heikowild.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:30:af:c4:11:2c:f8:d5:dc:a8:d8:c5:9d:15:65:83:39:7a was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=heikowild.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:30:af:c4:11:2c:f8:d5:dc:a8:d8:c5:9d:15:65:83:39:7aSerial Number (int): 277904044345296432528463636730732590872954
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ac:fd:d3:71:9e:8c:dd:cc:9f:09:95:dd:23:1d:23:52:69:35:24:2b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): b4:02:7f:db:ad:d6:51:18:15:ce:1c:b4:bc:4a:40:a7:ed:5a:c9:26
Fingerprint (sha256): 78:be:64:94:ee:6c:ab:80:04:29:02:03:d1:c6:83:10:2d:c3:fa:90:fe:9f:df:a7:d6:1d:3b:d1:b0:ba:b5:ba
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate heikowild.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for heikowild.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
heikowild.de
www.heikowild.de
www.heikowild.de
Other certificates including the domain name heikowild.de
(limited to 100 certificates)
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
webmail.heikowild.de
heikowild.de
cpcalendars.heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
cpcalendars.heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
webmail.heikowild.de
heikowild.de
cpcalendars.heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
cpcalendars.heikowild.de
heikowild.de
heikowild.de
Certificate
The complete raw certificate details for heikowild.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGDTCCBPWgAwIBAgISAzCvxBEs+NXcqNjFnRVlgzl6MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODAyMTkxMDIxMTRaFw0x ODA1MjAxMDIxMTRaMBcxFTATBgNVBAMTDGhlaWtvd2lsZC5kZTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAMPtfvSjQs2XNijiKJ6O79pnM72vB1PDM1fm UPAbKR7SB7v8aa8/vLoYOJH7uhIcjIksA2bFWCEqwh0I5T3XKT61UbnOan5vgx4U k0tDpHywQTDECXcNZ/+A0531dYcGI1z9ySdAwhaH9l6CHf4YhhLyfckN0Z4aSayH tWo6xqv84QnLGmUk9upAXOPYeUPQuAZfu/d5XlLqjoPBkKfY5EK8eupF+GB2z/kJ mcTAiuyyXg3N1EuxNKm4670ti8Izms19TMopkLDkou3Zw+oGHcmNQwuyJdFw35Zw x0xvGeGCtc3CLMTFj+VfYYMdG9/f5sZqmXTfYjmPJd2OU8iIre4cwqtwh1Ge3SoZ V7dcbNoayvM3gCVBP1PnZbZ1rDEP/6TK/fBVQ1aL9/9EKz8IvtiOo8NuISbAdGTb w7l1ALPECAIT+xTcmvG3/pQXYZ6nb+NtxJYFOLwgr0TCG9M+qNEgz8d4WBMsi7hu zuTbIsYCdMkX42AJvJ/MymFLsunlJzdayw1g9LehPZ3Rqu6rqdu6NUYr3ubN2N68 gms+yYxnzv9CP8en6FCAe/X2KR5z++m+gbyIWz0IT5VtlmF3tHrY/CcWJ4gQ7rxk 9hb/rzk8iCKWqUsaxHtw47EEf8o4sqttPYk3bh0CebW8VaMSIOFZVXz/FGhnrGFh AqO2XbcTAgMBAAGjggIeMIICGjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFKz903Ge jN3MnwmV3SMdI1JpNSQrMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wKQYDVR0RBCIwIIIMaGVpa293aWxkLmRlghB3d3cu aGVpa293aWxkLmRlMIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLf EwEBATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcw gasGCCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSBy ZWxpZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3Jk YW5jZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6 Ly9sZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEB AArpISwsOFVBEfDR0vgsXOYCLfFm8SF0fPSwmQroGixDtqaKr4h8FwTjulM+GaMD Vc9jYOJMIF6g1FjmrJuXGdu4vMfv4bg6a+cYX9nY7u/9BMq9F0MW+FsmBgrBMSEl dxVSujYMB6epvoJqLuwuxgGG+rHEoHXEyXYO3T3jjQnihUgimC73vusomhxeHeO4 fxrBFCLw5P3pP2H3+px1X6p0mke7GLg4nAnWbNfMs2HMV+CCid9RCEsH7VOGiHed yctC8op4kWBCpfSJpMSj//XCP6KJY8eWMY7R9Hvc4sjCKClIR401F2EKUMgFqcUk E+pwQn29fMqJJYwusawSNf0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAw+1+9KNCzZc2KOIono7v 2mczva8HU8MzV+ZQ8BspHtIHu/xprz+8uhg4kfu6EhyMiSwDZsVYISrCHQjlPdcp PrVRuc5qfm+DHhSTS0OkfLBBMMQJdw1n/4DTnfV1hwYjXP3JJ0DCFof2XoId/hiG EvJ9yQ3RnhpJrIe1ajrGq/zhCcsaZST26kBc49h5Q9C4Bl+793leUuqOg8GQp9jk Qrx66kX4YHbP+QmZxMCK7LJeDc3US7E0qbjrvS2LwjOazX1MyimQsOSi7dnD6gYd yY1DC7Il0XDflnDHTG8Z4YK1zcIsxMWP5V9hgx0b39/mxmqZdN9iOY8l3Y5TyIit 7hzCq3CHUZ7dKhlXt1xs2hrK8zeAJUE/U+dltnWsMQ//pMr98FVDVov3/0QrPwi+ 2I6jw24hJsB0ZNvDuXUAs8QIAhP7FNya8bf+lBdhnqdv423ElgU4vCCvRMIb0z6o 0SDPx3hYEyyLuG7O5NsixgJ0yRfjYAm8n8zKYUuy6eUnN1rLDWD0t6E9ndGq7qup 27o1Rive5s3Y3ryCaz7JjGfO/0I/x6foUIB79fYpHnP76b6BvIhbPQhPlW2WYXe0 etj8JxYniBDuvGT2Fv+vOTyIIpapSxrEe3DjsQR/yjiyq209iTduHQJ5tbxVoxIg 4VlVfP8UaGesYWECo7ZdtxMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 277904044345296432528463636730732590872954 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-19 10:21:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-20 10:21:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'heikowild.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 799315354290250811436067127269939327157756688826407724421663293124178962391876718172778695272310343214783931530948984211032894153764542767915915192299258492386425822255621501346382611401097912200373856500345414244303709762048773967024967329633342290984294427151872596096617745868781718841558350452691891529161537567191113725363492065344595355588766824929364181368739756671446054662066551062523751401206272400967704592262322965454171224952284975331884252821300713855264420862006470093240878734674027225761915314682646970385712946953874117599866243954176775910512532080297870318766000444804726467996173339178674831839223703579572137244541353084910258499005528411195152947878568286228749029019096381802592458931374953770973569577780965210119125292953963611914266858626633470075424328302321509755112697345443121540176596176416224432373668145670385845980793290177204265939305054951726679337290763076064016831983291606569155086560542367075013691855403131556592289576864315294273685253666756834828094866081245737592886050897845421207207376805834719839090738006328893477227499878397532188656227347620963988962184308840343071190840035950477425075357331508779618163784103514772832841866496556185803210453008734002228437993463488547996462593811 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) acfdd3719e8cddcc9f0995dd231d23526935242b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'heikowild.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.heikowild.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 000ae9212c2c38554111f0d1d2f82c5ce6022df166f121747cf4b0990ae81a2c43b6a68aaf887c1704e3ba533e19a30355cf6360e24c205ea0d458e6ac9b9719dbb8bcc7efe1b83a6be7185fd9d8eeeffd04cabd174316f85b26060ac1312125771552ba360c07a7a9be826a2eec2ec60186fab1c4a075c4c9760edd3de38d09e2854822982ef7beeb289a1c5e1de3b87f1ac11422f0e4fde93f61f7fa9c755faa749a47bb18b8389c09d66cd7ccb361cc57e08289df51084b07ed538688779dc9cb42f28a78916042a5f489a4c4a3fff5c23fa28963c796318ed1f47bdce2c8c2282948478d3517610a50c805a9c52413ea70427dbd7cca89258c2eb1ac1235fd