*.baelz.de
Issued by Encryption Everywhere DV TLS CA - G1
About this certificate
This digital certificate with serial number 02:74:62:52:6b:55:f7:46:e5:a4:0a:63:3f:52:d1:cc was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.baelz.de
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:74:62:52:6b:55:f7:46:e5:a4:0a:63:3f:52:d1:ccSerial Number (int): 3262756633229178261986263343664648652
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 51:1f:12:0a:58:dd:16:ce:90:1e:80:73:db:0e:b5:26:d8:99:c6:ad
AuthorityKeyId: 55:74:4f:b2:72:4f:f5:60:ba:50:d1:d7:e6:51:5c:9a:01:87:1a:d7
Fingerprint (sha1): 5e:a6:10:a8:cd:cc:bd:47:ad:60:f8:85:ae:cd:d4:cc:2d:d4:ea:26
Fingerprint (sha256): 82:94:64:c5:6c:e8:4f:53:c9:5a:fa:38:62:6d:03:b3:62:04:53:9a:8e:6a:e6:e3:b6:3f:68:e7:d2:e1:aa:ce
Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCheck the revocation status for certificate *.baelz.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.baelz.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.baelz.de
baelz.de
baelz.de
Other certificates including the domain name baelz.de
(limited to 100 certificates)
w.baelz.de
www.baelz.de
w.baelz.de
cag.baelz.de
www.baelz.de
www.baelz.de
w.baelz.de
w.baelz.de
starface.baelz.de
news.baelz.de
owa.baelz.de
*.baelz.de
*.baelz.de
w.baelz.de
baelz.de
owa.baelz.de
*.baelz.de
w.baelz.de
tsbf.baelz.de
cloud.baelz.de
*.baelz.de
*.baelz.de
cloud.baelz.de
w.baelz.de
owa.baelz.de
*.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
cag.baelz.de
w.baelz.de
news.baelz.de
cloud.baelz.de
*.baelz.de
w.baelz.de
cag.baelz.de
*.baelz.de
w.baelz.de
*.baelz.de
w.baelz.de
owa.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
owa.baelz.de
www.baelz.de
*.baelz.de
www.baelz.de
w.baelz.de
cag.baelz.de
www.baelz.de
www.baelz.de
w.baelz.de
w.baelz.de
starface.baelz.de
news.baelz.de
owa.baelz.de
*.baelz.de
*.baelz.de
w.baelz.de
baelz.de
owa.baelz.de
*.baelz.de
w.baelz.de
tsbf.baelz.de
cloud.baelz.de
*.baelz.de
*.baelz.de
cloud.baelz.de
w.baelz.de
owa.baelz.de
*.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
cag.baelz.de
w.baelz.de
news.baelz.de
cloud.baelz.de
*.baelz.de
w.baelz.de
cag.baelz.de
*.baelz.de
w.baelz.de
*.baelz.de
w.baelz.de
owa.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
owa.baelz.de
www.baelz.de
*.baelz.de
Certificate
The complete raw certificate details for *.baelz.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgIQAnRiUmtV90blpApjP1LRzDANBgkqhkiG9w0BAQsFADBu MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg RFYgVExTIENBIC0gRzEwHhcNMTgwOTE4MDAwMDAwWhcNMTkwOTE4MTIwMDAwWjAV MRMwEQYDVQQDDAoqLmJhZWx6LmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAv5vy1INSWFavzluiYqESNJUfAMM+7ZBgLwX/J4b0pHNhbTglSkHP+HKR om+1OCLehWZthzMM4LDZYTRU3lRp8zVTUVo64c867aBKYEflDwQmd+68VhNVEjw/ LXBySKwQEilOk+DWLcNk1RjFGCtgw9EWgJ+M7+6Guo/VDI0TlUYnwYQD7Pbzv3ps cGU63v82l/bzyZCeDny1xsQ7OMVfJLafFa3QwWmEROHNHlVb/iPDgMd3xPUdyCGz QDsIlQIsddvlXLPC54L7Gi1NCkLyR+GC82rV6J+cUcLPp2suV/iFak3dx37kYCy8 CidPBt7vodwxBTOX5+EudfbuuhTgEwIDAQABo4ICdzCCAnMwHwYDVR0jBBgwFoAU VXRPsnJP9WC6UNHX5lFcmgGHGtcwHQYDVR0OBBYEFFEfEgpY3RbOkB6Ac9sOtSbY mcatMB8GA1UdEQQYMBaCCiouYmFlbHouZGWCCGJhZWx6LmRlMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwTAYDVR0gBEUwQzA3 BglghkgBhv1sAQIwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQu Y29tL0NQUzAIBgZngQwBAgEwgYAGCCsGAQUFBwEBBHQwcjAkBggrBgEFBQcwAYYY aHR0cDovL29jc3AuZGlnaWNlcnQuY29tMEoGCCsGAQUFBzAChj5odHRwOi8vY2Fj ZXJ0cy5kaWdpY2VydC5jb20vRW5jcnlwdGlvbkV2ZXJ5d2hlcmVEVlRMU0NBLUcx LmNydDAJBgNVHRMEAjAAMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAu9nfvB+K cbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFl7JlAigAABAMARzBFAiEAlf0X ACjs6REpxmumP95QowQEvLLSGK7fEyxAiVMXHTICIEj5wkeD/vbElDnoLOxfww5F p99ByA4p4w7hZkXma3asAHUAh3W/51l8+IxDmV+9827/Vo1HVjb/SrVgwbTq/16g gw8AAAFl7JlAWgAABAMARjBEAiBrUyaxVs/nP3xrfx/G7a50+ruvY0u7GG3RYG+s pSIiqQIgGAe/shNUj/55oJeX0zL1h/baQXuzbXerlwo/7VG9L0MwDQYJKoZIhvcN AQELBQADggEBAH16eKgi4keZ85CYDafXNqlKex7AGdchnCC6YGBITS+gIE9Tsvnq m4oRtJrxWJmm7WZrReBMTveD/WuLWXSLXUCoCvj4V8Iox6rYUpALIc+vSINc72tb t6SX7mXrVMeMpWV/utCavh4SYT+aBVmIwZ7uhDofEEvDiVv6+y5dr6Nm+r4dEwPL YbtJIV7CiXdT07NU+ShZp+Iqu6F1cYuiwYfSuGL3eXXZafV21Jezx4TkzhFxzhmH BAv5cPxhg8a0m03Uoiq46+MD3XBslo0R/ecpfEki4uS6N+7zWTNp91y+P3wfMQqw WhPBLGZa2c61sF3VHZR4S3GaiaKgKcvCsi8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5vy1INSWFavzluiYqES NJUfAMM+7ZBgLwX/J4b0pHNhbTglSkHP+HKRom+1OCLehWZthzMM4LDZYTRU3lRp 8zVTUVo64c867aBKYEflDwQmd+68VhNVEjw/LXBySKwQEilOk+DWLcNk1RjFGCtg w9EWgJ+M7+6Guo/VDI0TlUYnwYQD7Pbzv3pscGU63v82l/bzyZCeDny1xsQ7OMVf JLafFa3QwWmEROHNHlVb/iPDgMd3xPUdyCGzQDsIlQIsddvlXLPC54L7Gi1NCkLy R+GC82rV6J+cUcLPp2suV/iFak3dx37kYCy8CidPBt7vodwxBTOX5+EudfbuuhTg EwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3262756633229178261986263343664648652 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-18 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.baelz.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24188417347224911836022223626555622636495687536531028416779241708834914182529056931603275658284205329020314594182873645899346922365087234466031844440911754121159830866697578248884641435497369927648464753949974776129167247897119909623365093680416111209769220005970880701846626656803938211553708580907578705998568788803024287946249772686966821880834326441632313787802135970162792485732232653063829337697864345753650918551593270287708642079012945542762319213618850077895185665065140435174729387297099000363584801156835994612555950443849423693309689781513555173011381545490456709729775425761688334170490393549368120893459 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55744fb2724ff560ba50d1d7e6515c9a01871ad7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 511f120a58dd16ce901e8073db0eb526d899c6ad . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.baelz.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'baelz.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed18500000165ec99408a000004030047304502210095fd170028ece91129c66ba63fde50a30404bcb2d218aedf132c408953171d32022048f9c24783fef6c49439e82cec5fc30e45a7df41c80e29e30ee16645e66b76ac0075008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000165ec99405a000004030046304402206b5326b156cfe73f7c6b7f1fc6edae74fabbaf634bbb186dd1606faca52222a902201807bfb213548ffe79a09797d332f587f6da417bb36d77ab970a3fed51bd2f43 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 007d7a78a822e24799f390980da7d736a94a7b1ec019d7219c20ba6060484d2fa0204f53b2f9ea9b8a11b49af15899a6ed666b45e04c4ef783fd6b8b59748b5d40a80af8f857c228c7aad852900b21cfaf48835cef6b5bb7a497ee65eb54c78ca5657fbad09abe1e12613f9a055988c19eee843a1f104bc3895bfafb2e5dafa366fabe1d1303cb61bb49215ec2897753d3b354f92859a7e22abba175718ba2c187d2b862f77975d969f576d497b3c784e4ce1171ce1987040bf970fc6183c6b49b4dd4a22ab8ebe303dd706c968d11fde7297c4922e2e4ba37eef3593369f75cbe3f7c1f310ab05a13c12c665ad9ceb5b05dd51d94784b719a89a2a029cbc2b22f