ekitchen.de

Issued by R3

About this certificate

This digital certificate with serial number 03:b1:d9:6a:bb:73:dc:f8:b4:e2:cc:63:f3:f1:8e:1d:8c:e5 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=ekitchen.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:b1:d9:6a:bb:73:dc:f8:b4:e2:cc:63:f3:f1:8e:1d:8c:e5
Serial Number (int): 321855833400829401351014141792880741420261
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 37:99:bf:4c:6a:83:ac:97:ee:1d:c5:e3:be:49:c5:44:04:52:d9:9f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): e9:23:77:8c:b2:47:e2:7d:0f:89:67:d9:58:52:de:9f:77:74:07:65
Fingerprint (sha256): 85:08:3f:af:96:23:ea:4c:2a:cc:51:32:99:25:97:b8:3e:55:d3:b7:ea:ea:1d:1f:88:73:3f:64:54:8e:10:0c

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate ekitchen.de

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ekitchen.de

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ekitchen.de
www.ekitchen.de

Other certificates including the domain name ekitchen.de

(limited to 100 certificates)
ekitchen.de
www.stage.ekitchen.de
www.stage.ekitchen.de
ekitchen.de
ekitchen.de
www.stage.ekitchen.de
ekitchen.de
www.stage.ekitchen.de
ekitchen.de
www.stage.ekitchen.de
cmp.autobild.de
ekitchen.de
ekitchen.de
cmp.bike-bild.de
cmp.bike-bild.de
www.stage.ekitchen.de
ekitchen.de
ekitchen.de
ekitchen.de
www.ekitchen.de
www.stage.ekitchen.de
www.stage.ekitchen.de
cmp.bike-bild.de
www.stage.ekitchen.de
www.stage.ekitchen.de
cmp.ekitchen.de
www.stage.ekitchen.de
cmp.autobild.de
ekitchen.de
www.ekitchen.de
ekitchen.de
cmp.bike-bild.de
ekitchen.de
ekitchen.de
www.stage.ekitchen.de
cmp.bike-bild.de
www.stage.ekitchen.de
ekitchen.de
ekitchen.de

Certificate

The complete raw certificate details for ekitchen.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIF9DCCBNygAwIBAgISA7HZartz3Pi04sxj8/GOHYzlMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yNDAzMTIwNjMzMDVaFw0yNDA2MTAwNjMzMDRaMBYxFDASBgNVBAMT
C2VraXRjaGVuLmRlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnScH
G3Y6tgn3F3BpndwEhdla3pJhsb31OmOXxxaUBtqUgc5F7yovL1vH+1krjJO8+Ig5
yjd8qJhYdDkAdri/EZUUCYtq+odwvI+MOhumBYqP52dyk+9K6pz4xoKn+2wJRTQG
OSw0vH1u1nwZ+1FmSiL1EfLAjeYbbVoLKR6gvyFr8o1rz82j/m4M1C8JNJ2lXGT4
H+v3o311eCo+k9FhzGKV4/EFSB7xvQnm7o4qSFkLx34TbtOKjip0yzgoOQ2L/i40
Kj+wOy8hXB31spuLTBSnemiOyykIotXAyXD+bKnqI6PA12lnYlyPFjg+2362aXSi
UcjEi1U3extvm/n6lQqkNq5yuDcuK8X6atio0pnB4HjLD1vOlYirp7pWpw5iWUzO
N+BKa+Cqpk5YOTLcYt73r8UQjPFLXOqOH4jCzfHI51xdLcw6zz66Wx3MsuN/KQGn
/EmPz0TQWWRhvpcgHfM9yxlXBIkIJKP0KZQ25BzWEVLAtvVxHVBRyaLMDclRDXGH
XkeRDgvU+zAjWYqiGS9X+uslKDnR8bul4fXIbNHTNd3JSK90GEOoOhIysYOhDvrQ
HHAXEDE9ShewniTRJ4WpLWjGYnsnCkhn14pPPYCIUjjR58ggDmh26y/XfPEdt4OU
gpZG+GEAcDnJUR30FY9Y1uxFJq3G+roEE+IV95MCAwEAAaOCAh4wggIaMA4GA1Ud
DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T
AQH/BAIwADAdBgNVHQ4EFgQUN5m/TGqDrJfuHcXjvknFRARS2Z8wHwYDVR0jBBgw
FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF
BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y
My5pLmxlbmNyLm9yZy8wJwYDVR0RBCAwHoILZWtpdGNoZW4uZGWCD3d3dy5la2l0
Y2hlbi5kZTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUE
gfIA8AB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjjGUSG0A
AAQDAEgwRgIhAPrnO1aBEpvmfvplNBhCiOA05KiwvKe0G/5cR9thz8RrAiEAteER
ZxmAB0pvvjSXGqth217hUHGJ4kiEl4PnEfdaPHAAdQCi4r/WHt4vLweg1k5tN6fc
ZUOwxrUuotq3iviabfUX2AAAAY4xlEiMAAAEAwBGMEQCIBVl1apUdexU8+iw2QJS
ZRANVurJi6bVsxBoaLr/Sn4+AiB3gfvzz7av4zfFWdeY9Z0KvNplhxL3T4Y1GozP
eA6B8jANBgkqhkiG9w0BAQsFAAOCAQEAba9JOUsJrVOqaZIWb9wDvzr2UoNOoRG2
OAfm1UzPtuw9+ZKZdX4Bmc3CXYLCuKcTvBvwvaMSWdGofCV421hxk7iLhlAQf+NI
kQH02msVDj/QWxuvQe4x6WZb+/94f0lYtFVLzULSdFohc8qigMnfUfOuvqPBp240
eW2lqH+QdO5TK6JMkcVui0vPlJALajxymK7mN5wB36DsqPxuyDqJtpgXWkHU5V54
gAgb+q+bt0Es4IRhdOczuP1xvpEmYL7mhyL0D5KEpHQptffP3aGiWOeGBRzhfUQv
csSYw+4VjV9zbXGP9BPyBdNWD59Ub1WoS0/p33RCgxzoqAXypxC8QA==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 321855833400829401351014141792880741420261
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-12 06:33:05 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-10 06:33:04 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ekitchen.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 641126069385922271719170296766250364778555067831891501447845584772307540097633752293191426922076385253675871416919334524360684115214608840970407107924595092616481452106925727042521204974597522031548012913305648268409577909967767988216119947629615987419304062443866478802940113506382110006111014103192659200041269208360742667566693347351652033449245702862361478459394371223069118111652989531766756190998585247811104135963916760025602369373174356215671719092453987454342498739490554440236985245371152292852788508031753848797124955419198726714186481245287874120457854601396514233385577491587018612139750871759394838436303224469172082600246435372635653673421858342328835563164889853036328644613165184567746236668793702785048328418340000957532469300169926512262749870880039910793907172253220497258742333784622402015815202510959794916176605199973458349645982580453549155500125339179463931539383836599762395489966792860085844201798921062617000047143823668055471812498532471971303267982210608043207343838725125969212369998859741089548704025145428030366312560337806991124908773534755690837303303610199753386406141825592928290488543754423348959875878154249690675448532870089186693870903433078549505776604585270946993526372946041199175757330323
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3799bf4c6a83ac97ee1dc5e3be49c5440452d99f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ekitchen.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ekitchen.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e3194486d0000040300483046022100fae73b5681129be67efa6534184288e034e4a8b0bca7b41bfe5c47db61cfc46b022100b5e111671980074a6fbe34971aab61db5ee1507189e248849783e711f75a3c70007500a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e3194488c000004030046304402201565d5aa5475ec54f3e8b0d9025265100d56eac98ba6d5b3106868baff4a7e3e02207781fbf3cfb6afe337c559d798f59d0abcda658712f74f86351a8ccf780e81f2
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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