gudrun-petzold.de
Issued by R3
About this certificate
This digital certificate with serial number 03:66:56:68:b0:62:42:4d:37:9b:cc:5a:18:54:04:2e:f8:38 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=gudrun-petzold.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:66:56:68:b0:62:42:4d:37:9b:cc:5a:18:54:04:2e:f8:38Serial Number (int): 296160516405216223129911348842242748905528
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d8:94:5b:e0:4c:b0:e0:e9:19:af:6a:db:f8:3e:66:05:8c:67:6e:a3
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f5:00:7a:4f:a4:15:b5:45:8b:d8:2a:b0:80:61:e6:85:2e:f4:17:09
Fingerprint (sha256): a2:82:a4:75:e0:ed:27:e1:1b:4d:6e:34:6f:bf:a9:eb:35:9b:07:11:b2:69:f8:f6:b2:98:7e:fb:98:a4:0d:19
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate gudrun-petzold.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gudrun-petzold.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gudrun-petzold.de
www.gudrun-petzold.de
www.gudrun-petzold.de
Other certificates including the domain name gudrun-petzold.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for gudrun-petzold.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGBjCCBO6gAwIBAgISA2ZWaLBiQk03m8xaGFQELvg4MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMDIwMTA1NDVaFw0yNDAzMDEwMTA1NDRaMBwxGjAYBgNVBAMT EWd1ZHJ1bi1wZXR6b2xkLmRlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKC AgEAzbN9z4cO7VA45K+ZOWyNlmjWBUOYARLBZMeVYyFm3DzhA6ZBwTwiRAv54liu tx0nFtNC6o9fWAQjJO0z3rMSGeeSpWOiE/6kqEiH8x6PdaDLxa1HrDPS+T/Cau9e imWX3UISG+LPVIeNtSvsQRcPqN0QjjWnFtJDwa7yTyIFjqnsw1Sjp5Pl1To9rlx/ pK5bnOE7cD5UYD1/SpyzMYWdisBIm/STyoBLUaNgUYJL1QLacbC55KaYUmRu/GXC gTTBQp2YcRzxJY0pSdotC9fDJIwS5P5r6BFUbNkdmVlsdo6w/4NxeV5204GVccgZ ObHa/AjubB08CpFBEz/1oR3POzmOp+iNPKiTN5C6mvP00GOxg8jetQbwjytsISjj 8PW9Eo2BREOqQqCKVad9XwT84aCblDv6D6Jor/tb0UToEh1nAqHAJgmeVXtW+VhV OsrDbg5g8dgk64R37IIBUYVjv99JipJu3c+7SQlUAQlyubu9ZSc8AziMKcsYE7vG 7MH1PDDOJ0FEPrwe4+DHLODKLUGZEANmFu4NOeHuYpraR19qCzaHvZy6aC1yz7EW 2f5Bl43P8r6m7pe767UywtnGRmcY75HnB6EbrVDKnwrestDRtkpvpQ7b8V8c8X31 yWD3S/ExXoK6ejjtoD9ehfqIog4k2vE9hL2T4PV0WNSFRCECAwEAAaOCAiowggIm MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw DAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU2JRb4Eyw4OkZr2rb+D5mBYxnbqMwHwYD VR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEG CCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0 dHA6Ly9yMy5pLmxlbmNyLm9yZy8wMwYDVR0RBCwwKoIRZ3VkcnVuLXBldHpvbGQu ZGWCFXd3dy5ndWRydW4tcGV0em9sZC5kZTATBgNVHSAEDDAKMAgGBmeBDAECATCC AQQGCisGAQQB1nkCBAIEgfUEgfIA8AB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0s gdm7v6s52IRzAAABjChGTRgAAAQDAEYwRAIgZ+6v8CHt7njVsQpgd1n3xiIOaVC0 11rVbk0aqp5+D6oCIDQEPhWmL9Zfi2PTk6uLuxIzLbv48F0VbIkUwEFouySiAHcA O1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGMKEZNKgAABAMASDBG AiEApIYqJ5th/5CNa+Oz+ICBoGnBomEd6aKOuoAgwLRrYWwCIQDpmdNDRxkNgvHY i/kUybV254RzKjZvQ3E1qVB2mfqM5jANBgkqhkiG9w0BAQsFAAOCAQEAFElTj0Ei HQ0XgpdpBs3a+6680pxVa8Kt9ptYriY0F8u1GXIzKSjlA34eAJTDxbavs12LMc4x coKIuU8Z27y4OHbOs0qdamo5SGcjRgQUkGHeHRi1GQ9w/DNXvkL4K5lVvWY8WxKg K/UGitJsAjgJLIKzdrny9vtxBHop6QVQPMBGe849E6rDy2nJ6a5mrY+dcg+GVroN GJplMXheXwbSWnY7X97jBSEGoBdpYU47/DltVdeDwUxrgzQIETY7v5IU3fZLIU7h 1d5kpdRWsg8cXzLVsvzK1UPaWITGGw1mPXf3HXjqCkM3hXy7iQozsSYTvtJwRElk yep3mQWYnWSmtw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzbN9z4cO7VA45K+ZOWyN lmjWBUOYARLBZMeVYyFm3DzhA6ZBwTwiRAv54liutx0nFtNC6o9fWAQjJO0z3rMS GeeSpWOiE/6kqEiH8x6PdaDLxa1HrDPS+T/Cau9eimWX3UISG+LPVIeNtSvsQRcP qN0QjjWnFtJDwa7yTyIFjqnsw1Sjp5Pl1To9rlx/pK5bnOE7cD5UYD1/SpyzMYWd isBIm/STyoBLUaNgUYJL1QLacbC55KaYUmRu/GXCgTTBQp2YcRzxJY0pSdotC9fD JIwS5P5r6BFUbNkdmVlsdo6w/4NxeV5204GVccgZObHa/AjubB08CpFBEz/1oR3P OzmOp+iNPKiTN5C6mvP00GOxg8jetQbwjytsISjj8PW9Eo2BREOqQqCKVad9XwT8 4aCblDv6D6Jor/tb0UToEh1nAqHAJgmeVXtW+VhVOsrDbg5g8dgk64R37IIBUYVj v99JipJu3c+7SQlUAQlyubu9ZSc8AziMKcsYE7vG7MH1PDDOJ0FEPrwe4+DHLODK LUGZEANmFu4NOeHuYpraR19qCzaHvZy6aC1yz7EW2f5Bl43P8r6m7pe767UywtnG RmcY75HnB6EbrVDKnwrestDRtkpvpQ7b8V8c8X31yWD3S/ExXoK6ejjtoD9ehfqI og4k2vE9hL2T4PV0WNSFRCECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 296160516405216223129911348842242748905528 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-02 01:05:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-01 01:05:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gudrun-petzold.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 839187429336942040191282237331283232859300887433514108098926317674725543608666646080537045422095719512658301540637361332943441578047296190553618452679037887411772359894855292937642013275378220166953968117602000302069478759662789840554116794957154637590751661449088914035325263310214487510444404520534704551626250040702378633018506833144269788548867796157726444109050035820091329608550974936573941998731517108591815755211855416873952229502416501700436968209431768488123134061078296745137582918013253858766511417327364425850039349200810283238541418977204460763749509046827595173180338368531050832058155472622706262068900265768928217526767159917096831004156823242983559037699435085347027490693208517685682386994474570772497276964050696141912071083388650844452439951867146216948435981680941243904304515921677160229120739836145112800071286532433627446849624555242731869080356195279437224480714235694095274889233181795847669764586074226558076295622769941794199073475281185370098987163132161068962789026066745130728596197560841731530295080788160286980695087617086974350470225218989692957815922484211184189008679272910658516998112126511845984422625045110593588628115376968581310402656545725370986511829456656974382020696224937452267496621089 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d8945be04cb0e0e919af6adbf83e66058c676ea3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gudrun-petzold.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gudrun-petzold.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c28464d180000040300463044022067eeaff021edee78d5b10a607759f7c6220e6950b4d75ad56e4d1aaa9e7e0faa022034043e15a62fd65f8b63d393ab8bbb12332dbbf8f05d156c8914c04168bb24a20077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c28464d2a0000040300483046022100a4862a279b61ff908d6be3b3f88081a069c1a2611de9a28eba8020c0b46b616c022100e999d34347190d82f1d88bf914c9b576e784732a366f437135a9507699fa8ce6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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