DV SSL/TLS Certificate for mein.libri.de

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the mein.libri.de DV SSL/TLS Certificate

This certificate with serial number 06:f5:49:75:4b:ca:79:26:8a:73:67:89:24:d6:80:3f:86:fb for mein.libri.de was issued on by Let's Encrypt.

With 11 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for mein.libri.de provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:f5:49:75:4b:ca:79:26:8a:73:67:89:24:d6:80:3f:86:fb
Serial Number (int): 606140538165838454242766308657863277381371
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 89:99:54:be:05:a9:c7:88:ed:1f:6a:69:a3:f6:6c:83:f7:f9:73:0b
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): b7:d1:f2:c3:e9:fa:73:66:7d:c7:96:81:40:6c:be:d2:c5:b1:9b:53
Fingerprint (SHA-256): 8f:0f:35:65:b1:e3:0a:e5:6e:c8:9a:8b:47:3e:23:fb:4c:4b:d2:b8:3e:86:cd:9b:88:f7:99:20:71:73:bc:ab

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/124.crl

Check the revocation status for certificate mein.libri.de
11
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for mein.libri.de

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

connect.koenemann-bs.de
mein.koenemann-bs.de
mein.libri.de
mein.nordbuch.com
meinportal.libri.de
my.koenemann-bs.de
my.libri.de
myportal.libri.de
www.mein.libri.de
www.mein.nordbuch.com
www.my.libri.de

X.509 Certificate

The complete raw X.509 certificate details for mein.libri.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPP1ZUgavOgF0y1PmRwn
wvrMX3wrSgCVwRzzWVjMOHnZksuhFNa6R9ANTYfB2d8l0oXsqg15ZnddE9pwLCh5
3i9W4yGlYrG1wDTDje1r8zCx7bADFRZWYW2QfuEfpfwy5QiiYNQn+fWDVHap+zm5
w8UWng6QGf1neuXIkXnwfDV5F6e/sVM15pMZTEyQY7u5UYvM5keycEM1VqAm+HhR
ZSvQ6lacMLTM/Snr/rb+XTeK+NK7kpOPMNVghA2zy4jeFLeKVe733BwbiAUHya/q
1mryW6mc1zkRlNOxBdpOFJK29bm6Kab4WIU8gz7oEMtu0qYeEUiMeCIPrj+i/Y+4
UwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 606140538165838454242766308657863277381371
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-27 04:44:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-25 04:43:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mein.libri.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25367961451034787286203517408271151851782328273281237308564230851969897792667300613622536505141392669411302291284689704353495252915514568678256295380923613515335415348676863657291554180624643293387642411840840036053690743975781389089531237599699685895655128048481945973614582481216919968509503999526810539616048902864436700399695789102461888790117500793000575033939930881365040061080242981249378615434884990540501647912193588588233210777652183697269104140836721544089460860273596339975032107202420349066313173115706889336816548702983011306564426228111461824288796505242293077192249528522254934618700932832793642121299
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							899954be05a9c788ed1f6a69a3f66c83f7f9730b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (216 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'connect.koenemann-bs.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mein.koenemann-bs.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mein.libri.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mein.nordbuch.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'meinportal.libri.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.koenemann-bs.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.libri.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myportal.libri.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mein.libri.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mein.nordbuch.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.my.libri.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/124.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0076007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b800000197afe8ab85000004030047304502200baa8e8475010d8bdb8ef064215acc53fd0920a1e13b45558e6dba577d823c47022100dc293e59fc5c5f3641c339ccb97fe655a63a054a09dc9740491d98c4a252a91c0075000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa3400000197afe8bbc600000403004630440220468c49f68490f13caa36676c250df9a22ffc0b4ddc0b0f664cffaf75dd4d16ba022073ac1def27a2e9770453267d394966415df19e396eb183a5a1c21bb42a402c74
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		005386d6e5dcb575ee65bf477dbc491bf32ab7e00c1a7a65e128c5d7793869b7e768a292f3da4ed948cafc95afdb53a49ccb949035736783d5fe1d3a8306b231f077612cd25ad966277ac30c5f5b196370579117c0cf06181df6ae0e2b7b4a01768ec31994ef027a008ddf7630691f961dd42fd2a28559a4ef19df39b8d71e38a15c7880eb82f8afe2d00c2968099ddf791704128052d728eb797bb7a89b50b6d63ce263d6d53ab03516094ddfa3def69e77154d110f5817a76fbd8968a0d5d224289bbe795607cd0b807617375501849fae99e7701736503fe722c5b6d1835c1b7f337e9a8ee689200c1f65f8d6f1fb9244d4974e4311b514ab1b809a536ffc8a