leandirekt.de
Issued by Encryption Everywhere DV TLS CA - G2
About this certificate
This digital certificate with serial number 04:fa:02:eb:8d:50:2d:0b:b9:bc:64:aa:25:96:4e:7c was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=leandirekt.de
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:fa:02:eb:8d:50:2d:0b:b9:bc:64:aa:25:96:4e:7cSerial Number (int): 6615045424945081727376456544343707260
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 4c:37:0f:36:a1:b8:95:a3:3c:cd:09:1d:72:75:a1:8a:fa:ce:74:74
AuthorityKeyId: 78:df:91:90:5f:ee:de:ac:f6:c5:75:eb:d5:4c:55:53:ef:24:4a:b6
Fingerprint (sha1): d3:b3:a0:4e:87:2a:92:8f:55:bb:2b:13:64:8f:93:22:ae:71:1b:07
Fingerprint (sha256): 70:96:4a:b6:fc:69:39:22:28:ae:62:22:bb:f4:60:93:26:3e:c3:db:85:9f:46:45:c1:cf:23:f1:3a:11:94:d2
Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCheck the revocation status for certificate leandirekt.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for leandirekt.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
leandirekt.de
www.leandirekt.de
www.leandirekt.de
Other certificates including the domain name leandirekt.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for leandirekt.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGBDCCBOygAwIBAgIQBPoC641QLQu5vGSqJZZOfDANBgkqhkiG9w0BAQsFADBu MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg RFYgVExTIENBIC0gRzIwHhcNMjQwMTIxMDAwMDAwWhcNMjUwMTIxMjM1OTU5WjAY MRYwFAYDVQQDEw1sZWFuZGlyZWt0LmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEA2H7XXE61AFFre+oKURLvAeLM4I4GARmIros2odema1stxFh5tT6b eANG/J695Bs8s6NBJgVbxtHJZp+NzjXMVBtMQ9dkNyOPgnDMtRbCnGSEnFhiW6MH L69Xw1LPK5SoBKHfitPj0B7B8u7yeq7jd25HCnshLmLI5HfiySCSsIo/9cPupcEO sM9bDcYVtPXGa7bkxjypbqlxgAa4QgFdOW5PCvgmjK7RxtNx6fEJtNqCSKKHQp/i uqgvI7y+OXaIKK1xiXEgaWIJB4OeFQJ7kEF9MAIQZIUPVcRn9P0iqllq2+tJK1xx xfCstlGMn8rDH5WjsgMA70kRQWGzAGOzXQIDAQABo4IC8jCCAu4wHwYDVR0jBBgw FoAUeN+RkF/u3qz2xXXr1UxVU+8kSrYwHQYDVR0OBBYEFEw3DzahuJWjPM0JHXJ1 oYr6znR0MCsGA1UdEQQkMCKCDWxlYW5kaXJla3QuZGWCEXd3dy5sZWFuZGlyZWt0 LmRlMD4GA1UdIAQ3MDUwMwYGZ4EMAQIBMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93 d3cuZGlnaWNlcnQuY29tL0NQUzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMIGABggrBgEFBQcBAQR0MHIwJAYIKwYBBQUHMAGG GGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBKBggrBgEFBQcwAoY+aHR0cDovL2Nh Y2VydHMuZGlnaWNlcnQuY29tL0VuY3J5cHRpb25FdmVyeXdoZXJlRFZUTFNDQS1H Mi5jcnQwDAYDVR0TAQH/BAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHYA TnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGNKiUeLwAABAMARzBF AiAo/poua3qQTJZnmabiblp0Y20dLzes90JTjNxft8lD8AIhAPIZJv+H0VV3pc1m OHuJsDlecmCUNvjxTIsD/3XnGSekAHUAfVkeEuF4KnscYWd8Xv340IdcFKBOlZ65 Ay/ZDowuebgAAAGNKiUeIAAABAMARjBEAiBSi7izAQDzyXw+TpkGoInjtgqIapEv dFq53MBI8GS7lgIgdgcjgjaiSXz5InyjHu+cSSCL+c+xgYtwDRzUC7QhBwAAdgDm 0jFjQHeMwRBBBtdxuc7B0kD2loSG+7qHMh39HjeOUAAAAY0qJR5IAAAEAwBHMEUC IE6n2oLQD6ceWVuxdEAI3/kRmkRWVnk1Vm/ov7iWp7VQAiEAmKlycRPvhF7ja4UI c+ZdC6qz3kKRKNOp53xSOO7qZcQwDQYJKoZIhvcNAQELBQADggEBANEozjuUYrPS nCsDpgtPUOnUqc9IUOiJTMUg0kN+eI6J9D5DaeaASTkqEMqKLbTh/l+zqpay+6IW 9JBKLg9A8WtFcdVCOVgqaGMSbfm6v+U4CRDVArksPjaS9TLm/dL6nTSSQah4/NA4 pqk7ZK/9Zu2F2/e/OpqchEURWi+Na4qvRZl0iF1OtMUnyp6nbygz3XkawUnvkqFi Kv4lx6V/7gDNliSjtmsrIJ7121SGli/c2KKcyV4vtYIxZm4g3Tq5c95sEyxnoheL youaJ4dl5xaVQ/OhadaC93yD8RxwkwbiWT6MATEhxNfasQCwoVnYCiWGMUClAEMq 2nsNLcjvWBM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2H7XXE61AFFre+oKURLv AeLM4I4GARmIros2odema1stxFh5tT6beANG/J695Bs8s6NBJgVbxtHJZp+NzjXM VBtMQ9dkNyOPgnDMtRbCnGSEnFhiW6MHL69Xw1LPK5SoBKHfitPj0B7B8u7yeq7j d25HCnshLmLI5HfiySCSsIo/9cPupcEOsM9bDcYVtPXGa7bkxjypbqlxgAa4QgFd OW5PCvgmjK7RxtNx6fEJtNqCSKKHQp/iuqgvI7y+OXaIKK1xiXEgaWIJB4OeFQJ7 kEF9MAIQZIUPVcRn9P0iqllq2+tJK1xxxfCstlGMn8rDH5WjsgMA70kRQWGzAGOz XQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6615045424945081727376456544343707260 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'leandirekt.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27330021625339754123683684072333672395591422050526948550780247276595488958131460419646284507821692291798158888638140301744644210006963966878145634856302973700407247756651404767386736686400972488924990509279758599394508436696215871487766670211567359295904139906156494584334143438329205258669011081850587282962310766209405488205518356291711561332568988024100351731253594938757991877497044056906681083549166322762881809928504732279399669587108590616186091230646431191926887009703479392885291278314171151607089115940736500511839052096464587945331441342176029827630994936244687965407193143966035024206015834635173823230813 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 78df91905feedeacf6c575ebd54c5553ef244ab6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4c370f36a1b895a33ccd091d7275a18aface7474 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'leandirekt.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.leandirekt.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 01670076004e75a3275c9a10c3385b6cd4df3f52eb1df0e08e1b8d69c0b1fa64b1629a39df0000018d2a251e2f0000040300473045022028fe9a2e6b7a904c966799a6e26e5a74636d1d2f37acf742538cdc5fb7c943f0022100f21926ff87d15577a5cd66387b89b0395e72609436f8f14c8b03ff75e71927a40075007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b80000018d2a251e2000000403004630440220528bb8b30100f3c97c3e4e9906a089e3b60a886a912f745ab9dcc048f064bb9602207607238236a2497cf9227ca31eef9c49208bf9cfb1818b700d1cd40bb4210700007600e6d2316340778cc1104106d771b9cec1d240f6968486fbba87321dfd1e378e500000018d2a251e48000004030047304502204ea7da82d00fa71e595bb1744008dff9119a4456567935566fe8bfb896a7b55002210098a9727113ef845ee36b850873e65d0baab3de429128d3a9e77c5238eeea65c4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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