tiershop.de
Issued by Encryption Everywhere DV TLS CA - G2
About this certificate
This digital certificate with serial number 07:6e:6a:cc:f3:46:43:16:9d:7a:48:53:a6:56:58:be was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=tiershop.de
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 07:6e:6a:cc:f3:46:43:16:9d:7a:48:53:a6:56:58:beSerial Number (int): 9877914798186181146144870875193039038
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 0a:ed:1c:c7:13:87:46:08:75:e9:bc:e0:34:b1:5c:0b:a2:76:82:cf
AuthorityKeyId: 78:df:91:90:5f:ee:de:ac:f6:c5:75:eb:d5:4c:55:53:ef:24:4a:b6
Fingerprint (sha1): cb:af:58:48:5b:60:7f:1e:39:48:2f:c5:d2:e2:1a:14:ee:6d:08:72
Fingerprint (sha256): a9:df:b0:4f:9c:35:74:c2:63:8d:62:6b:c5:c6:50:ad:fb:c2:93:4c:ff:f3:0d:76:ea:22:fd:e1:ca:99:2d:08
Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCheck the revocation status for certificate tiershop.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tiershop.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tiershop.de
www.tiershop.de
www.tiershop.de
Other certificates including the domain name tiershop.de
(limited to 100 certificates)
tiershop.de
tiershop.de
tiershop.de
tiershop.de
blog.tiershop.de
blog.tiershop.de
tiershop.de
blog.tiershop.de
dev.tiershop.de
tiershop.de
tiershop.de
www.tiershop.de
tiershop.de
dev.tiershop.de
www.tiershop.de
tiershop.de
dev2.tiershop.de
blog.tiershop.de
tiershop.de
www.tiershop.de
tiershop.de
tiershop.de
update.tiershop.de
dev.tiershop.de
tiershop.de
tiershop.de
tiershop.de
tiershop.de
blog.tiershop.de
tiershop.de
blog.tiershop.de
tiershop.de
dev.tiershop.de
tiershop.de
www.tiershop.de
tiershop.de
tiershop.de
tiershop.de
blog.tiershop.de
dev.tiershop.de
tiershop.de
dev.tiershop.de
tiershop.de
blog.tiershop.de
tiershop.de
tiershop.de
blog.tiershop.de
tiershop.de
blog.tiershop.de
tiershop.de
blog.tiershop.de
tiershop.de
dev.tiershop.de
tiershop.de
blog.tiershop.de
tiershop.de
blog.tiershop.de
tiershop.de
tiershop.de
blog.tiershop.de
blog.tiershop.de
tiershop.de
dev.tiershop.de
tiershop.de
tiershop.de
tiershop.de
blog.tiershop.de
blog.tiershop.de
tiershop.de
blog.tiershop.de
dev.tiershop.de
tiershop.de
tiershop.de
www.tiershop.de
tiershop.de
dev.tiershop.de
www.tiershop.de
tiershop.de
dev2.tiershop.de
blog.tiershop.de
tiershop.de
www.tiershop.de
tiershop.de
tiershop.de
update.tiershop.de
dev.tiershop.de
tiershop.de
tiershop.de
tiershop.de
tiershop.de
blog.tiershop.de
tiershop.de
blog.tiershop.de
tiershop.de
dev.tiershop.de
tiershop.de
www.tiershop.de
tiershop.de
tiershop.de
tiershop.de
blog.tiershop.de
dev.tiershop.de
tiershop.de
dev.tiershop.de
tiershop.de
blog.tiershop.de
tiershop.de
tiershop.de
blog.tiershop.de
tiershop.de
blog.tiershop.de
tiershop.de
blog.tiershop.de
tiershop.de
dev.tiershop.de
tiershop.de
blog.tiershop.de
tiershop.de
blog.tiershop.de
tiershop.de
tiershop.de
blog.tiershop.de
blog.tiershop.de
tiershop.de
dev.tiershop.de
Certificate
The complete raw certificate details for tiershop.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/zCCBOegAwIBAgIQB25qzPNGQxadekhTplZYvjANBgkqhkiG9w0BAQsFADBu MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg RFYgVExTIENBIC0gRzIwHhcNMjMxMTA3MDAwMDAwWhcNMjQxMTA2MjM1OTU5WjAW MRQwEgYDVQQDEwt0aWVyc2hvcC5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAML//eCm/xY+s0WY3oWF489rWzFaD/rdnS7QAylJ0OnlvSCcY+ezNWdq f+obCTSF0BbUhDsjtapR6RYmetiBqV87rIib/OZIlB53KdA06/xpwHSVhV056GSn G81QgrfvEVhZqmSE1HsY9EOLRQc/zrRJzve4j/jHnRSsc1aCW8v+IR3EhBXSkBl5 TtZJ3z5elJiGWLrAWMMCylsevKLo5gknqB116OAGOENqqzSyuHU1EHKVTiyzvxfZ YHMRgbH+03UeUbhwIvy7pUACQ0nUd5Behl7Ti1ABdpawFR7vYSOmfht+RIXDdIIf AVOPKNhsPuG8kwG8b9r7ed81c029aLsCAwEAAaOCAu8wggLrMB8GA1UdIwQYMBaA FHjfkZBf7t6s9sV169VMVVPvJEq2MB0GA1UdDgQWBBQK7RzHE4dGCHXpvOA0sVwL onaCzzAnBgNVHREEIDAeggt0aWVyc2hvcC5kZYIPd3d3LnRpZXJzaG9wLmRlMD4G A1UdIAQ3MDUwMwYGZ4EMAQIBMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGln aWNlcnQuY29tL0NQUzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMIGABggrBgEFBQcBAQR0MHIwJAYIKwYBBQUHMAGGGGh0dHA6 Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBKBggrBgEFBQcwAoY+aHR0cDovL2NhY2VydHMu ZGlnaWNlcnQuY29tL0VuY3J5cHRpb25FdmVyeXdoZXJlRFZUTFNDQS1HMi5jcnQw DAYDVR0TAQH/BAIwADCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHYA7s3QZNXb Gs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGLqx8AaAAABAMARzBFAiEAyjDX 4W+l/FzOgRkLccdPp/v6ImvSVdqJTINoNMUHODoCIDRj2MVZYhHNbPcWEltcGPm5 JaB78PqYerbKeueEjTGaAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznY hHMAAAGLqx8AXgAABAMARzBFAiEA0Hrv0xb2qM8MUFwtgyTpW+KdjyvahPJAWD0O 49KfFwgCIDkgk+R35LT7QRRcDnW7bJ8Oj5Vvlw1mofKKLAwp33hfAHYAPxdLT9ci R1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGLqx8AjgAABAMARzBFAiEAui0L YJfp+rPF5d+PCU/JeMsoMs/FRc56AAVOAzyrsPoCIACuGlcT59riPo3o2fnMDw+4 mqtOCDKUw+cAp9N1V+WoMA0GCSqGSIb3DQEBCwUAA4IBAQAsXufUGaVAmOfn1GFO 0z6x/iMfsUoFf7F9HGOjxUkjsiJ/9B7SeksxGbJVJJHPzitRqJNTSvpUX1opTuQ9 gwBXhIRXwNEmB6C63aS2KkIGtX2+L6Z1YrxQhi31HqZIzjRDfCpAnmyeh35OGNlN nyi5ZQvckbJfaZCm8pOcQyA0m3qW7Klg3yayFRBmquL3E3MJ6SHY16r4qNEovbVL Ys7aZCNLHAN+MNnhingy99jnLADaEUDxmVAtP5ZeZKqCX+GKnmRlBsh0LB20toJu izU7q2fpUACSXvUYDhDAVhU6BAzLmo8R4zJWEfDjPiE0dGCiNCNQwkCAinXxDgUy VAvn -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwv/94Kb/Fj6zRZjehYXj z2tbMVoP+t2dLtADKUnQ6eW9IJxj57M1Z2p/6hsJNIXQFtSEOyO1qlHpFiZ62IGp XzusiJv85kiUHncp0DTr/GnAdJWFXTnoZKcbzVCCt+8RWFmqZITUexj0Q4tFBz/O tEnO97iP+MedFKxzVoJby/4hHcSEFdKQGXlO1knfPl6UmIZYusBYwwLKWx68oujm CSeoHXXo4AY4Q2qrNLK4dTUQcpVOLLO/F9lgcxGBsf7TdR5RuHAi/LulQAJDSdR3 kF6GXtOLUAF2lrAVHu9hI6Z+G35EhcN0gh8BU48o2Gw+4byTAbxv2vt53zVzTb1o uwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9877914798186181146144870875193039038 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-06 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tiershop.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24616465380022022299452866271166967730601545850910535462945363133502773769950791306378463813683609165652466150655206365682978793949759464915046907036966734920651652869850593793747517907648284375586620188583883074338405775379482791842030811284889221090243178568119343637532698803180122105038190358659448392785750875126750407432226048310338981791476413260772380836228699665220815553938728785472527538011973863268646440145392486651190100755425242264459207717008973262693924270155022580311410675702893106343468764069648889356871594946290725200922513314164989990987994834057882285195195787066409104365927178566319866734779 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 78df91905feedeacf6c575ebd54c5553ef244ab6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0aed1cc71387460875e9bce034b15c0ba27682cf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tiershop.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tiershop.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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