conntrack.de
Issued by Symantec Basic DV SSL CA - G2
About this certificate
This digital certificate with serial number 5f:f1:ef:22:7d:d3:ac:30:63:66:de:66:3b:79:a3:2c was issued on by Symantec Corporation.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.conntrack.de
Symantec Corporation
Organization:
Symantec Corporation
Organization unit: Symantec Trust Network
Organization unit: Domain Validated SSL
Organization unit: Symantec Trust Network
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 5f:f1:ef:22:7d:d3:ac:30:63:66:de:66:3b:79:a3:2cSerial Number (int): 127532853371068222333804568167067525932
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: ca:ac:5d:e1:90:2f:f1:ef:8c:d4:9f:35:01:e1:01:3b:a0:ce:c1:77
Fingerprint (sha1): 97:f0:2b:76:e4:02:5c:9d:c9:98:e2:23:8c:ca:41:da:14:48:98:81
Fingerprint (sha256): 62:e4:de:2b:e4:7f:2a:66:be:28:95:f9:1b:1f:43:8c:3a:e8:a7:b0:c7:23:71:08:9e:28:3f:df:0d:99:65:7c
Issuing Certificate URL: http://hd.symcb.com/hd.crt
Revocation information
OCSP Server: http://hd.symcd.comCheck the revocation status for certificate www.conntrack.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.conntrack.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.conntrack.de
conntrack.de
conntrack.de
Other certificates including the domain name conntrack.de
(limited to 100 certificates)
csgodata.lima-city.de
www.mada-voitures.com
www.gutmenschen.drjustusadam.de
www.geneborg.net
www.loibichler.at
www.conntrack.de
www.conntrack.de
test-autoversicherung-adac.pkwversicherung24.eu
*.conntrack.de
webshop.no-key.info
lbase.lima-city.de
thw.dscorp.de
www.conntrack.de
conntrack.de
www.conntrack.de
www.archive.davidhzmn.com
www.www.noel-o-callaghan.com
heizung-sieben.de
10tmail.ga
*.conntrack.de
www.hornizzn.lima-city.de
www.nachhaltigleben.lima-city.de
conntrack.de
apotheke-himmelkron.de
sektor.lima-city.de
www.mada-voitures.com
www.gutmenschen.drjustusadam.de
www.geneborg.net
www.loibichler.at
www.conntrack.de
www.conntrack.de
test-autoversicherung-adac.pkwversicherung24.eu
*.conntrack.de
webshop.no-key.info
lbase.lima-city.de
thw.dscorp.de
www.conntrack.de
conntrack.de
www.conntrack.de
www.archive.davidhzmn.com
www.www.noel-o-callaghan.com
heizung-sieben.de
10tmail.ga
*.conntrack.de
www.hornizzn.lima-city.de
www.nachhaltigleben.lima-city.de
conntrack.de
apotheke-himmelkron.de
sektor.lima-city.de
Certificate
The complete raw certificate details for www.conntrack.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIQX/HvIn3TrDBjZt5mO3mjLDANBgkqhkiG9w0BAQsFADCB lDELMAkGA1UEBhMCVVMxHTAbBgNVBAoTFFN5bWFudGVjIENvcnBvcmF0aW9uMR8w HQYDVQQLExZTeW1hbnRlYyBUcnVzdCBOZXR3b3JrMR0wGwYDVQQLExREb21haW4g VmFsaWRhdGVkIFNTTDEmMCQGA1UEAxMdU3ltYW50ZWMgQmFzaWMgRFYgU1NMIENB IC0gRzIwHhcNMTcwOTA3MDAwMDAwWhcNMTgwOTA3MjM1OTU5WjAbMRkwFwYDVQQD DBB3d3cuY29ubnRyYWNrLmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+tzvR9yLp9YXhM3L0c6mt9wQIZk7oao7AYdXtkTAh/RJzPiDEYdFePST00zG 6eZEKSU978U2gMh3phWw8tVoMx8eWCr3eWzc436FYnRphi+6kp3yJWv6EP7eEj7t 95F6YF9vH8kJzKmDerCjX7KXRZvMiJWpsydZf4JYySuZBIkA0YaUSa0ufXxQB+6z sWk1bNBC9eFRXViI+sSKUGINE6fIzEultHN+P4DjcA8ny3rRhZjNHCs3lEf7O005 +eIIzK5fooVGYAZTD1/d7C/z8kQdgGgKIkO6YbIrHozH1DAhnI+IPSE8AxQPl8sZ n6ZEgNssqZ1YD2fnbwGRissB+wIDAQABo4ICTTCCAkkwKQYDVR0RBCIwIIIQd3d3 LmNvbm50cmFjay5kZYIMY29ubnRyYWNrLmRlMAkGA1UdEwQCMAAwYQYDVR0gBFow WDBWBgZngQwBAgEwTDAjBggrBgEFBQcCARYXaHR0cHM6Ly9kLnN5bWNiLmNvbS9j cHMwJQYIKwYBBQUHAgIwGQwXaHR0cHM6Ly9kLnN5bWNiLmNvbS9ycGEwHwYDVR0j BBgwFoAUyqxd4ZAv8e+M1J81AeEBO6DOwXcwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBXBggrBgEFBQcBAQRLMEkwHwYIKwYB BQUHMAGGE2h0dHA6Ly9oZC5zeW1jZC5jb20wJgYIKwYBBQUHMAKGGmh0dHA6Ly9o ZC5zeW1jYi5jb20vaGQuY3J0MIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYA3esd K3oNT6Ygi4GtgWhwfi6OnQHVXIiNPRHEzbbsvswAAAFeXDG/CAAABAMARzBFAiEA 9goOntOsQgpJGFsffSBR87j1dQ9b+LUUT+iNZKKMtfgCIEHJvTTQcJxKEuihv+CO H3JAU4JJvggaRG9lLfaYKa2GAHUApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fN DsgN3BAAAAFeXDG/PAAABAMARjBEAiAzxN7DwmMbDjx1xUFeSwIe4aej0ejkzY6Q +JdTvb3SbAIgLEgUqKZG7a/X3JjimUQP7DWsTsiGvrAQ/Xi0SCnu1Z0wDQYJKoZI hvcNAQELBQADggEBAI6ZgF1NZ4T7k4hpEThnU/cOi9SSn8JTc58Z2TKew0fbjnol kxVm3jbmeWakQxdVMsyBAc8gn0PaxIHKrHlzvsPceUBCDnd6Z/slzcKPP9loAsV8 91kPv6It1AHbLRHCJGx+7IwQd+oRGpeRu+ecCnoESGt6tx1LFS1MIL4jh1BxMLcD o25SgRAU1ilMSKqPCLAmCASYsu3vJa5+Zm9YXiwY6XQnmWUCNIrEb6lFk8GirEAX I5Avu5Q7u4vtdKuO+10a/WStnR1bxgMznEwD8aqNocPh8A7xoZFPppajD0V/ox69 gozmhwShzVMNcmOW7JcPG/GI/yOzSDBmS4owL90= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+tzvR9yLp9YXhM3L0c6m t9wQIZk7oao7AYdXtkTAh/RJzPiDEYdFePST00zG6eZEKSU978U2gMh3phWw8tVo Mx8eWCr3eWzc436FYnRphi+6kp3yJWv6EP7eEj7t95F6YF9vH8kJzKmDerCjX7KX RZvMiJWpsydZf4JYySuZBIkA0YaUSa0ufXxQB+6zsWk1bNBC9eFRXViI+sSKUGIN E6fIzEultHN+P4DjcA8ny3rRhZjNHCs3lEf7O005+eIIzK5fooVGYAZTD1/d7C/z 8kQdgGgKIkO6YbIrHozH1DAhnI+IPSE8AxQPl8sZn6ZEgNssqZ1YD2fnbwGRissB +wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 127532853371068222333804568167067525932 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Trust Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Basic DV SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-09-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.conntrack.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31668523197795243831429714473064614500314445959767638593137444681450224062509786925349276580938367646635318631436501098188992523623139636081510428908145894327518260948381014050048624916726223667066630857840128575502608251117908258390982986389433411005181214264071309599329500410493016469917073709281226042389594038162987458769059094387549739066513443662144236222859828255071879472294301216982172907449511862970676215308407754839287013443152307366525091711634318413896191216340859141579225494412345227785555835034272743261958645379769105773118081593161998530137898502261188928631803882474811599312680482124168199602683 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.conntrack.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'conntrack.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://d.symcb.com/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName caac5de1902ff1ef8cd49f3501e1013ba0cec177 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://hd.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://hd.symcb.com/hd.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc0000015e5c31bf080000040300473045022100f60a0e9ed3ac420a49185b1f7d2051f3b8f5750f5bf8b5144fe88d64a28cb5f8022041c9bd34d0709c4a12e8a1bfe08e1f7240538249be081a446f652df69829ad86007500a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015e5c31bf3c0000040300463044022033c4dec3c2631b0e3c75c5415e4b021ee1a7a3d1e8e4cd8e90f89753bdbdd26c02202c4814a8a646edafd7dc98e299440fec35ac4ec886beb010fd78b44829eed59d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 008e99805d4d6784fb93886911386753f70e8bd4929fc253739f19d9329ec347db8e7a25931566de36e67966a443175532cc8101cf209f43dac481caac7973bec3dc7940420e777a67fb25cdc28f3fd96802c57cf7590fbfa22dd401db2d11c2246c7eec8c1077ea111a9791bbe79c0a7a04486b7ab71d4b152d4c20be2387507130b703a36e52811014d6294c48aa8f08b026080498b2edef25ae7e666f585e2c18e97427996502348ac46fa94593c1a2ac401723902fbb943bbb8bed74ab8efb5d1afd64ad9d1d5bc603339c4c03f1aa8da1c3e1f00ef1a1914fa696a30f457fa31ebd828ce68704a1cd530d726396ec970f1bf188ff23b34830664b8a302fdd