DV SSL/TLS Certificate for *.restaurierung-krause.de

Certificate is witin its validity period

Issued by Sectigo Limited (Sectigo RSA Domain Validation Secure Server CA)

About the *.restaurierung-krause.de DV SSL/TLS Certificate

This certificate with serial number 96:a6:f5:cf:42:f5:35:72:2a:f9:b1:5b:0f:9a:66:37 for *.restaurierung-krause.de was issued on by Sectigo Limited.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for *.restaurierung-krause.de provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Sectigo Limited

Organization: Sectigo Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 96:a6:f5:cf:42:f5:35:72:2a:f9:b1:5b:0f:9a:66:37
Serial Number (int): 200251106257559147299342346774044632631
Serial Number Length: 128 bits, 16 octets

Subject Key Identifier: 35:32:52:63:7a:d1:93:68:bf:7a:d0:34:7b:34:70:85:89:58:02:0b
Authority Key Identifier: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1

Fingerprint (SHA-1): 22:3d:3b:20:28:2f:f2:42:a8:11:a5:58:83:e9:c3:16:ef:1f:d4:5b
Fingerprint (SHA-256): 98:b5:d6:2f:42:6a:53:5e:af:d9:73:bc:e6:e4:58:e2:ee:68:fc:30:6c:f4:4e:2b:ad:9c:6e:fa:12:e4:d3:07

Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt

Revocation Information

OCSP Server: http://ocsp.sectigo.com

Check the revocation status for certificate *.restaurierung-krause.de
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for *.restaurierung-krause.de

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for *.restaurierung-krause.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlQyYDpp9SV5q8mErLy5W
nIDhoBwS/daOU1UcnHTObYg3k1HROH869Em1Af6BLh498k4Y5hC1ckLoV8NXMRR4
OiZ2RbIKMA2mVFpOKhmHHwKUjpWR2unP/pXmJDMxPuMGOFGPJmdoE+TUZozCyKxl
CctBD14xgv97RCgUkjfI9iZ1yIb7AoQO5cGXd3bp9haKUo0IwCgzzRbYRm338o33
qICMg44RVvRHze5NiyZQfE2AQ1WR0w9X+vGkLr8sNRbnZjjrwoHYQOoQsj6/ukiv
HIrgHLshF7N+rPdGvWgbj9oCMkHFPIO/NRjqVLj44/YKRVZ0WyhGLqJRsf7ZT+rc
lwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 200251106257559147299342346774044632631
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-24 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2026-01-07 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.restaurierung-krause.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18815717759407641115900134831896145017432285474217112868679399473524507250336697875806667771717685538494333873878482739067225427632507114435407441504454327258013719547565776809836701424931744572810285846127869412921244907985397073869760487402374595814253397085747836746090393070344148737410687330665916083857694547539307966364317267209140576445648689334411593436185683444646333450695190984009135237087760523167854745392773530329580517918428792226112353672016688890361903253286665402936768303285588682118583837126574740721248181977036718086085841153938778307312531687898025888897758472979288366151303889952528130563223
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							353252637ad19368bf7ad0347b3470858958020b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							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
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.restaurierung-krause.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'restaurierung-krause.de'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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