*.xn--khn-transport-wob.de
Issued by Encryption Everywhere DV TLS CA - G1
About this certificate
This digital certificate with serial number 0b:7a:ec:9b:75:14:c8:4d:0e:4b:62:3f:c2:7b:89:47 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.xn--khn-transport-wob.de
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:7a:ec:9b:75:14:c8:4d:0e:4b:62:3f:c2:7b:89:47Serial Number (int): 15259767135641845638030534960605792583
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 98:38:2d:db:62:81:e2:5b:17:99:fd:39:67:bf:24:ec:f6:f8:41:ab
AuthorityKeyId: 55:74:4f:b2:72:4f:f5:60:ba:50:d1:d7:e6:51:5c:9a:01:87:1a:d7
Fingerprint (sha1): ab:0a:2d:6a:30:a7:1f:30:a9:43:32:67:b6:fa:18:f0:6f:aa:0d:20
Fingerprint (sha256): ab:33:12:cc:83:35:36:cc:cb:42:97:b7:21:a2:64:49:d4:9b:63:17:ff:93:4e:28:77:49:59:f4:c7:d0:21:19
Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCheck the revocation status for certificate *.xn--khn-transport-wob.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.xn--khn-transport-wob.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.xn--khn-transport-wob.de
xn--khn-transport-wob.de
xn--khn-transport-wob.de
Other certificates including the domain name xn--khn-transport-wob.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for *.xn--khn-transport-wob.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFtzCCBJ+gAwIBAgIQC3rsm3UUyE0OS2I/wnuJRzANBgkqhkiG9w0BAQsFADBu MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg RFYgVExTIENBIC0gRzEwHhcNMTkwNDI1MDAwMDAwWhcNMjAwNDI0MTIwMDAwWjAl MSMwIQYDVQQDDBoqLnhuLS1raG4tdHJhbnNwb3J0LXdvYi5kZTCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAIP982uWE9D/pay8XEztEZtYmSGCEjiazw+a VGoKtKzKK5szxeevZOfGteJJF2rrr/hHkPu3xRFoAcrg9f6RA5mUWD1TYZbf0XHx oibwtbebwqPXthyxnyxMLOU7gnESCFrVlI2dfOLBfGDBdLMF+ZFPxusBLTbQ2h4T BwpJverr5r+S0UOanO5UdkoaBC45kXnK+fT3HD4eDP7kVmEz+mwKeMXUDvEd1wWu atKS2KoGs8vB2AAUwQQf/GWQUBn+hdVmuH+JkKT114ypOf7Y1g3h/uLTaf8WjsFH EJ1AZPTK7eEFsFUHjvVAf2MVLi90KluT0hXzxbsQ2FMV/G7bm+ECAwEAAaOCApgw ggKUMB8GA1UdIwQYMBaAFFV0T7JyT/VgulDR1+ZRXJoBhxrXMB0GA1UdDgQWBBSY OC3bYoHiWxeZ/TlnvyTs9vhBqzA/BgNVHREEODA2ghoqLnhuLS1raG4tdHJhbnNw b3J0LXdvYi5kZYIYeG4tLWtobi10cmFuc3BvcnQtd29iLmRlMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwTAYDVR0gBEUwQzA3 BglghkgBhv1sAQIwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQu Y29tL0NQUzAIBgZngQwBAgEwgYAGCCsGAQUFBwEBBHQwcjAkBggrBgEFBQcwAYYY aHR0cDovL29jc3AuZGlnaWNlcnQuY29tMEoGCCsGAQUFBzAChj5odHRwOi8vY2Fj ZXJ0cy5kaWdpY2VydC5jb20vRW5jcnlwdGlvbkV2ZXJ5d2hlcmVEVlRMU0NBLUcx LmNydDAJBgNVHRMEAjAAMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYA7ku9t3XO YLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo/csAAAFqUolSIwAABAMARzBFAiEAzNrR FBTRa2R84YpEed834kZoIri3rx8VfkiT0hFP7K4CIDfZN5bq/UXElisFXra3dfgc HWXRVNSt6iYNZQoFjQJXAHYAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFx RVgAAAFqUolRygAABAMARzBFAiBMRbHLuciYFrtHvzj0KNnvdd2IfqzUZVupxDZH Q1rVWwIhAIO3jvna5j2MD0Vwn1wTFbu1yCHhAqUaIMNAd6VDQSqqMA0GCSqGSIb3 DQEBCwUAA4IBAQCy+11jSnvFEH/roUL47fX4XEjqiyncrpPch/nVPyj9lRXQ08N8 IESkzqNM34LiHGGNbPx01TmFD7yWoKnt97VNsrvUqNHvRxAR4JfHij7fhzbRXE+a wjoLUXLlO+AGUvBRLlCrXlu4QbOE/1J2ogk8ubb+jPaEf/vrUTRv99y9BIvIEXJk vNnJiJsOKQeCMAcU/0scQAf22Mo4d2gAXamXM239IQ7s0JZrzZsALR/Mil1ifsk6 2xeV4dEjoHk3H08bJkj5ZoUJFL76AP1dBvVcc+iMqI/u0cug8sybRNrSZDHGchh2 aarmrf65A+tV6lGhOb6kAJBHWbq0GLfQb2oW -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg/3za5YT0P+lrLxcTO0R m1iZIYISOJrPD5pUagq0rMormzPF569k58a14kkXauuv+EeQ+7fFEWgByuD1/pED mZRYPVNhlt/RcfGiJvC1t5vCo9e2HLGfLEws5TuCcRIIWtWUjZ184sF8YMF0swX5 kU/G6wEtNtDaHhMHCkm96uvmv5LRQ5qc7lR2ShoELjmRecr59PccPh4M/uRWYTP6 bAp4xdQO8R3XBa5q0pLYqgazy8HYABTBBB/8ZZBQGf6F1Wa4f4mQpPXXjKk5/tjW DeH+4tNp/xaOwUcQnUBk9Mrt4QWwVQeO9UB/YxUuL3QqW5PSFfPFuxDYUxX8btub 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15259767135641845638030534960605792583 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-25 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-24 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.xn--khn-transport-wob.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16662445787115273484637524003369975084349761306091992702445898308449748540426995204648873230515445097784222878304255202777770647555471651403424145334738936982971406102835860172535735696757526470070189183153266041331448148554988509892696245351546588913846424908349023945241100428657262697968785617993911551096983259741217563376116644489113096032405378585996714151995155719725742473022949525638424012517048834483406459109003936980594658327826705008459292597276859554079660437761512513125146126972392269198026213562808916146199479177870209796905656174456835333632511159715990402160331163227756668471830144155617211423713 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55744fb2724ff560ba50d1d7e6515c9a01871ad7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 98382ddb6281e25b1799fd3967bf24ecf6f841ab . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.xn--khn-transport-wob.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xn--khn-transport-wob.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb0000016a528952230000040300473045022100ccdad11414d16b647ce18a4479df37e2466822b8b7af1f157e4893d2114fecae022037d93796eafd45c4962b055eb6b775f81c1d65d154d4adea260d650a058d02570076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016a528951ca000004030047304502204c45b1cbb9c89816bb47bf38f428d9ef75dd887eacd4655ba9c43647435ad55b02210083b78ef9dae63d8c0f45709f5c1315bbb5c821e102a51a20c34077a543412aaa . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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