www.gtals.de

Issued by R3

About this certificate

This digital certificate with serial number 04:fa:60:aa:bc:63:f5:86:84:aa:58:fe:7e:f8:ff:f4:7f:9a was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.gtals.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:fa:60:aa:bc:63:f5:86:84:aa:58:fe:7e:f8:ff:f4:7f:9a
Serial Number (int): 433648227856349485322221867490077782081434
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: c1:74:92:9d:de:d6:01:e6:83:d7:ce:ac:1d:8d:08:9f:ed:e1:b6:11
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): ef:5a:9e:4c:db:9a:4a:82:bb:eb:e4:d2:e9:35:54:08:f6:c9:45:2c
Fingerprint (sha256): 6b:64:6e:96:19:15:07:04:d0:5f:64:a0:ef:e3:96:68:a3:da:27:0b:ad:98:d6:c5:62:91:bc:26:80:39:da:38

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate www.gtals.de

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.gtals.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

gtals.de
www.gtals.de

Other certificates including the domain name gtals.de

(limited to 100 certificates)
www.gtals.de
llcblog.de
webloggerforum.de
gtals.de
gtals.de
gtals.de
gtals.de
www.gtals.de
www.gtals.de
gtals.de
jungemodeonlineshop.de
gtals.de
gtals.de
cpcalendars.khlaac.org
gtals.de
gtals.de
contra-und-pro.de
miesmuscheln-zubereiten.de

Certificate

The complete raw certificate details for www.gtals.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzf7FtS0BT2+yhjQijh/X
L5qobiAWXpqqJpIUua6Yqf12+UcLL1+mMDQxOIx90MB1vySxiQA+8YXOfehuWWnF
RQ0WK8H0PQ32rPdD80V4bUCUsQ03gM6rWPmcMKhQoXtx/S5Aqx9OWMQ72wTyRto8
vGujD/E7ehaHUDTsvxQYH9VriRNhDaXGgIybY/GmeTCKIkumaeW2KX0O2NG3Z7oI
hWCHgKCR/8AP99+xZslrbY4AGkdlyhUc5HAVfiB3cWMsz+/wKy58C35WLIQvc9gj
PCF6tMad6ArnQReYq0X6HltZ/A00FJQIH9ey40BIwFHgljZ9HQo0bkTi6NRLF+WB
iwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 433648227856349485322221867490077782081434
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-28 01:24:25 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-26 01:24:24 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.gtals.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26004485419490209271088996719212062974897153759726778311476643958097462797745687523060184312404648613705943770958999867142560127133141068641085067367216342114475670946760501027590775270417788711995195216244876792710960290431945108072311428440530162853738986822715033699461261443056093696562323276551362357318972142993070288906304229037300200113912986683900892235232768058127357560328134756615692634469780461986195426200071858386977393713331244029021178487909229620071369675952240009274164498173690774115165098770163321766722262233009207620537412780367169642313770809374689710229161831469357523659642127241878729752971
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c174929dded601e683d7ceac1d8d089fede1b611
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gtals.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gtals.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018a39f4e7570000040300473045022049c235d47fbe0df8a46677a78d0eaf5c2b6a57585f4e3d7a9e483c182e7e978a022100e5669ffc6f37fd5b6fac7c426644d64391bdd17ffa55900b1859b34e44dd680e007500e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018a39f4e7510000040300463044022043c905ccb1c63cca81377920c63cae21f598d38ca1cd9bbbd035efca9be26d86022072b4e486cfe3846e715c410a7eb98051f24c4fb7daf9174dc4b6ed2616db0dee
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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