newbouncer.steinberg.de

- Steinberg Media Technologies GmbH -

Issued by StartCom Class 3 OV Server CA

About this certificate

This digital certificate with serial number 29:dc:d5:03:f0:3f:3e:24:a7:ec:a4:3d:71:3c:f7:46 was issued on by StartCom Ltd..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Steinberg Media Technologies GmbH

Organization: Steinberg Media Technologies GmbH
State / Province: Hamburg
Locality: Hamburg
Country: DE

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: StartCom Certification Authority
Country: IL

This certificate has expire since

Certificate Details

Serial Number (hex): 29:dc:d5:03:f0:3f:3e:24:a7:ec:a4:3d:71:3c:f7:46
Serial Number (int): 55644973601342136362589601795216832326
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId: 60:a9:5c:ff:22:bd:4f:b1:cf:a5:be:4d:b9:d3:25:ea:d2:ea:99:36
AuthorityKeyId:

Fingerprint (sha1): 9c:19:bf:b8:50:06:18:fa:3a:42:87:2b:5f:56:e4:1c:5f:f6:7d:3a
Fingerprint (sha256): a8:be:92:10:8b:04:13:26:df:81:e6:af:42:ff:64:71:4f:fe:0f:8f:97:4f:9f:c8:c3:cb:0c:08:b3:d0:66:47

Issuing Certificate URL: http://aia.startssl.com/certs/sca.server3.crt

Revocation information

OCSP Server: http://ocsp.startssl.com
CRL Distribution Point: http://crl.startssl.com/sca-server3.crl

Check the revocation status for certificate newbouncer.steinberg.de

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for newbouncer.steinberg.de

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Client Authentication
Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

newbouncer.steinberg.de

Other certificates including the domain name steinberg.de

(limited to 100 certificates)
helpcenter.steinberg.de
traveler.steinberg.de
newbouncer.steinberg.de
www.steinberg.net
helpcenter.steinberg.de
traveler.steinberg.de
www.steinberg.de
*.steinberg.de
mailgw.steinberg.de
webmail.steinberg.de
helpcenter.steinberg.de
helpcenter.steinberg.de
helpcenter.steinberg.de
webmail.steinberg.de
*.steinberg.de
helpcenter.steinberg.de
testrail.steinberg.de
www.steinberg.de
insektarium.steinberg.de
www.steinberg.de
helpcenter.steinberg.de
helpcenter.steinberg.de
helpcenter.steinberg.de
helpcenter.steinberg.de
www.steinberg.net
*.steinberg.de
helpcenter.steinberg.de
www.steinberg.net
helpcenter.steinberg.de
helpdesk.steinberg.de
helpdesk.steinberg.de
*.steinberg.de
videoconf.steinberg.de
confluence.steinberg.de
testrail.steinberg.de
webmail.steinberg.de
*.steinberg.de
helpcenter.steinberg.de
www.steinberg.net
melitta.steinberg.de
*.steinberg.de
helpcenter.steinberg.de
confluence.steinberg.de
sts.steinberg.de
srv-ftp2.steinberg.de
newbouncer.steinberg.de
insektarium.steinberg.de
confluence.steinberg.de
*.steinberg.de
helpcenter.steinberg.de
sts.steinberg.de
newbouncer.steinberg.de
helpcenter.steinberg.de
easypeasy.steinberg.de
*.steinberg.de
helpcenter.steinberg.de
helpcenter.steinberg.de
webcon.steinberg.de
*.steinberg.de
webmail.steinberg.de
helpcenter.steinberg.de
helpcenter.steinberg.de
helpcenter.steinberg.de
helpcenter.steinberg.de
helpcenter.steinberg.de
*.steinberg.de
memoq.steinberg.de
*.steinberg.de
ensicaen.steinberg.de

Certificate

The complete raw certificate details for newbouncer.steinberg.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA5GNkfRC4T+f0/SbFwhEk
f6GH4BJXUUeG6cpLDn5D4djVPlT4/3KRk+zGI9ovq3FpdOLL0jydvgfO73Aocjmm
ct8IZzQ0gVmsxnH/a56qA4aC/zFpaLiaDsbzogABuetcm9TJYYnAH3XGN2GgOJqO
jxgdtt7ZrQPmQDcVzEbRM+BY4dw51g7s1lFHIbLjutTbxi1qABXH+8ZUGYDY80s8
2SZyWD69ykKrLMoZya5Cfh9o+VxAt3/6PjNGhOFUctZvo3GMneLVMrOGGTsDE9P4
MFKgtoHyBdovg8cyzEfSrcsdIxu+5T9EdqmmTaMfhBA+YLoLSvee4UYRiD4n3Dco
3HFhMfLcqGZLWZa9Me2abvwsjiJ1ATq2BAM6+56VhYcms4dEHrmfuPtYGUKHV1L4
TzeStvxBpov5CrzM7IdaLWMhoTUqr5za3AqcctRhvCqH2ySLymTlIF28U+fpsO1X
Ah5eiti4S/vFbAHhj8fECYcWRBmSVjDnqH40UkjJS8iN7JXRihtpdRCU0hi5Fe7t
vPwQCgoy24hZZA+aDU8Lq4/jEamxf96yyTY43y8Odg5MNfhqKMa2ajNoLYCY1mCH
pH85pB+/3rr8J6L//c04LaL/BUC+mx9xpyNPLzEFPADJ2OAHOzeh0WRrnLeboM7k
wRnos8+BS3iXn8OZAJpjH0sCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 55644973601342136362589601795216832326
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Ltd.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Certification Authority'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Class 3 OV Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-07-20 12:51:50 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-20 12:51:50 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Hamburg'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Hamburg'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Steinberg Media Technologies GmbH'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'newbouncer.steinberg.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 931742777817445678060198254361975666394357186107628736667944685549268678744024444332128471307424117843240481593795836204682326884411483638102794207270490775245473412702822638358051774291595213404103307629783201961741681573239291286405726764251185428326096254284681839777774151915893059946281586615127489851859148843142241551740984518330364961146929105674185014666632144833116527812268534925169401557794865809329681535687392224863344293346575511733739064496585375118318586416476555527024440093076735972673062045166807651062927892747765340090764060032557309513284439506127697833891646470484924375491139091875137282494686222040629384564995174006348733709956916444369507224837302707090910118470105506910346647213946743427987624057641656558758387571207541827114848058042098607066175860928292382300350233629503003557852240262040496913261859126929003428364476948147909740920842313359093123047714218764901813135416325066021085624818824118755229127906901583176449825631312901235476168745498561572345854831475641563621494376305298588626891061277398603390827153846323581110674255249528741095577943237568703765043777590011602913233728481878237889829523342213302386154834022541204415452817181272230158185477657935698073409217637138093654663176011
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							60a95cff22bd4fb1cfa5be4db9d325ead2ea9936
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.startssl.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.startssl.com/certs/sca.server3.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.startssl.com/sca-server3.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'newbouncer.steinberg.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.18 (issuerAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.startssl.com/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.23223.1.2.5
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.startssl.com/policy'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000770068f698f81f6482be3a8ceeb9281d4cfc71515d6793d444d10a67acbb4f4ffbc4000001560871b07600000403004830460221009a9fec64d7a84236b73b8a4644dda8541f8d332d8e12acfc06859a8c98e2afc702210089a8288e29c173ddebbfda57b95e5ad17dd46ec7b18254e548143a7bf933d9ba007500a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc10000001560871afcd0000040300463044022072b02229188fdb1249daa3183ae4a6360035504ea39c2aff9a64ada23e10c80e02200b8a08fc0c0d7dd9b69044f5e661e91ee271109c7ca5765e71e3381da30114c5
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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