DV SSL/TLS Certificate for thomas-pause.de

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the thomas-pause.de DV SSL/TLS Certificate

This certificate with serial number 05:c3:ed:13:d1:a0:98:1f:da:f4:5e:72:14:3b:96:3e:4a:57 for thomas-pause.de was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for thomas-pause.de provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:c3:ed:13:d1:a0:98:1f:da:f4:5e:72:14:3b:96:3e:4a:57
Serial Number (int): 502231621148772764229739059782268795898455
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 5c:52:61:77:1e:4f:c7:9a:89:52:82:2a:ad:0c:77:25:9c:8f:5f:5e
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): bd:c1:96:c5:10:69:0d:14:25:ed:1a:5b:f4:24:46:91:15:96:32:92
Fingerprint (SHA-256): 15:a8:3e:b3:51:e0:b4:d6:16:22:09:46:1d:34:95:bf:00:37:10:ad:02:25:de:84:41:d6:51:4f:58:be:c4:78

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/88.crl

Check the revocation status for certificate thomas-pause.de
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for thomas-pause.de

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

thomas-pause.de

X.509 Certificate

The complete raw X.509 certificate details for thomas-pause.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0iXaR8Q38AJhww/VH5M
ZyexYLlHqc3fgZIp27L4EKyXFoxGBbijZB+5izdcZhCOYwo+y4hIadGczuxgH/7G
kCz2UsdPeCvaeo+RH2moud1Z3dfG5YtfqKeYxBevjod+SqFPik1muqhCbUycdczl
tt7tgMt88NrJlge50FEiCNND+dBGA12rEjSeQG+BcpD4G8dJTF6sI901q5TAuwav
ZEg1m4nsdfTtiHZEAbHjKh0gjqVAvsWlaSSIOVst3DJA5dRj0cfSsStkvGqvNe4x
HX64CJUZUZOK9E9ynyOiZzrJuMd4iYjAAPcZvGARV0m+7hK2XwcQykTgzMZAOU0b
2QIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 502231621148772764229739059782268795898455
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-16 19:56:51 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-14 19:56:50 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thomas-pause.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24147312425556603576569555487867222915396797919620406007702838130304029823457336081527185594141191979810443975596034372369081062303430958958233608536153721627589187606770734188883217935640123680832751088296613420228144026829447359753867982309506774544180880061097683658589877470650614830142648715192882844173552116932348352036247580269883218405638851976559210375982687727103511386434174488862728168269738332614025313982864913630818311977022668195516516226534594372030573464001207825068422238870212376899993042243292828084795584226998189012675429904767580005576767603928363097801829947115135075171905208714470487825369
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							5c5261771e4fc79a8952822aad0c77259c8f5f5e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thomas-pause.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/88.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db0000001977a8676c80000040300473045022010605e6d4498bb1fc75ffa887ab4d870f513566dca361e2a57b6777006710983022100abc44cbbca121eb2ccab70a2f7a022ebdecb814e913bfacd8e310f41fbcdaa870076000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa34000001977a867e950000040300473045022100aa5bc9f386b6c8e944246aca8df902c1df3976f4c595f2298767a01f2dab26ea02207827ace9a4e89b1d1f944bfb09450885f228d32c65738e4c41ccdc992b78e221
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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