www.derbierbaum.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:57:82:cd:08:79:08:ac:96:5e:8c:54:fa:94:0c:a3:77:52 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.derbierbaum.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:57:82:cd:08:79:08:ac:96:5e:8c:54:fa:94:0c:a3:77:52Serial Number (int): 378227573881319240629808503599395701487442
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 59:aa:11:8c:4f:a1:7b:fe:aa:56:f9:bc:80:e9:21:14:b5:f8:8d:88
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 25:e6:b5:b1:9b:70:56:ef:f4:37:a1:54:a0:51:ec:da:81:ff:aa:a2
Fingerprint (sha256): 7d:b4:ca:58:0b:3a:21:cc:1e:b9:cd:eb:03:1b:8b:5e:90:14:70:75:79:a5:f1:b6:19:b9:34:ed:c2:9e:b0:78
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.derbierbaum.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.derbierbaum.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.derbierbaum.de
Other certificates including the domain name derbierbaum.de
(limited to 100 certificates)
securetest.derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
derbierbaum.eu
www.derbierbaum.de
www.derbierbaum.de
derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
derbierbaum.de
derbierbaum.de
www.derbierbaum.de
derbierbaum.de
www.derbierbaum.de
derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
bierdeckelbaum.de
www.derbierbaum.de
derbierbaum.de
derbierbaum.de
derbierbaum.de
derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
derbierbaum.eu
www.derbierbaum.de
www.derbierbaum.de
derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
derbierbaum.de
derbierbaum.de
www.derbierbaum.de
derbierbaum.de
www.derbierbaum.de
derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
www.derbierbaum.de
bierdeckelbaum.de
www.derbierbaum.de
derbierbaum.de
derbierbaum.de
derbierbaum.de
derbierbaum.de
Certificate
The complete raw certificate details for www.derbierbaum.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgISBFeCzQh5CKyWXoxU+pQMo3dSMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDQxMTEyNDhaFw0y MDA1MDQxMTEyNDhaMB0xGzAZBgNVBAMTEnd3dy5kZXJiaWVyYmF1bS5kZTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALTp9YFNYDI/lG53QBlTGiqsVZ9w Jeovo0YXLbFnispGV8lwBE4DKc/vMUDLw00cb5ndt8T3clwiWNpiVduiRca7c9ew Uxi4gPSnEdzmX8tNfJbfh8eZmQtPnuIq13hrnjzSUu1Kd2pAMomejjAOrWcl+nuH M+ZOM75+JMMMQhvEIDZu70y9Bd/h2jFIdjx6yuoEYoGFsKQiBZ0npwt4/3TAJs9m 7AlVVQgF5c+p73kUhpkH3IfAPMXz5cUOeZw/wtJPutZ42cQxnX1oLZ48A00LTvBI mBS+XnT61Qvqrb7ik8Q1O7i2suOeZd1QaxbElEQQfOZYOnttPLs79tzGxUMCAwEA AaOCAmgwggJkMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUWaoRjE+he/6qVvm8gOkh FLX4jYgwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUH AQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5 cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5 cHQub3JnLzAdBgNVHREEFjAUghJ3d3cuZGVyYmllcmJhdW0uZGUwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgBv U3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAXAQHgn2AAAEAwBHMEUC IQDaaTkzgBcQlJ123bAR5EBaAJDwolFNFeNzpWH/DzcjYwIgA16XZn14tEU5gt1z XApCxgPOGRKzfFpyLlOjN+rC0QIAdwCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOey SVMt74uQXgAAAXAQHguvAAAEAwBIMEYCIQDqPni1qkpWjGN88SKYgSQ4jMhUjXfq WqxaCDpdY2h9pAIhAOg+SUioclgl0/opvHGAiJR6meN8jgJuyTEUGWKMwBMDMA0G CSqGSIb3DQEBCwUAA4IBAQBQGZrh/qP+doY6GFEMwJ71hwBj8wbcMbWV7oy3VaNQ aoYTXssGmExYdQrn4hrH+Rb+5XqyNPqYTBnvfjgweBZLh67dLGV9wuvOgN6U6M8u 7fY5GMKmvwkqEsqDlCSKZwivHrjnHsNoTxKLjAgTHHVIsWc6NlHao7QmoaZfzNWa pKc0LET1mb7nLS9riUmqwRSpRY1EufilJNVankoEDfs5psm3QQMvzfrA2JgTELC/ NgBfUuTGHQtkgfm0j7bwWPsU3CrlHf/mwyoevYq3wYiVHXcL3ueuAYHntxSxLds9 m03XVR1kgf8Da6Uiy5RoxegDidSIkslrpGopZOB67i/E -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOn1gU1gMj+UbndAGVMa KqxVn3Al6i+jRhctsWeKykZXyXAETgMpz+8xQMvDTRxvmd23xPdyXCJY2mJV26JF xrtz17BTGLiA9KcR3OZfy018lt+Hx5mZC0+e4irXeGuePNJS7Up3akAyiZ6OMA6t ZyX6e4cz5k4zvn4kwwxCG8QgNm7vTL0F3+HaMUh2PHrK6gRigYWwpCIFnSenC3j/ dMAmz2bsCVVVCAXlz6nveRSGmQfch8A8xfPlxQ55nD/C0k+61njZxDGdfWgtnjwD TQtO8EiYFL5edPrVC+qtvuKTxDU7uLay455l3VBrFsSURBB85lg6e208uzv23MbF QwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 378227573881319240629808503599395701487442 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-04 11:12:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-04 11:12:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.derbierbaum.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22838264378763714720629856107386001949857927452219384006790037680989236859748058801931109448439209671930374590026691212137553950263742867336720608412161136082317181352788108950851787000055194757568940524835226046917999827376279095709535183446772463180483456560740943809811332541663050389185930843081471876374307819927557653938272478109522506446525069695312995234345213248515979953561492688375213274878894536843388022449820630163179610041746505632935782921318032678854681653561564955424954159900501433412270427257059254249382478074489282071046784421401677508081405656906720543359402220326244911213940568976889624315203 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 59aa118c4fa17bfeaa56f9bc80e92114b5f88d88 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.derbierbaum.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d91300000170101e09f60000040300473045022100da693933801710949d76ddb011e4405a0090f0a2514d15e373a561ff0f3723630220035e97667d78b4453982dd735c0a42c603ce1912b37c5a722e53a337eac2d102007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170101e0baf0000040300483046022100ea3e78b5aa4a568c637cf122988124388cc8548d77ea5aac5a083a5d63687da4022100e83e4948a8725825d3fa29bc718088947a99e37c8e026ec9311419628cc01303 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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