amz-exit.de
Issued by R3
About this certificate
This digital certificate with serial number 03:98:aa:1f:45:fe:f6:c3:be:06:30:21:5c:ad:af:12:81:99 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=amz-exit.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:98:aa:1f:45:fe:f6:c3:be:06:30:21:5c:ad:af:12:81:99Serial Number (int): 313285908707436022545257827588340421132697
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b9:1c:94:d1:8f:e6:5d:f2:b9:0b:2d:09:50:5e:57:5d:e7:1c:d1:d6
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 06:7e:4c:61:2c:3d:5f:04:76:84:8c:6c:d2:cf:e5:8f:e6:c3:f0:f0
Fingerprint (sha256): 99:d4:03:30:2f:cf:62:39:1a:9a:de:b9:00:65:18:f7:fc:10:33:c1:4f:cf:76:a2:37:49:23:36:68:a9:bf:2b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate amz-exit.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for amz-exit.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
amz-exit.de
Other certificates including the domain name amz-exit.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for amz-exit.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgISA5iqH0X+9sO+BjAhXK2vEoGZMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMDYyMjUzMTNaFw0yNDA0MDUyMjUzMTJaMBYxFDASBgNVBAMT C2Ftei1leGl0LmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSiH feGv1HSpmFKqYjua0ODQJtwSikPKNRB8MgL3LvTGY209gQsTATmvE6hSE3KyEZUN FSr90uYW6ZmUzgTpiPdDVZzpPgC31fgDffJOSPUo40KfHowAKifPVcqC/m9S6ES0 ULhSpxgff7+2UppgjGSWEO75qebU0yvmbwOoVIOocluPz56aZKumAMsXDQ9UpzCH yLMkGEw4Hw4kYF8ulHzWO417ydUQSNnxjysdPksvwPAJdvm/G2Guf7aZKqDDOpxw rsAz1Bob/I4AT2Glb8pT7x6NuKLwhJce3V5cOjc/3Vj7as3nP0auPbv17s32fXN4 pP+6OSCCbLDUbzZvfQIDAQABo4ICDTCCAgkwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBS5HJTRj+Zd8rkLLQlQXldd5xzR1jAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDm H6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5v LmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAW BgNVHREEDzANggthbXotZXhpdC5kZTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQG CisGAQQB1nkCBAIEgfUEgfIA8AB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7 v6s52IRzAAABjOEx58wAAAQDAEcwRQIgflQxIXSGKUhmgWrBNow3kexH5i8GJ5lH hvZirj5k+8MCIQCQoFcwdPSTXE8ipA0/6E5AEV+mXegxb+wxkp2jaP9J5AB2ADtT d3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjOEx6cgAAAQDAEcwRQIg clfh6od53E0Bo8kSFZhRGuTYx6OB3ZZYgNb0rU8fz+ACIQDWBA7XQWENg0scwJoB aYozpiiFKJmThEgt7uytn6DZxjANBgkqhkiG9w0BAQsFAAOCAQEAhI+C4gaUCOVl t4PlP0Od2ekx37AASSVNE2EMSXyiLMgIfbVhnFi8fqKqK7Ex6O3DCtKysAGli3Kh q9raU/9VbvcP6SDzk/dSbScF9JsFEqR7PbBCvQU++Ij1ZoXa8PgRhJPaZc5MzpB7 SLO7zYAa8oCZcewcBxKAbuLdFabvG40zrHEKmTpMrHcCHX03Gzu91W0nlThhzhYB SFGq5Ul+o/J1du/ZAJZF9OE+7KfaCy4hD1hQZig8NxIGbL8m9I/yg0kJiwS+v1Dq Z5i9lk65AYuEUrJMK9eIBK6evVBZIHZldof5HeUdhDv9Q0zo1r9W+YQ5j/b4uE9G r3obnFa9Ng== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSiHfeGv1HSpmFKqYjua 0ODQJtwSikPKNRB8MgL3LvTGY209gQsTATmvE6hSE3KyEZUNFSr90uYW6ZmUzgTp iPdDVZzpPgC31fgDffJOSPUo40KfHowAKifPVcqC/m9S6ES0ULhSpxgff7+2Uppg jGSWEO75qebU0yvmbwOoVIOocluPz56aZKumAMsXDQ9UpzCHyLMkGEw4Hw4kYF8u lHzWO417ydUQSNnxjysdPksvwPAJdvm/G2Guf7aZKqDDOpxwrsAz1Bob/I4AT2Gl b8pT7x6NuKLwhJce3V5cOjc/3Vj7as3nP0auPbv17s32fXN4pP+6OSCCbLDUbzZv fQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 313285908707436022545257827588340421132697 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-06 22:53:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-05 22:53:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'amz-exit.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22869118924084699660574292669090709034882305467916138504884400374502231479267116960415782408076714061719042209978111155848936524009388663513346217039907752840475304163729285566317375763264551903746593562020137326784243132489009110913869007272288488782252563334371352573042586470837768688504038662636893116304979536198296895451777913111922449855818766301250255342001770281846228492626040104745147727793536270597848015578876198214627697561503239190034440332709345863032820298930073352363551584997894966332312755634985778357693594037127760622012351879979150397183179756071226716224672825110624555487682441844567058050941 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b91c94d18fe65df2b90b2d09505e575de71cd1d6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amz-exit.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ce131e7cc000004030047304502207e5431217486294866816ac1368c3791ec47e62f0627994786f662ae3e64fbc302210090a0573074f4935c4f22a40d3fe84e40115fa65de8316fec31929da368ff49e40076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018ce131e9c8000004030047304502207257e1ea8779dc4d01a3c9121598511ae4d8c7a381dd965880d6f4ad4f1fcfe0022100d6040ed741610d834b1cc09a01698a33a6288528999384482deeecad9fa0d9c6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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