mail.kfh-dialyse.de
- mail.kfh-dialyse.de -
Issued by Thawte Server CA
About this certificate
This digital certificate with serial number 5f:ab:51:51:b2:12:c4:2f:ac:9d:ee:46:a5:20:eb:9b was issued on by Thawte Consulting cc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
mail.kfh-dialyse.de
Organization:
mail.kfh-dialyse.de
Organization unit: Go to https://www.thawte.com/repository/index.html
Organization unit: Thawte SSL123 certificate
Organization unit: Domain Validated
Organization unit: Go to https://www.thawte.com/repository/index.html
Organization unit: Thawte SSL123 certificate
Organization unit: Domain Validated
Thawte Consulting cc
Organization:
Thawte Consulting cc
Organization unit: Certification Services Division
Organization unit: Certification Services Division
State / Province:
Western Cape
Locality: Cape Town
Country: ZA
Locality: Cape Town
Country: ZA
This certificate has expire since
Certificate Details
Serial Number (hex): 5f:ab:51:51:b2:12:c4:2f:ac:9d:ee:46:a5:20:eb:9bSerial Number (int): 127166191710146541767274529609362762651
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId:
Fingerprint (sha1): 02:ba:06:ec:7a:ed:71:d9:30:95:b1:5f:77:18:ac:c4:dc:17:a0:68
Fingerprint (sha256): 9e:ae:eb:32:f1:a3:a8:ff:d2:fc:85:82:ac:e1:86:a0:f4:6f:85:e7:2c:29:80:21:f6:eb:46:92:82:8f:78:fc
Revocation information
OCSP Server: http://ocsp.thawte.comCRL Distribution Point: http://crl.thawte.com/ThawteServerCA.crl
Check the revocation status for certificate mail.kfh-dialyse.de
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mail.kfh-dialyse.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Extended Key Usages
Server Authentication
Client Authentication
Extensions
4 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name kfh-dialyse.de
(limited to 100 certificates)
webmail.kfh-dialyse.de
webmail.kfh-dialyse.de
qin.kfh-dialyse.de
mail.kfh-dialyse.de
owa.kfh-dialyse.de
gsg.kfh-dialyse.de
sharepoint.kfh-dialyse.de
gsg.kfh-dialyse.de
gsg.kfh-dialyse.de
mail.kfh-dialyse.de
gsg.kfh-dialyse.de
webmail.kfh-dialyse.de
gsg.kfh-dialyse.de
qin.kfh-dialyse.de
mail.kfh-dialyse.de
webmail.kfh-dialyse.de
qin.kfh-dialyse.de
mail.kfh-dialyse.de
owa.kfh-dialyse.de
gsg.kfh-dialyse.de
sharepoint.kfh-dialyse.de
gsg.kfh-dialyse.de
gsg.kfh-dialyse.de
mail.kfh-dialyse.de
gsg.kfh-dialyse.de
webmail.kfh-dialyse.de
gsg.kfh-dialyse.de
qin.kfh-dialyse.de
mail.kfh-dialyse.de
Certificate
The complete raw certificate details for mail.kfh-dialyse.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEJzCCA5CgAwIBAgIQX6tRUbISxC+sne5GpSDrmzANBgkqhkiG9w0BAQUFADCB xDELMAkGA1UEBhMCWkExFTATBgNVBAgTDFdlc3Rlcm4gQ2FwZTESMBAGA1UEBxMJ Q2FwZSBUb3duMR0wGwYDVQQKExRUaGF3dGUgQ29uc3VsdGluZyBjYzEoMCYGA1UE CxMfQ2VydGlmaWNhdGlvbiBTZXJ2aWNlcyBEaXZpc2lvbjEZMBcGA1UEAxMQVGhh d3RlIFNlcnZlciBDQTEmMCQGCSqGSIb3DQEJARYXc2VydmVyLWNlcnRzQHRoYXd0 ZS5jb20wHhcNMTAwMjE1MDAwMDAwWhcNMTUwNDAxMjM1OTU5WjCBuDEcMBoGA1UE ChQTbWFpbC5rZmgtZGlhbHlzZS5kZTE7MDkGA1UECxMyR28gdG8gaHR0cHM6Ly93 d3cudGhhd3RlLmNvbS9yZXBvc2l0b3J5L2luZGV4Lmh0bWwxIjAgBgNVBAsTGVRo YXd0ZSBTU0wxMjMgY2VydGlmaWNhdGUxGTAXBgNVBAsTEERvbWFpbiBWYWxpZGF0 ZWQxHDAaBgNVBAMUE21haWwua2ZoLWRpYWx5c2UuZGUwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQCr/auujoRYg3KDveyS73gZVQ0UO9Y+v0WxH8JsBLb3 jZMyls6eP9UvdhhbYsGkAr5Z6fHEerLy1EZFFxxddUj37huMPZsczNJS+11hd7Dj jL+6XXhm3ZLgRoKmUF7ZtkF4vzrk9BCBAUzMUQmEOFbXbYGx0CyRX5UOzDGwf/gb WS2AJ9NfaKQoSkq6h+A4eV1hjTVQcdRHLQH0l3GXy3Unoae9FCBXwlNdfazdyu95 0EqkG9bmXNkvLleR/Z8Ys7NIbxAlE1DoIA7iF9RI2bmEcraGt0XqSwRN6jaV1k0b uiBEvh34FZkCUaLlYgNb6yos1afN4E7vUr6N+UfbTonzAgMBAAGjgZ8wgZwwDAYD VR0TAQH/BAIwADA5BgNVHR8EMjAwMC6gLKAqhihodHRwOi8vY3JsLnRoYXd0ZS5j b20vVGhhd3RlU2VydmVyQ0EuY3JsMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAGGFmh0dHA6Ly9vY3NwLnRo YXd0ZS5jb20wDQYJKoZIhvcNAQEFBQADgYEAe94qTtc9jNsYTZPtZWaYt+HopmNq ZdhSruklHN6axe0uFWkL5cmlqLIMNLzBixbdXv/Q1QvLLKrEBxgilDcLNi6Zb01T 5sjKUfD+wMEwjvNJuztVpuRDwwRwvoQTOoyhV2hUimTK1qEtU/DsMFOXytnBUmhN KnHxxiO+7evjmO0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/2rro6EWINyg73sku94 GVUNFDvWPr9FsR/CbAS2942TMpbOnj/VL3YYW2LBpAK+WenxxHqy8tRGRRccXXVI 9+4bjD2bHMzSUvtdYXew44y/ul14Zt2S4EaCplBe2bZBeL865PQQgQFMzFEJhDhW 122BsdAskV+VDswxsH/4G1ktgCfTX2ikKEpKuofgOHldYY01UHHURy0B9Jdxl8t1 J6GnvRQgV8JTXX2s3crvedBKpBvW5lzZLy5Xkf2fGLOzSG8QJRNQ6CAO4hfUSNm5 hHK2hrdF6ksETeo2ldZNG7ogRL4d+BWZAlGi5WIDW+sqLNWnzeBO71K+jflH206J 8wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 127166191710146541767274529609362762651 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Western Cape' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cape Town' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte Consulting cc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Certification Services Division' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte Server CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2010-02-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-04-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'mail.kfh-dialyse.de' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go to https://www.thawte.com/repository/index.html' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL123 certificate' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'mail.kfh-dialyse.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21711839800125455700731088144212802334036899205714451825457875728804488740564020921632165936386534528234736247473887242463140249025887750941218265458502118570370251572971628065300784278356463274784151662252268754734196681278561729984253469857348065167354796459360689694403820555733232634651225510296710743367625300894652659430282247702082627065197732899831627677890042369721456763182619578563945798561348502334978317375629522301254370084983639038458250640150325334991634313702937224800921515763808688922324080154138284160132715029699274518758543956361285139637845297427347595829826857400327647491479646114416291645939 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.thawte.com/ThawteServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (1024 bits) 007bde2a4ed73d8cdb184d93ed656698b7e1e8a6636a65d852aee9251cde9ac5ed2e15690be5c9a5a8b20c34bcc18b16dd5effd0d50bcb2caac407182294370b362e996f4d53e6c8ca51f0fec0c1308ef349bb3b55a6e443c30470be84133a8ca15768548a64cad6a12d53f0ec305397cad9c152684d2a71f1c623beedebe398ed