gsg.kfh-dialyse.de

- gsg.kfh-dialyse.de -

Issued by Thawte DV SSL CA

About this certificate

This digital certificate with serial number 02:be:ff:d8:c8:32:c0:e1:6f:a3:da:69:79:64:05:c4 was issued on by Thawte, Inc..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

gsg.kfh-dialyse.de

Organization: gsg.kfh-dialyse.de
Organization unit: Go to https://www.thawte.com/repository/index.html
Organization unit: Thawte SSL123 certificate
Organization unit: Domain Validated

Thawte, Inc.

Organization: Thawte, Inc.
Organization unit: Domain Validated SSL
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 02:be:ff:d8:c8:32:c0:e1:6f:a3:da:69:79:64:05:c4
Serial Number (int): 3650181584381842360459821443862234564
Serial Number lenght: 122 bits, 16 octets

SubjectKeyId:
AuthorityKeyId:

Fingerprint (sha1): 6d:6d:c4:bd:d0:ee:4c:4b:da:a6:60:4b:b5:ba:95:7b:ae:07:e6:b3
Fingerprint (sha256): 9a:13:bd:34:33:8e:26:09:c4:89:36:31:d2:59:b8:25:37:98:45:dc:31:d7:8b:24:0b:5e:3f:37:1c:ea:b9:f4


Revocation information

OCSP Server: http://ocsp.thawte.com
CRL Distribution Point: http://svr-dv-crl.thawte.com/ThawteDV.crl

Check the revocation status for certificate gsg.kfh-dialyse.de

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for gsg.kfh-dialyse.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA

Key Usage

Extended Key Usages

Server Authentication
Client Authentication

Extensions

5 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

gsg.kfh-dialyse.de

Other certificates including the domain name kfh-dialyse.de

(limited to 100 certificates)
webmail.kfh-dialyse.de
webmail.kfh-dialyse.de
qin.kfh-dialyse.de
mail.kfh-dialyse.de
owa.kfh-dialyse.de
gsg.kfh-dialyse.de
sharepoint.kfh-dialyse.de
gsg.kfh-dialyse.de
gsg.kfh-dialyse.de
mail.kfh-dialyse.de
gsg.kfh-dialyse.de
webmail.kfh-dialyse.de
gsg.kfh-dialyse.de
qin.kfh-dialyse.de
mail.kfh-dialyse.de

Certificate

The complete raw certificate details for gsg.kfh-dialyse.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIEXzCCA0egAwIBAgIQAr7/2MgywOFvo9ppeWQFxDANBgkqhkiG9w0BAQUFADBe
MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMR0wGwYDVQQLExRE
b21haW4gVmFsaWRhdGVkIFNTTDEZMBcGA1UEAxMQVGhhd3RlIERWIFNTTCBDQTAe
Fw0xMjA2MjIwMDAwMDBaFw0xNTA2MjIyMzU5NTlaMIG2MRswGQYDVQQKFBJnc2cu
a2ZoLWRpYWx5c2UuZGUxOzA5BgNVBAsTMkdvIHRvIGh0dHBzOi8vd3d3LnRoYXd0
ZS5jb20vcmVwb3NpdG9yeS9pbmRleC5odG1sMSIwIAYDVQQLExlUaGF3dGUgU1NM
MTIzIGNlcnRpZmljYXRlMRkwFwYDVQQLExBEb21haW4gVmFsaWRhdGVkMRswGQYD
VQQDFBJnc2cua2ZoLWRpYWx5c2UuZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw
ggEKAoIBAQClWDeYJPGSwQOGrFIKYzKfMtnlH0NfH8qHq4JoW03fJeUfYbtcjg5c
SMSz0AZ1VP3KQkCbW00+UfH314M8TM+jynMwenU4QUxnsH02HykS9wLvhraLpsNi
LDoyaDkCP4faq57MfEliKL8yuC1UAqv9mP31p1vTMOeWwOY/A/68LAC+uKDj+sYt
GDhhnYE5Gn5eqKK9//tZPcEhjWBKidb2lUgYnBgLBOTb7SjAhoU8S42bNQrF4iXo
aNptTt+oSlFEiujqM6d3BpM8u6+HrJ5CS2FNliJIg5qs6WjWrgobj4gFpEwdb/OV
ahanC9TjGJgINwYaRW1jPOH8fmIFASJVAgMBAAGjgb8wgbwwHQYDVR0RBBYwFIIS
Z3NnLmtmaC1kaWFseXNlLmRlMAwGA1UdEwEB/wQCMAAwOgYDVR0fBDMwMTAvoC2g
K4YpaHR0cDovL3N2ci1kdi1jcmwudGhhd3RlLmNvbS9UaGF3dGVEVi5jcmwwHQYD
VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDIGCCsGAQUFBwEBBCYwJDAiBggr
BgEFBQcwAYYWaHR0cDovL29jc3AudGhhd3RlLmNvbTANBgkqhkiG9w0BAQUFAAOC
AQEAuswAmWwsDcSB+nB2yDNtPNP0mUMMxHzKyJowUnwpvAkcMoY+xdPlJylvOR4L
MNcTI9pxGiuumo2GfWP5riRRz15vNRFczlAdx2ekYJF3o361gnpk+M/4irYbx6mt
Y+4cfzQOtkPoJwUTxmPqLMQH6LfxqWFRYpwg/oVlQXHMY/TaADltX08se0V3O2wp
ISut8xlMPbmjb6ixsw07xUwmmnNRuebWWseHjIVZA2gKQn98mEIjB80y2ts8w9gJ
oMcKz5sbA1Uj8o+LZfEe5uRwQShqZ0Fh6c1wJJHk03S6PeGmMhNpnN9ZVJfj7BMX
8ncVZKtZzPbvYEISjzMKi1XoCQ==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVg3mCTxksEDhqxSCmMy
nzLZ5R9DXx/Kh6uCaFtN3yXlH2G7XI4OXEjEs9AGdVT9ykJAm1tNPlHx99eDPEzP
o8pzMHp1OEFMZ7B9Nh8pEvcC74a2i6bDYiw6Mmg5Aj+H2quezHxJYii/MrgtVAKr
/Zj99adb0zDnlsDmPwP+vCwAvrig4/rGLRg4YZ2BORp+Xqiivf/7WT3BIY1gSonW
9pVIGJwYCwTk2+0owIaFPEuNmzUKxeIl6GjabU7fqEpRRIro6jOndwaTPLuvh6ye
QkthTZYiSIOarOlo1q4KG4+IBaRMHW/zlWoWpwvU4xiYCDcGGkVtYzzh/H5iBQEi
VQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 3650181584381842360459821443862234564
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte DV SSL CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-06-22 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-06-22 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'gsg.kfh-dialyse.de'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go to https://www.thawte.com/repository/index.html'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL123 certificate'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'gsg.kfh-dialyse.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20872821824926475328098217114795769151695374280748813943009370016576403780370651813421179610812815626771844168372065610522115473311824879623331567033864110667134928202703077359961575551041396128789235761370296219260701920600561557293058335400684612809352770614576964760752424293688386689677742716359647275296979188316664130049136602983456108235575813005260082041396462886944630546661547124349336654851809921072487813765500901753016406452771503712744082223451260494753414275474243352995041487787980248234944245353751508029541876188766596454928751922083068512957123780775464654257064920346712091640656735375850236617301
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gsg.kfh-dialyse.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-dv-crl.thawte.com/ThawteDV.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00bacc00996c2c0dc481fa7076c8336d3cd3f499430cc47ccac89a30527c29bc091c32863ec5d3e527296f391e0b30d71323da711a2bae9a8d867d63f9ae2451cf5e6f35115cce501dc767a4609177a37eb5827a64f8cff88ab61bc7a9ad63ee1c7f340eb643e8270513c663ea2cc407e8b7f1a96151629c20fe85654171cc63f4da00396d5f4f2c7b45773b6c29212badf3194c3db9a36fa8b1b30d3bc54c269a7351b9e6d65ac7878c855903680a427f7c98422307cd32dadb3cc3d809a0c70acf9b1b035523f28f8b65f11ee6e47041286a674161e9cd702491e4d374ba3de1a63213699cdf595497e3ec1317f2771564ab59ccf6ef6042128f330a8b55e809