www.bau-dein-ding.de
Issued by R3
About this certificate
This digital certificate with serial number 03:a4:68:e4:56:a5:ad:93:e6:38:cd:67:74:6b:f8:05:e9:0c was issued on by Let's Encrypt.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.bau-dein-ding.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:a4:68:e4:56:a5:ad:93:e6:38:cd:67:74:6b:f8:05:e9:0cSerial Number (int): 317282591282973617574230392878470204352780
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ac:88:64:2b:f2:1b:b4:6a:7d:32:b3:65:17:b0:ce:af:a9:70:9d:4d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 62:7e:23:bf:65:31:2e:28:6e:4a:a8:e0:bd:f3:5e:bf:61:56:fd:ee
Fingerprint (sha256): 9d:db:24:32:55:f0:ee:4e:95:89:fa:7e:40:9c:a2:83:77:80:88:96:cc:60:d8:4f:23:c1:89:12:1e:b5:3f:ab
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.bau-dein-ding.de
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.bau-dein-ding.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bau-dein-ding.de
bau-dein-ding.nrw
stelle-mit-zukunft.de
www.bau-dein-ding.de
www.bau-dein-ding.nrw
www.stelle-mit-zukunft.de
bau-dein-ding.nrw
stelle-mit-zukunft.de
www.bau-dein-ding.de
www.bau-dein-ding.nrw
www.stelle-mit-zukunft.de
Other certificates including the domain name bau-dein-ding.de
(limited to 100 certificates)
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
api.bau-dein-ding.de
www.bau-dein-ding.de
api.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
api.bau-dein-ding.de
www.bau-dein-ding.de
api.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
www.bau-dein-ding.de
Certificate
The complete raw certificate details for www.bau-dein-ding.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgISA6Ro5FalrZPmOM1ndGv4BekMMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMTAwMDU4NDlaFw0yNDA2MDgwMDU4NDhaMB8xHTAbBgNVBAMT FHd3dy5iYXUtZGVpbi1kaW5nLmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAu8ffliIdPZmqCae0H/bIx0G2asVGt9zfyVIB9FH0Nkeny2Q4irysHOFi 3r5iyydUa0/u+oDhcpum2oVZa5kIspE6f49FPYRcT32A3m8it6KknFspzRzyo1Le 17T+cE1d1BM3hUShwXI9t8hFON9APPK0jzciqO3P+J9bJMzGveQQXJdgmctXWjvU 0FwjqDq5Omyf7KMKIgbFKCglGMnpZpfr61m3cqNiWeukx+/vp7JJ26MxCquhRodX Hz2w5k4jt8NXxUnR82dkealdnJO1w083rgQagvdSO1V4D8JjnZ12VrHFn8QdUOvz zinxTIFf8S7laE9lOcbmz+xtyQyhtwIDAQABo4IChjCCAoIwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBSsiGQr8hu0an0ys2UXsM6vqXCdTTAfBgNVHSMEGDAWgBQULrMX t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0 dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu Y3Iub3JnLzCBjwYDVR0RBIGHMIGEghBiYXUtZGVpbi1kaW5nLmRlghFiYXUtZGVp bi1kaW5nLm5yd4IVc3RlbGxlLW1pdC16dWt1bmZ0LmRlghR3d3cuYmF1LWRlaW4t ZGluZy5kZYIVd3d3LmJhdS1kZWluLWRpbmcubnJ3ghl3d3cuc3RlbGxlLW1pdC16 dWt1bmZ0LmRlMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB 9ASB8QDvAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGOJhWK SwAABAMARzBFAiEAjNG9FnBjq25b9pbkLEWQ36XuuaWm3izuTVNlbmZcU5oCIH4V +4pbVOZbZEOBoqg1Ki6/Q2H/zh2VJ3Nfagi6jdk9AHUAouK/1h7eLy8HoNZObTen 3GVDsMa1LqLat4r4mm31F9gAAAGOJhWKWwAABAMARjBEAiAPavcOivIFly+Kju6D Use30PkT1/GGZAr5+ScCVgoU4QIgT4Dwg42jhf0fkyUM5wwpYSg4fXT1zpMeSBhY qko2UfIwDQYJKoZIhvcNAQELBQADggEBAKpyw/tq9/iNtw8X3tkGfHPzud78FE7p uuIrp8Uw+art6aFBHhng03FkWOICriCT7DxlCQ0ZAtVO86eDnve0D46aw8Vq79Ah ZTNv05m0XZhLFe6DNMJPKHvTODlDM5AL6xXOKWyS5oFbQrGXZBFZRVVr+hFWM+SG 85ryAYJJLECbS5FYVo7mbUVPO//+Ga+/8jWFhNwwyAVG65uT2s4vh8t0FlAP2LmR MNSV6PftCREsHMt5W789p9isXx6kdsBuvdbr7h32261yPj8ZQGIqsSOnc8d/Jl90 3p6zh9HVQJyzi/vbEhNZeQGqidlVOk92Bx2pHlAzvZnZPGruZvVgm4s= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu8ffliIdPZmqCae0H/bI x0G2asVGt9zfyVIB9FH0Nkeny2Q4irysHOFi3r5iyydUa0/u+oDhcpum2oVZa5kI spE6f49FPYRcT32A3m8it6KknFspzRzyo1Le17T+cE1d1BM3hUShwXI9t8hFON9A PPK0jzciqO3P+J9bJMzGveQQXJdgmctXWjvU0FwjqDq5Omyf7KMKIgbFKCglGMnp Zpfr61m3cqNiWeukx+/vp7JJ26MxCquhRodXHz2w5k4jt8NXxUnR82dkealdnJO1 w083rgQagvdSO1V4D8JjnZ12VrHFn8QdUOvzzinxTIFf8S7laE9lOcbmz+xtyQyh twIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 317282591282973617574230392878470204352780 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-10 00:58:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-08 00:58:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.bau-dein-ding.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23705124268027770715488396286099212365081563006754511220594478503053809160963464212281671308883848450295347735112468782687712768096947569534165011968130760681579443156756856444875901684086756123115722568155155858824179914515094975971298613324570868341458786265409749308582193320741109051528579874430310818396304700621873253284945610491917102675855055282263827048601373767233734826206422125608126158337007853098606152102167156098177888232335179768064070776332854727032635412999212730459113010413373320322772790117352615923567481078552331461149194471731189209585962942755499969354110170777566522032637989886981149860279 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ac88642bf21bb46a7d32b36517b0ceafa9709d4d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bau-dein-ding.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bau-dein-ding.nrw' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stelle-mit-zukunft.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bau-dein-ding.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bau-dein-ding.nrw' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.stelle-mit-zukunft.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e26158a4b00000403004730450221008cd1bd167063ab6e5bf696e42c4590dfa5eeb9a5a6de2cee4d53656e665c539a02207e15fb8a5b54e65b644381a2a8352a2ebf4361ffce1d9527735f6a08ba8dd93d007500a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e26158a5b000004030046304402200f6af70e8af205972f8a8eee8352c7b7d0f913d7f186640af9f92702560a14e102204f80f0838da385fd1f93250ce70c296128387d74f5ce931e481858aa4a3651f2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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