hess-gruppe.de

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:33:35:73:5e:4f:91:44:65:b8:c4:bd:cf:40:b2:aa:a8:1b was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=hess-gruppe.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:33:35:73:5e:4f:91:44:65:b8:c4:bd:cf:40:b2:aa:a8:1b
Serial Number (int): 365874592550774665865200009515579650779163
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: bb:9a:6a:3a:29:37:ca:3d:07:de:c7:1d:3f:9c:43:ab:06:a7:62:88
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 5e:54:8f:30:81:8b:3d:3c:0d:cb:c6:6b:01:f4:84:f5:95:e6:c5:b2
Fingerprint (sha256): 90:d4:c6:bd:f0:f3:b9:6d:65:47:5d:16:bf:7c:1f:20:d4:0c:ec:ed:81:d5:39:3c:91:68:df:60:46:b1:10:26

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate hess-gruppe.de

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for hess-gruppe.de

Public Key Algorithm

RSA

Key Size

3072

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

hess-gruppe.de

Other certificates including the domain name hess-gruppe.de

(limited to 100 certificates)
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
mailrz.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
ssgd.hess-gruppe.de
*.hess-gruppe.de
www.hess-gruppe.de
mailrz.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
*.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
vpn.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de

Certificate

The complete raw certificate details for hess-gruppe.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAs207FHlrAJOjf2l4iDqc
UjfbP4LQ+t556i1JNuPb8NzDoDdaxgIZ5vrpyXP65cIkba9YoZo39U3IHDMSHOTL
kM0Q8qqsRZHiWAqQdYlqsn0xLM4ZBpHk4Yi43L6JQy8EAJ9cdvShk14rfuDQtJlt
/ahKPB+DA01aduRCE+hwfpIszIKbhCDrjPs/qdwrcP1YAlen2p6uqcLz+mCZ5uts
f1UluGXnVJeEnPEFe98UoEUsVBs3mHPOJq878wauCuJvqoR626EVzk6GahrPUyO9
hy0hN1NEECqA5P3Yd7COIXf4Zo4rCQ75OKgM0BZEFiH4otm90SAc+z9Kenq6FUqV
LiL239PMAAtwFWBBURtnqlPWc+5Fo2qJsNaBGw0ZFidoCWXp2Tv9/COAfihJ3aeX
G/lK22UxnCWidY8qu/WDyN9bpcwk09ezlzQC941BjaQFqAHYSy2H21dE2xIt4CDj
92BRfMssXhzJDiVtU8iZY2BHejCisfehtd4Pmulb3LQRAgMBAAE=
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 365874592550774665865200009515579650779163
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-04 13:25:03 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-03 13:25:03 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hess-gruppe.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 4071868483474054477982656730181109645062834940326387214467413770194927298227670239676636795241604399617539797671188570501438473517960295770344339436893960838642556176057898757177241504228855563527270691628914491461487139517466730725771396165718581438216943134275837957487178484300339649936491655745064189891014061731128901475993119430377508958044670210494349017928352725438033931571851844678618102450568786110136877020389089158528148488735268328409642534966930610951067931376135695764695173039760495559060954418373888953833731667820691841484131432137317692733887495567615295373785655094444247763020381408038746828211402675434310335989972757965949940218628077840734896072368202371099592821899508149430120966641249652062223767084201063607050914559451041368141693370542555138097138183729546592596580585139108573213427670213699595571428120637641407437370514412474950686154986208399845388576647297460688681895631015910537401512977
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							bb9a6a3a2937ca3d07dec71d3f9c43ab06a76288
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hess-gruppe.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016cfcaa1f3400000403004830460221009808df4c1898bbc2a76c0e678214266d9f359b76058da18d2c72289b560aae3a022100a972aa9a8fde4ddd89497e24fe70ddf7690019d5bb3676bcdc9894705acebaa7007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016cfcaa21180000040300463044022025d53060d31cd9d17f553ba1c3e5929d378860e773bfb0276cc81b735c3bb37102203c14adaa0e4da2c8bd44c84976a707559b079c598ca70f42815af160e0c7a11d
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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