*.bridge-app.de
Issued by R3
About this certificate
This digital certificate with serial number 04:8c:6f:7d:d4:c6:38:16:5c:d0:b4:77:f5:2a:72:b6:ea:4b was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.bridge-app.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:8c:6f:7d:d4:c6:38:16:5c:d0:b4:77:f5:2a:72:b6:ea:4bSerial Number (int): 396236872756187184333918070835690538986059
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: d9:13:39:49:c5:83:a3:51:ed:6d:a0:7f:71:e5:d6:36:67:c0:5a:fd
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 8f:49:02:ff:b6:64:f9:f6:65:76:d8:ca:ff:fe:31:77:65:d7:d4:70
Fingerprint (sha256): a8:7f:30:64:20:0b:80:a5:d5:cb:df:ea:cd:44:f8:79:a4:79:df:3c:c5:82:8e:c7:80:8d:13:33:d5:f0:5b:1b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate *.bridge-app.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.bridge-app.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.bridge-app.de
bridge-app.de
bridge-app.de
Other certificates including the domain name bridge-app.de
(limited to 100 certificates)
offr.be
myriad.at
resquash.com
firebase.beatscratch.io
inbox.rest
www.esthetys.nl
www.ujjaintourist.in
www.ujjaintourist.in
www.aitopcoder.com
*.bridge-app.de
rong.pedidomovil.es
www.dashboard.bridge-app.de
*.bridge-app.de
www.kick-off.app
online-password-generator.in
an2cabs.com
christianbackous.com
eval.mikk36.eu
www.greavestravel.com
resquash.com
northglennthorntonsentinel.column.us
jcpm.captive.vagalumewifi.com.br
www.personalinvest.by
shopq-staging.qsciences.com
proguru.net
messenger.stable.codes
www.apnax.net
games.over-x.tech
adm.sebasiland.com
bindalgallery.co.in
www.cottonready.com
www.sreenachimarchits.in
maridafit.com.br
www.gisua.com
www.swishy.tk
pathfinder.nextit.be
www.99active.net
downtheladder.net
www.99active.net
kinnectedhealth.ca
atalayahills.porcelanosapartners.com
emina.love
www.dreamswopper.com
*.bridge-app.de
herbitussin.pl
link.libry.jp
*.bridge-app.de
mirate.com.mx
bindalgallery.co.in
www.rockwellresearch.co
ufincs.com
www.ikidsart.co.kr
steinfeld.co
www.inntech.pe
lerchdrums.com
christianbackous.com
admin.auction.holmasto.fi
*.bridge-app.de
musicminer.co.in
www.apsorteio.com
www.pranjal-choudhary.com
vurvey.dev
admin.netmenu.com.br
dymockstutoring.snapmentor.no
mirate.com.mx
www.foht.co.ke
www.seeu.me
app.thepollnation.com
staging-admin.lckr.io
pearpartner.com
jawantechpk.com
app.mobilizenow.io
www.riingo.com
myriad.at
resquash.com
firebase.beatscratch.io
inbox.rest
www.esthetys.nl
www.ujjaintourist.in
www.ujjaintourist.in
www.aitopcoder.com
*.bridge-app.de
rong.pedidomovil.es
www.dashboard.bridge-app.de
*.bridge-app.de
www.kick-off.app
online-password-generator.in
an2cabs.com
christianbackous.com
eval.mikk36.eu
www.greavestravel.com
resquash.com
northglennthorntonsentinel.column.us
jcpm.captive.vagalumewifi.com.br
www.personalinvest.by
shopq-staging.qsciences.com
proguru.net
messenger.stable.codes
www.apnax.net
games.over-x.tech
adm.sebasiland.com
bindalgallery.co.in
www.cottonready.com
www.sreenachimarchits.in
maridafit.com.br
www.gisua.com
www.swishy.tk
pathfinder.nextit.be
www.99active.net
downtheladder.net
www.99active.net
kinnectedhealth.ca
atalayahills.porcelanosapartners.com
emina.love
www.dreamswopper.com
*.bridge-app.de
herbitussin.pl
link.libry.jp
*.bridge-app.de
mirate.com.mx
bindalgallery.co.in
www.rockwellresearch.co
ufincs.com
www.ikidsart.co.kr
steinfeld.co
www.inntech.pe
lerchdrums.com
christianbackous.com
admin.auction.holmasto.fi
*.bridge-app.de
musicminer.co.in
www.apsorteio.com
www.pranjal-choudhary.com
vurvey.dev
admin.netmenu.com.br
dymockstutoring.snapmentor.no
mirate.com.mx
www.foht.co.ke
www.seeu.me
app.thepollnation.com
staging-admin.lckr.io
pearpartner.com
jawantechpk.com
app.mobilizenow.io
www.riingo.com
Certificate
The complete raw certificate details for *.bridge-app.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgISBIxvfdTGOBZc0LR39SpytupLMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MjUxNzIwMzdaFw0yMzEyMjQxNzIwMzZaMBoxGDAWBgNVBAMM DyouYnJpZGdlLWFwcC5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB APEbzn8Wa5xZf+JY04eUqaU/FJV8iRnqt+ZJu4qNqtVcRWoZCJPYlloZY/bE6eG4 DnfKZ7W3LtKdj6bP1vuhOuKeRFTeGmw5H7cKBLp/p9ODawYnS0yAv3e1Zl6FiHSL CDV+NtH3mGjSdNKL2AL2P3IXggeGOZX/nUdrUnc8acjViIKymS+BpB5bd55cMlmh MVKurKlzmfQEkrthkhZ45Txo2R62lCKL/fDZXfrtrC3f8AQUzXmeVJmYpI2nPt7f 4X3R6m+ulInGx7I+HRPHhkhx9/z3mddCejCwVn04++JOFscOCSroX2GzHXaD5+uE ORXoaQPAQE2yvMENI0sC6gkCAwEAAaOCAiAwggIcMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQU2RM5ScWDo1HtbaB/ceXWNmfAWv0wHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wKQYDVR0RBCIwIIIPKi5icmlkZ2UtYXBwLmRlgg1icmlkZ2UtYXBwLmRlMBMG A1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAejKM VNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGKzZJkZQAABAMARzBFAiAl bZr6hufRU2j6qLrQeulJyndb2WHN4aog1JwAfFgXXQIhAM2ZNZI0SMl1LmFq9L4p Cs+Goh90vPD5rK01T3aqIHZaAHYA6D7Q2j71BjUy51covIlryQPTy9ERa+zraeF3 fW0GvW4AAAGKzZJkUwAABAMARzBFAiALR8DQnw592d4tpB9IlgA697lzYoVHvtqI dTRwkk2fQwIhAPlEfs5HPMM3V1vH/x5Edbn7sdI7tCXx9clDCgR1ohVCMA0GCSqG SIb3DQEBCwUAA4IBAQA3flu7Jc9XPjnzC2dY5ouWUpWFtG0WfpLYsB31r8THPlpr iFrrNKSljd4Qij4jF8ba4K+Zac241/g/EtECgYTkhxT4vJnbvRJ6aTTZRiGdD1Oz SHGBtLWfo5pZMciSU9PyU+Ului/TMVvrzzwVTm20cP/w5vnPh39H41iYWjD+GPZ/ RbTWKEXMof+EkT1cJbuhiqImrNkktbhtct1YWVWH0n3T/YsomASAlAX+y2Ew9zJW DF356bNLoqyhTc/tbww22p57CeUdkRaC/KEnoQYMU8l0y1Y7F1lrZVI7390Yea7y h84CmkQWCm79IMXrU9dF9ifBI4lKkn/dBtsetUQ2 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8RvOfxZrnFl/4ljTh5Sp pT8UlXyJGeq35km7io2q1VxFahkIk9iWWhlj9sTp4bgOd8pntbcu0p2Pps/W+6E6 4p5EVN4abDkftwoEun+n04NrBidLTIC/d7VmXoWIdIsINX420feYaNJ00ovYAvY/ cheCB4Y5lf+dR2tSdzxpyNWIgrKZL4GkHlt3nlwyWaExUq6sqXOZ9ASSu2GSFnjl PGjZHraUIov98Nld+u2sLd/wBBTNeZ5UmZikjac+3t/hfdHqb66UicbHsj4dE8eG SHH3/PeZ10J6MLBWfTj74k4Wxw4JKuhfYbMddoPn64Q5FehpA8BATbK8wQ0jSwLq CQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 396236872756187184333918070835690538986059 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-25 17:20:37 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-24 17:20:36 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.bridge-app.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30437143455498862941557425454814980439890226826118284462502412306830499111690322628892179787264970182498030926405640287483861771459868881738484035770198940189768286970258680777089140508641021914100408832971413999251031621692003364664761788105365628973807434919052012213170684552744773042167801343605070289674650500128049366605310159989087386059398166496327814559925589091128826336523569425379566878569957767264591301142490170311281637534952646330382855158268743673603782628404734323614855691990714203730277463910565539485504292263792003324411980764822927406074037763823801735934873655706958662156755122779319282362889 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d9133949c583a351ed6da07f71e5d63667c05afd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bridge-app.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bridge-app.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018acd92646500000403004730450220256d9afa86e7d15368faa8bad07ae949ca775bd961cde1aa20d49c007c58175d022100cd9935923448c9752e616af4be290acf86a21f74bcf0f9acad354f76aa20765a007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018acd926453000004030047304502200b47c0d09f0e7dd9de2da41f4896003af7b973628547beda88753470924d9f43022100f9447ece473cc337575bc7ff1e4475b9fbb1d23bb425f1f5c9430a0475a21542 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00377e5bbb25cf573e39f30b6758e68b96529585b46d167e92d8b01df5afc4c73e5a6b885aeb34a4a58dde108a3e2317c6dae0af9969cdb8d7f83f12d1028184e48714f8bc99dbbd127a6934d946219d0f53b3487181b4b59fa39a5931c89253d3f253e525ba2fd3315bebcf3c154e6db470fff0e6f9cf877f47e358985a30fe18f67f45b4d62845cca1ff84913d5c25bba18aa226acd924b5b86d72dd58595587d27dd3fd8b289804809405fecb6130f732560c5df9e9b34ba2aca14dcfed6f0c36da9e7b09e51d911682fca127a1060c53c974cb563b17596b65523bdfdd1879aef287ce029a44160a6efd20c5eb53d745f627c123894a927fdd06db1eb54436