www.licht-traumkunst.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:77:16:9d:c5:a7:44:73:29:fd:a6:d3:19:da:77:0c:ce:c3 was issued on by Let's Encrypt.
With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.licht-traumkunst.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:77:16:9d:c5:a7:44:73:29:fd:a6:d3:19:da:77:0c:ce:c3Serial Number (int): 301860521674273454473849237906547421269699
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 37:0d:ba:f2:69:fe:b4:6b:bb:1f:08:4d:6b:e5:a7:f7:34:86:1f:47
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 6e:c3:21:9c:78:97:e8:97:33:30:56:c7:63:2a:40:f6:37:ad:f5:85
Fingerprint (sha256): aa:30:2d:1e:a9:7b:8a:df:1c:c7:32:9a:e1:da:5c:e3:60:47:69:d6:ea:08:e2:48:48:21:cb:26:f2:6d:7b:22
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.licht-traumkunst.de
10
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.licht-traumkunst.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gluecks-steine.ch
licht-traumkunst.de
thalis-seelenkunst.de
thalis-soulart.com
www.gluecks-steine.ch
www.licht-traumkunst.de
www.thalis-seelenkunst.de
www.thalis-soulart.com
www.xn--kunst-trume-s8a.de
xn--kunst-trume-s8a.de
licht-traumkunst.de
thalis-seelenkunst.de
thalis-soulart.com
www.gluecks-steine.ch
www.licht-traumkunst.de
www.thalis-seelenkunst.de
www.thalis-soulart.com
www.xn--kunst-trume-s8a.de
xn--kunst-trume-s8a.de
Other certificates including the domain name licht-traumkunst.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.licht-traumkunst.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5TCCBM2gAwIBAgISA3cWncWnRHMp/abTGdp3DM7DMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzA4MDkxNzMxMDBaFw0x NzExMDcxNzMxMDBaMCIxIDAeBgNVBAMTF3d3dy5saWNodC10cmF1bWt1bnN0LmRl MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu4nRq5ayE62m6x/eZLoF S6z7ZgxKGc+crPSHybHSJ52TaTmomJePhg6uEkIs69Jrh+AtoAE9mJzXsVGlUkrm 4vO193Y1VMtsf15Q5ZEacJbCxSH9YsCFLTBKKFapZ/9yvcvUhxS3d9LgNV7EXv4P 436h2Ll5f/237VkBKdSTL6BBgtgQlC4siZ4MiZlH33mtqQTjZMFYvwoWMRjQz/52 XFVAmPoGeWfJIZlWCepmbNsrNT8G65eP4roCOJGF5dtvGPHowz1IvvLqjcmrPhTm kYyuYv98o9kAkXplWQkuY3dQDN4Tmy/LW9hzuT3D84Zi2sOnZbL5r2hKQBD79h7y 9QIDAQABo4IC6zCCAucwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ3Dbryaf60a7sf CE1r5af3NIYfRzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggr BgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRz ZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRz ZW5jcnlwdC5vcmcvMIH1BgNVHREEge0wgeqCEWdsdWVja3Mtc3RlaW5lLmNoghNs aWNodC10cmF1bWt1bnN0LmRlghV0aGFsaXMtc2VlbGVua3Vuc3QuZGWCEnRoYWxp cy1zb3VsYXJ0LmNvbYIVd3d3LmdsdWVja3Mtc3RlaW5lLmNoghd3d3cubGljaHQt dHJhdW1rdW5zdC5kZYIZd3d3LnRoYWxpcy1zZWVsZW5rdW5zdC5kZYIWd3d3LnRo YWxpcy1zb3VsYXJ0LmNvbYIad3d3LnhuLS1rdW5zdC10cnVtZS1zOGEuZGWCFnhu LS1rdW5zdC10cnVtZS1zOGEuZGUwgf4GA1UdIASB9jCB8zAIBgZngQwBAgEwgeYG CysGAQQBgt8TAQEBMIHWMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNy eXB0Lm9yZzCBqwYIKwYBBQUHAgIwgZ4MgZtUaGlzIENlcnRpZmljYXRlIG1heSBv bmx5IGJlIHJlbGllZCB1cG9uIGJ5IFJlbHlpbmcgUGFydGllcyBhbmQgb25seSBp biBhY2NvcmRhbmNlIHdpdGggdGhlIENlcnRpZmljYXRlIFBvbGljeSBmb3VuZCBh dCBodHRwczovL2xldHNlbmNyeXB0Lm9yZy9yZXBvc2l0b3J5LzANBgkqhkiG9w0B AQsFAAOCAQEAbfSFjEAXnNvkd+IeHxmtAl23I+C1l1vWDfE1WN/WzY9SRMog9Ydq hLrTumAp3VFA85Jc9B+Agk5aJ8xzWpPzxuuLmmzpMXkfYoWAp9Da2jJHYxiRNEnG BQof+d6T6ugJ7kFW0Z+TY8RKbcqUTntqq7HyAskiy8UEyKlQ9LxV2hxrPUFMYI5i 9J/8f8PY+B4n9TZyZ28KqbZJB5mBbAmhNRjtDWfnq3LHnhh2ws3m+/M1d3gnNYHf 6nt1m8yIYdFLPoGNaH5KynAPyU1bCIb/19aLmuzW2042TCHCw7aNfm+dOUPScdKV aLZZwDuFrS+Gzk/yEbzEWghXXmKjpqdiwA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu4nRq5ayE62m6x/eZLoF S6z7ZgxKGc+crPSHybHSJ52TaTmomJePhg6uEkIs69Jrh+AtoAE9mJzXsVGlUkrm 4vO193Y1VMtsf15Q5ZEacJbCxSH9YsCFLTBKKFapZ/9yvcvUhxS3d9LgNV7EXv4P 436h2Ll5f/237VkBKdSTL6BBgtgQlC4siZ4MiZlH33mtqQTjZMFYvwoWMRjQz/52 XFVAmPoGeWfJIZlWCepmbNsrNT8G65eP4roCOJGF5dtvGPHowz1IvvLqjcmrPhTm kYyuYv98o9kAkXplWQkuY3dQDN4Tmy/LW9hzuT3D84Zi2sOnZbL5r2hKQBD79h7y 9QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 301860521674273454473849237906547421269699 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-09 17:31:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-07 17:31:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.licht-traumkunst.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23674524122571217282101473686383609615906791500261579079539850248545671617566576878573670162688991931290698348345148343807162988038681724429842658236037383944765681696169370455916769217372913799999505050279726619526463569022058409472885698006329710009612257402322612051909908602902311888105983651017548187315387565916326526776210806313681031312849730841864887803820785904525752706502721259523017767789117684225193970873989057580704583899953929753893587187143422401662517243109080852424162155953861798525645276578043000035606066611284269357452660205553600217683415983810003506983350807919725324401648229868556586513141 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 370dbaf269feb46bbb1f084d6be5a7f734861f47 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (237 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gluecks-steine.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'licht-traumkunst.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thalis-seelenkunst.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thalis-soulart.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gluecks-steine.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.licht-traumkunst.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thalis-seelenkunst.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thalis-soulart.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.xn--kunst-trume-s8a.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xn--kunst-trume-s8a.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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