vanharte.de
Issued by Encryption Everywhere DV TLS CA - G2
About this certificate
This digital certificate with serial number 06:c8:ba:6e:b9:b7:bc:2b:1e:03:05:87:4b:15:94:f0 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=vanharte.de
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:c8:ba:6e:b9:b7:bc:2b:1e:03:05:87:4b:15:94:f0Serial Number (int): 9017608647177465385114598946672841968
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 22:69:52:87:69:dd:26:0c:bf:85:9c:53:58:e3:9e:bd:ef:51:92:54
AuthorityKeyId: 78:df:91:90:5f:ee:de:ac:f6:c5:75:eb:d5:4c:55:53:ef:24:4a:b6
Fingerprint (sha1): e1:20:57:5d:f3:53:9e:ab:78:03:ad:3e:40:17:e9:0c:45:54:71:49
Fingerprint (sha256): a2:94:2d:94:b0:69:db:dd:0b:3c:a9:76:3a:0d:08:81:8e:20:f4:0c:12:6c:56:6f:1f:a9:a4:03:31:50:6c:36
Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCheck the revocation status for certificate vanharte.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vanharte.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vanharte.de
www.vanharte.de
www.vanharte.de
Other certificates including the domain name vanharte.de
(limited to 100 certificates)
blog.vanharte.de
vanharte.de
www.vanharte.de
blog.vanharte.de
blog.vanharte.de
vanharte.de
vanharte.de
www.vanharte.de
vanharte.de
vanharte.de
vanharte.de
blog.vanharte.de
sni.cloudflaressl.com
www.vanharte.de
www.vanharte.de
vanharte.de
vanharte.de
blog.vanharte.de
vanharte.de
vanharte.de
vanharte.de
blog.vanharte.de
vanharte.de
blog.vanharte.de
vanharte.de
vanharte.de
blog.vanharte.de
vanharte.de
www.vanharte.de
blog.vanharte.de
vanharte.de
blog.vanharte.de
blog.vanharte.de
www.vanharte.de
vanharte.de
vanharte.de
sni.cloudflaressl.com
blog.vanharte.de
www.vanharte.de
vanharte.de
www.vanharte.de
blog.vanharte.de
blog.vanharte.de
vanharte.de
vanharte.de
www.vanharte.de
vanharte.de
vanharte.de
vanharte.de
blog.vanharte.de
sni.cloudflaressl.com
www.vanharte.de
www.vanharte.de
vanharte.de
vanharte.de
blog.vanharte.de
vanharte.de
vanharte.de
vanharte.de
blog.vanharte.de
vanharte.de
blog.vanharte.de
vanharte.de
vanharte.de
blog.vanharte.de
vanharte.de
www.vanharte.de
blog.vanharte.de
vanharte.de
blog.vanharte.de
blog.vanharte.de
www.vanharte.de
vanharte.de
vanharte.de
sni.cloudflaressl.com
blog.vanharte.de
www.vanharte.de
Certificate
The complete raw certificate details for vanharte.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGADCCBOigAwIBAgIQBsi6brm3vCseAwWHSxWU8DANBgkqhkiG9w0BAQsFADBu MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg RFYgVExTIENBIC0gRzIwHhcNMjQwMjExMDAwMDAwWhcNMjQwNTExMjM1OTU5WjAW MRQwEgYDVQQDEwt2YW5oYXJ0ZS5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBANYcpZajrAJBX8cxZAhO2afSSiEbX1N/3QoAEu8di1B76BuaWLPKPIZF qjuqg8mwcYLyWunTjOm3KFjcZPhTMYk9yKE1mpemNtxME3n/fedsvVkIQ8UtojLn A7jfdOEZgB0e2vuVbNQJq+Pd9kJxv4PltKdEmyyBeoGzFNti+TGxbBsBHY2BJqpv y2NDtaB8NCvvzB3o0m4RFG+wkjPQgiPCFf/uklUhF2jmX7iPyI5QPBzu8wzrr1M5 H5COLn+tiEBS87g4q291V19ymTTI0Il1toN5P/UycincZiMMTlgzfWLQ6DPLvQw0 y0ks1wjcDDdwtcJSmL+yLoC7rCwwwxMCAwEAAaOCAvAwggLsMB8GA1UdIwQYMBaA FHjfkZBf7t6s9sV169VMVVPvJEq2MB0GA1UdDgQWBBQiaVKHad0mDL+FnFNY4569 71GSVDAnBgNVHREEIDAeggt2YW5oYXJ0ZS5kZYIPd3d3LnZhbmhhcnRlLmRlMD4G A1UdIAQ3MDUwMwYGZ4EMAQIBMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGln aWNlcnQuY29tL0NQUzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMIGABggrBgEFBQcBAQR0MHIwJAYIKwYBBQUHMAGGGGh0dHA6 Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBKBggrBgEFBQcwAoY+aHR0cDovL2NhY2VydHMu ZGlnaWNlcnQuY29tL0VuY3J5cHRpb25FdmVyeXdoZXJlRFZUTFNDQS1HMi5jcnQw DAYDVR0TAQH/BAIwADCCAX8GCisGAQQB1nkCBAIEggFvBIIBawFpAHYA7s3QZNXb Gs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGNlXmSCQAABAMARzBFAiEA/B7w oPeiV/d5mKOxpPGAnGC7+inFiRUjMvg8S51B8EUCIHTyV/QYjM5AtyQJC7ySUMcA xp/zmU05uxp7yZxfMrdcAHcA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX +6sAAAGNlXmSLQAABAMASDBGAiEAuC/Mi8zDDsUXkxK32k8xNMjWvwb8jYdpw84G 92RZY8QCIQC4gz2fuQHk69dVsWwvcZMFaxqdu0efHPfl7R/70scCOAB2AHb/iD8K tvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjZV5kvQAAAQDAEcwRQIgRzdo upzvHajG9yu5A3kq+z+DlyI0e8d136/rjyCO8aQCIQCMcoKKOEF7g7pfzgCNahIC V6hp/Ew3gviXS64D+eMPuTANBgkqhkiG9w0BAQsFAAOCAQEAqJN6rnqYrkwqvOT6 wm+5l74Pc4s4+aS7LUgsWvMK3TXf7+XUHqU2mUYl4RwQn0OqTO+Q6nOefQjaC1oV kf4n/qLZ3BCqHEbFzDmAdbs20bqGf7E6iI/miqyFNCmbbX0dByHEzIS8lxY7J8Cy F6JhC6jUcMv8NqLbzQG0CHcMzejMrv/unBxtI3FzvgaWzrFD+feHC5BmHlw+nYdk ERG2d9d5gT478sJadMq3NPZiGwUgWx7/LWtAugGLjTMuI7k9S4lDQb6kLDVkP49V boSuLihkUGBbL6JGZlr5AS9MlHSHHm4ma6GfEb4yQK5zIyy1Vj9LMpSFa8gVU8bL 6ScpFw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1hyllqOsAkFfxzFkCE7Z p9JKIRtfU3/dCgAS7x2LUHvoG5pYs8o8hkWqO6qDybBxgvJa6dOM6bcoWNxk+FMx iT3IoTWal6Y23EwTef9952y9WQhDxS2iMucDuN904RmAHR7a+5Vs1Amr4932QnG/ g+W0p0SbLIF6gbMU22L5MbFsGwEdjYEmqm/LY0O1oHw0K+/MHejSbhEUb7CSM9CC I8IV/+6SVSEXaOZfuI/IjlA8HO7zDOuvUzkfkI4uf62IQFLzuDirb3VXX3KZNMjQ iXW2g3k/9TJyKdxmIwxOWDN9YtDoM8u9DDTLSSzXCNwMN3C1wlKYv7IugLusLDDD EwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9017608647177465385114598946672841968 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-11 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vanharte.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27029123541016344099092812262258045682712861244891574613902790115128169246630034503617548203119452314681908376598295962093104064998141052808257403830796452919663311938689560616333440108961735209892312898703570530908349299156078080378777893475413773844325889646558317998459839285800192016124452078748477066538634208226793429852862001550533894693294605079022073302486533433970083484015794663780438833981752685213826702831725170333389739853363379310644308597854417468606426296875085835714448794347343475531877091328971584755722817655951586170079564732908839431218174095586803936446479667181995659170370281499792971449107 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 78df91905feedeacf6c575ebd54c5553ef244ab6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2269528769dd260cbf859c5358e39ebdef519254 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vanharte.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.vanharte.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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