fanstore.bitmanager.de
- bitmanager-media GmbH -
Issued by Thawte SSL CA
About this certificate
This digital certificate with serial number 6f:df:5b:29:b5:be:7f:06:36:83:1c:d1:e1:83:d1:88 was issued on by Thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
bitmanager-media GmbH
Organization:
bitmanager-media GmbH
State / Province:
Hamburg
Locality: Hamburg
Country: DE
Locality: Hamburg
Country: DE
Thawte, Inc.
Organization:
Thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 6f:df:5b:29:b5:be:7f:06:36:83:1c:d1:e1:83:d1:88Serial Number (int): 148704038735454606378873345765036773768
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: a7:a2:83:bb:34:45:40:3d:fc:d5:30:4f:12:b9:3e:a1:01:9f:f6:db
Fingerprint (sha1): 29:f0:c5:f2:2a:20:2e:b1:87:1d:02:5c:c1:6e:b0:31:1d:76:81:74
Fingerprint (sha256): 71:9e:f3:5a:26:d3:b6:bf:71:42:75:85:07:db:a1:b3:9b:95:bf:17:bc:c3:92:0d:ee:fd:12:86:ae:7d:bc:cf
Issuing Certificate URL: http://svr-ov-aia.thawte.com/ThawteOV.cer
Revocation information
OCSP Server: http://ocsp.thawte.comCRL Distribution Point: http://svr-ov-crl.thawte.com/ThawteOV.crl
Check the revocation status for certificate fanstore.bitmanager.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for fanstore.bitmanager.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
fanstore.bitmanager.de
Other certificates including the domain name bitmanager.de
(limited to 100 certificates)
*.bitmanager.de
bitmanager.de
geo-wissen.de
nannen-preis.de
bitmanager.de
www.bitmanager.de
henrinannenpreis.com
*.bitmanager.de
www.bitmanager.de
content-finder.de
grunerundjahr.net
bitmanager.de
www.bitmanager.de
guido-magazin.de
bitmanager.de
view-magazin.de
guj.com
www.bitmanager.de
ideat-germany.de
*.bitmanager.de
bitmanager.de
grunerundjahr.com
bitmanager.de
geoshop.de
nannenpreis.de
kinakoni.com
www.bitmanager.de
impfen-gegen-corona.eu
www.bitmanager.de
geo-kompakt.de
bitmanager.de
maennlichevornamen.de
fanstore.bitmanager.de
bitmanager.de
elterngrusskarten.de
geo-circlefy.com
warner.bitmanager.de
geo-saison.de
bitmanager.de
bitmanager.de
bitmanager.de
brigitte-mom.de
www.bitmanager.de
fanstore.bitmanager.de
bitmanager-consult.de
bitmanager.de
www.bitmanager.de
www.bitmanager.de
bitmanager.de
vornamen-forum.de
geocirclefy.de
www.bitmanager.de
geo-special.de
bitmanager.de
bitmanager.de
henri-nannen-preis.com
bitmanager.de
fuerjedentag.com
bitmanager.de
grunerundjahr.org
bitmanager.de
geo-wissen.de
nannen-preis.de
bitmanager.de
www.bitmanager.de
henrinannenpreis.com
*.bitmanager.de
www.bitmanager.de
content-finder.de
grunerundjahr.net
bitmanager.de
www.bitmanager.de
guido-magazin.de
bitmanager.de
view-magazin.de
guj.com
www.bitmanager.de
ideat-germany.de
*.bitmanager.de
bitmanager.de
grunerundjahr.com
bitmanager.de
geoshop.de
nannenpreis.de
kinakoni.com
www.bitmanager.de
impfen-gegen-corona.eu
www.bitmanager.de
geo-kompakt.de
bitmanager.de
maennlichevornamen.de
fanstore.bitmanager.de
bitmanager.de
elterngrusskarten.de
geo-circlefy.com
warner.bitmanager.de
geo-saison.de
bitmanager.de
bitmanager.de
bitmanager.de
brigitte-mom.de
www.bitmanager.de
fanstore.bitmanager.de
bitmanager-consult.de
bitmanager.de
www.bitmanager.de
www.bitmanager.de
bitmanager.de
vornamen-forum.de
geocirclefy.de
www.bitmanager.de
geo-special.de
bitmanager.de
bitmanager.de
henri-nannen-preis.com
bitmanager.de
fuerjedentag.com
bitmanager.de
grunerundjahr.org
Certificate
The complete raw certificate details for fanstore.bitmanager.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEpzCCA4+gAwIBAgIQb99bKbW+fwY2gxzR4YPRiDANBgkqhkiG9w0BAQUFADA8 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMRYwFAYDVQQDEw1U aGF3dGUgU1NMIENBMB4XDTEzMTIxNzAwMDAwMFoXDTE1MTIxNzIzNTk1OVowcjEL MAkGA1UEBhMCREUxEDAOBgNVBAgTB0hhbWJ1cmcxEDAOBgNVBAcUB0hhbWJ1cmcx HjAcBgNVBAoUFWJpdG1hbmFnZXItbWVkaWEgR21iSDEfMB0GA1UEAxQWZmFuc3Rv cmUuYml0bWFuYWdlci5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AL6OsP72izaL3lSHzDtETi10RYioCJTuiP+Y9teV6cw9C/pklC9+aGxOZTLe4Ii/ qTt5xLbBNIKLQHgsyRVzrQ+H25TcwlDfWRWAZ9g0P24CtLmtf9v189jpDJdN7OHq 1jI3E5g0HNIL1yu0ZYLDEt+VMHn/3fLDV6cckDYNQtYvqfd3+pLhzZixzlxUuTY6 H5QApJtmkFZ56LEoL+rAIvmR2FA2+9wV1B/vkaC+PUbWktceGLDogFtDM7iFbNp6 30vE7z61/Pa3kiwNxBIYlGVDe+iwEHWoTaZEh7avuJqzNnUtbUo9+7Mp0IKSHdS2 CgMKeVqyu7FBDkMsXGaieycCAwEAAaOCAW0wggFpMCEGA1UdEQQaMBiCFmZhbnN0 b3JlLmJpdG1hbmFnZXIuZGUwCQYDVR0TBAIwADBCBgNVHSAEOzA5MDcGCmCGSAGG +EUBBzYwKTAnBggrBgEFBQcCARYbaHR0cHM6Ly93d3cudGhhd3RlLmNvbS9jcHMv MA4GA1UdDwEB/wQEAwIFoDAfBgNVHSMEGDAWgBSnooO7NEVAPfzVME8SuT6hAZ/2 2zA6BgNVHR8EMzAxMC+gLaArhilodHRwOi8vc3ZyLW92LWNybC50aGF3dGUuY29t L1RoYXd0ZU9WLmNybDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwaQYI KwYBBQUHAQEEXTBbMCIGCCsGAQUFBzABhhZodHRwOi8vb2NzcC50aGF3dGUuY29t MDUGCCsGAQUFBzAChilodHRwOi8vc3ZyLW92LWFpYS50aGF3dGUuY29tL1RoYXd0 ZU9WLmNlcjANBgkqhkiG9w0BAQUFAAOCAQEAISgbFgCG69K0NpTrXOZ2GkXfCtkk UilJCICOtxiprsCjfIdYGU8Xqb92l8J6HG9UQBko1pqiwJ61wA0A2lDpEHi4InqK hVPtGNW8G4GQhscooFHPB5h8eSjY91XAQ2HJM5bOb8Kz35chElNAyhvjcCABCQxK CNl7gv4l7V/h0RLNNNomlwX1PCJdFnD44uEjchWmNiqXGzzKmOpGPw7UzYoWgL+0 UK7fFxr3ef1V9YumeFs2cfXwZPacj//BQbBwS0L0uVGcyYWEq5jlfaTY9rASiUQM q5cf0spiMInIN1c/SawOPmh2siaiW7tdkBQ3u5OFiNrn01b2XG6oZ4OCZw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvo6w/vaLNoveVIfMO0RO LXRFiKgIlO6I/5j215XpzD0L+mSUL35obE5lMt7giL+pO3nEtsE0gotAeCzJFXOt D4fblNzCUN9ZFYBn2DQ/bgK0ua1/2/Xz2OkMl03s4erWMjcTmDQc0gvXK7RlgsMS 35Uwef/d8sNXpxyQNg1C1i+p93f6kuHNmLHOXFS5NjoflACkm2aQVnnosSgv6sAi +ZHYUDb73BXUH++RoL49RtaS1x4YsOiAW0MzuIVs2nrfS8TvPrX89reSLA3EEhiU ZUN76LAQdahNpkSHtq+4mrM2dS1tSj37synQgpId1LYKAwp5WrK7sUEOQyxcZqJ7 JwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 148704038735454606378873345765036773768 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-12-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-12-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hamburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Hamburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'bitmanager-media GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'fanstore.bitmanager.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24055641690663745550931037963236959592640761985407486200483495041542361287112260699376430542582157966726854275747582583254283408733503144214142020048645312706853233016895351304198190014343260598050020394563119455515218897055743267669769688929496606052203347209394919468052264169358713040253232989914348708735044498392225154908637291111585995483080550578031816198535447422719410017691659657952379564884566353477407137203996673616053139570451204479420148389417585788674866650462252332366450214223542002466365371007736631981693001638780288911435896462704981402737146771448596718920727274580226048696459843160603485174567 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fanstore.bitmanager.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (59 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a7a283bb3445403dfcd5304f12b93ea1019ff6db . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-crl.thawte.com/ThawteOV.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (93 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-aia.thawte.com/ThawteOV.cer' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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