orencia.de
Issued by R3
About this certificate
This digital certificate with serial number 04:f8:b8:60:53:ea:87:db:e3:36:a4:c7:aa:49:06:17:20:86 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=orencia.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:f8:b8:60:53:ea:87:db:e3:36:a4:c7:aa:49:06:17:20:86Serial Number (int): 433084248837178002824971206890089577128070
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 51:47:ec:6a:b9:ed:69:d9:96:6e:c4:b5:8b:42:c0:7e:56:fb:8c:e0
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 24:26:77:af:8b:f1:c8:a3:81:c8:72:8c:68:f2:a2:ad:b7:ee:e9:e4
Fingerprint (sha256): aa:f9:e2:16:07:07:ac:5c:ec:14:8e:fb:29:ed:bf:09:33:22:27:c2:1a:df:f4:97:00:bc:63:43:a2:de:c0:25
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate orencia.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for orencia.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
orencia.de
Other certificates including the domain name orencia.de
(limited to 100 certificates)
www.orencia.de
www.orencia.de
www.orencia.de
www.orencia.de
orencia.de
orencia.de
www.orencia.de
www.orencia.de
www.orencia.de
www.orencia.de
www.orencia.de
orencia.de
www.orencia.de
www.orencia.de
bms.com
www.orencia.de
www.orencia.de
www.orencia.de
orencia.de
www.orencia.de
orencia.de
www.orencia.de
orencia.de
www.orencia.de
www.orencia.de
www.orencia.de
orencia.de
orencia.de
www.orencia.de
www.orencia.de
www.orencia.de
www.orencia.de
www.orencia.de
orencia.de
www.orencia.de
www.orencia.de
bms.com
www.orencia.de
www.orencia.de
www.orencia.de
orencia.de
www.orencia.de
orencia.de
www.orencia.de
orencia.de
Certificate
The complete raw certificate details for orencia.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGGTCCBQGgAwIBAgISBPi4YFPqh9vjNqTHqkkGFyCGMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA1MTMwNDM5NDVaFw0yMzA4MTEwNDM5NDRaMBUxEzARBgNVBAMT Cm9yZW5jaWEuZGUwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC2dAPp iDcJOOMZKQfr91lRnQcXNSlX7hAcQrJEFVE+FaZ9g9EQqBP7MStuD/P7g78nUfb3 zwGrt5rd2AdD54GYQPoIlRGi5UIhLdStvxFd5QRg0tvzZJCr4eXSsD4lVmnVsDVg 6eo2z8G0aIum/KbOY0Aw1i9EXZy6zpQVE8V6GvoCvg4B2hJzy9Tn3MNcBw+pZ9OO zjnk9xVfxPwLy3UiZMRjzk7qojodFTs1tjkw5phoQLfvm4EcDYlaqrKL/s52bfWU iwgM0EMgdwGt6wmfDnHDLD/q17dDI1ZQiDwYGZ35d/wWlVDIkc9e9pjuFPUrjwlY QE4Np266dhpK1fcPv+RzE3IYCjuk0wIqVLaaGdw57e2EfYbRt/R155UHgipo/ZSD EndN3s+4Z6+3BeUdvJYdd+EP3IS2LgFZHdrkjppYjirVAUf993DoMeLeTqYES7Ym xglErYOnXtgRUYQPdNB9kNtrJnxYFuXmYDA85KKsTmmj7lTJXcNH4xOZwdZcxded yfSfcNaHcaKydcDD7KOpQl6vAM+Vah6NQdD8IjdYOeZcYQJUAxqMpsvmfzeIeGgu V/qrheymd5YbrPU1EB7ANGcXXyH+L5uSd9A8dhMPY6+oRm+f8B1R48YmrykBqKb1 RpiGudHMo66duhOdM6ZbjuTpO8iRzX8bjMskiQIDAQABo4ICRDCCAkAwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBRRR+xque1p2ZZuxLWLQsB+VvuM4DAfBgNVHSMEGDAW gBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUH MAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3Iz LmkubGVuY3Iub3JnLzAVBgNVHREEDjAMggpvcmVuY2lhLmRlMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAtz77 JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGIE59HgwAABAMARzBFAiEA h8GAYrOgA58kK4PH2e5GzyeJ/EMU1P2eUkGsS89zhd4CIFEuxp2iNhgRdRS1r9is tZDbhgatHrJ9RzbUf9AWm2emAHUAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6 V6NS61IAAAGIE59JqAAABAMARjBEAiBcXIN4L87wHkfGdAhiy2UBK3AbSY5bGRBY dYsp+cS3VwIgfvY9Nhrr7yi4ZiSGW2fj0ZKsP0DAWcvU0ele800hiIQwDQYJKoZI hvcNAQELBQADggEBAEZbB4s2VHgy7B5fTX0FReVeMwp0zxszVLllprCsT+U3ZfuI dWQRYqKeDO/xw7W3Du7lVRoFMO7bjgjjpno9U2PEedgRBFBGhmKA8WolIbie0Bmx pWsU1qeHmrogbr92XMPTpaM5/QwI/IRGo91DM/eXMF/R3ESQUb/OUqvXNIODEOan F+m1huu8yxax3x4hp7Y/GXEuSFRC3ENiulyz4qqPWKTDojpstGBZJ1am+N2NXQUo KJWgUuQn+YuD0abm0fM+C+YUj0nW/90dk12jKrpIPqRlKGMrpFYvKzYsaLPAdYbt hU7XZMG1xeNKl46JkQM3z7prsBxEtp+9rAvW3IQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtnQD6Yg3CTjjGSkH6/dZ UZ0HFzUpV+4QHEKyRBVRPhWmfYPREKgT+zErbg/z+4O/J1H2988Bq7ea3dgHQ+eB mED6CJURouVCIS3Urb8RXeUEYNLb82SQq+Hl0rA+JVZp1bA1YOnqNs/BtGiLpvym zmNAMNYvRF2cus6UFRPFehr6Ar4OAdoSc8vU59zDXAcPqWfTjs455PcVX8T8C8t1 ImTEY85O6qI6HRU7NbY5MOaYaEC375uBHA2JWqqyi/7Odm31lIsIDNBDIHcBresJ nw5xwyw/6te3QyNWUIg8GBmd+Xf8FpVQyJHPXvaY7hT1K48JWEBODaduunYaStX3 D7/kcxNyGAo7pNMCKlS2mhncOe3thH2G0bf0deeVB4IqaP2UgxJ3Td7PuGevtwXl HbyWHXfhD9yEti4BWR3a5I6aWI4q1QFH/fdw6DHi3k6mBEu2JsYJRK2Dp17YEVGE D3TQfZDbayZ8WBbl5mAwPOSirE5po+5UyV3DR+MTmcHWXMXXncn0n3DWh3GisnXA w+yjqUJerwDPlWoejUHQ/CI3WDnmXGECVAMajKbL5n83iHhoLlf6q4XspneWG6z1 NRAewDRnF18h/i+bknfQPHYTD2OvqEZvn/AdUePGJq8pAaim9UaYhrnRzKOunboT nTOmW47k6TvIkc1/G4zLJIkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 433084248837178002824971206890089577128070 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-13 04:39:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-11 04:39:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'orencia.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 744344052636271953564889319576850383461703821804003639258427975137865848374096228197886817338482975256027291210714144695860588310915966049843368723008816432733035924020876995098448340681023901229734197763261415422559466896290920610157899825776024166668984596517570254036523721491180045093503505064322574114889588652416120010952715283185936497920601870738040131838658486989922343816007640418506025654200818086630087038227879769301505977091541620337045452330384428573340291157342710207624542559610744165331470642227375815238239100148067492226780064134409580565440860764179592885294639592898483912816279750696905313226863420220827180780408659278480783744709370214457527346860243794205447781501233966063616634414081830574892040374732591290469151470636873304758905250324625477038584995046141577563669297030912933837817229323940631001648306088066068618515309462795589046432794539409654416853250105009855264902114612228817031184546607668203068692071403856574347476961206061187712775696370408842733273592241787500604852102840667588986656222432205003377300948308379137238298306244514572378829482722137714310236121737100000058258142541796310070739582960755838524155372472824526963121384583694317826070910272754788949772458342847974390274663561 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5147ec6ab9ed69d9966ec4b58b42c07e56fb8ce0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'orencia.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000188139f4783000004030047304502210087c18062b3a0039f242b83c7d9ee46cf2789fc4314d4fd9e5241ac4bcf7385de0220512ec69da23618117514b5afd8acb590db8606ad1eb27d4736d47fd0169b67a60075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000188139f49a8000004030046304402205c5c83782fcef01e47c6740862cb65012b701b498e5b191058758b29f9c4b75702207ef63d361aebef28b86624865b67e3d192ac3f40c059cbd4d1e95ef34d218884 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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