klf.dpwn.com
- Deutsche Post AG -
Issued by DPWN SSL CA I2 PS
About this certificate
This digital certificate with serial number 35:d6:90:7d:00:00:00:00:10:11 was issued on by Deutsche Post World Net.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Deutsche Post AG
Organization:
Deutsche Post AG
Organization unit: IT Services
Organization unit: IT Services
State / Province:
Nordrhein-Westfalen
Locality: Bonn
Country: DE
Locality: Bonn
Country: DE
Deutsche Post World Net
Organization:
Deutsche Post World Net
Organization unit: I2 PS
Organization unit: I2 PS
This certificate has expire since
Certificate Details
Serial Number (hex): 35:d6:90:7d:00:00:00:00:10:11Serial Number (int): 254243438301778590830609
Serial Number lenght: 78 bits, 10 octets
SubjectKeyId: ff:84:c7:7a:c8:6a:cc:23:aa:45:56:dd:ba:1a:2e:30:3b:49:b2:5e
AuthorityKeyId: 18:49:c1:32:d3:a8:df:41:18:26:a1:01:83:bf:19:6a:d2:19:55:6a
Fingerprint (sha1): b1:b6:e3:55:9a:bf:89:ed:45:ad:2f:bb:87:75:0e:37:6c:8e:3b:5b
Fingerprint (sha256): ac:7b:39:8c:f6:9d:6b:cb:ab:fd:55:ec:bd:16:46:85:60:d0:7a:ea:4c:0e:6c:40:f9:b9:77:39:ee:cb:c9:e8
Issuing Certificate URL: http://keyserver.dpwn.net/pki/I2/dpwn_ssl_i2_ps.crt
Revocation information
OCSP Server: http://ocsp.dpwn.net/CRL Distribution Point: http://keyserver.dpwn.net/pki/I2/dpwn_ssl_i2_ps.crl
Check the revocation status for certificate klf.dpwn.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for klf.dpwn.com
Public Key Algorithm
RSA
Key Size
1024
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Content Commitment
Key Encipherment
Extended Key Usages
Extensions
7 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
klf-intra.dpwn.com
klf.dpwn.com
klf.dpwn.com
Other certificates including the domain name dpwn.com
(limited to 100 certificates)
prodws.deutschepost.de
csg.crest.dpwn.com
cig.dhl.de
sysm-essen01.deutschepost.dpwn.com
RETITPRD-A0001.deutschepost.dpwn.com
www.dpwn.com
csg.crest.dpwn.com
pstsr1-ppx.deutschepost.dpwn.com
*.hasci-prod-cn.azure.deutschepost.de
webmail.dhl.com
webmail.dhl.com
RETITREF-A0001.deutschepost.dpwn.com
RETITREF-A0001.deutschepost.dpwn.com
dpc-personal.dpwn.com
gmpppref-w0001.deutschepost.dpwn.com
pstsr1-gpd.deutschepost.dpwn.com
webmail.dhl.com
webmail.dhl.com
webmail.dhl.com
csg.crest.dpwn.com
cig.dhl.de
webshipping.dhl.com
webmail.dhl.com
pstsr1-gpd.deutschepost.dpwn.com
RETITPRD-A0001.deutschepost.dpwn.com
webmail.dhl.com
webmail.dhl.com
pi-appswitch.deutschepost.de
wlea-a0007.deutschepost.dpwn.com
cig.dhl.de
pidemo-appswitch.deutschepost.de
cosmo.dpwn.com
scc-prod.deutschepost.dpwn.com
hapo-esi.intra.dpwn.net
csg.crest.dpwn.com
IZE-RG-A0002.deutschepost.dpwn.com
cosmo.dpwn.com
pstsr1-ppx.deutschepost.dpwn.com
cig.dhl.de
pi-appswitch.deutschepost.de
klf.dpwn.com
web.dpwn.com
www.dpwn.com
webmail.dhl.com
klf.dpwn.com
pstsr1-ppx.deutschepost.dpwn.com
web.dpwn.com
klf.dpwn.com
webmail.dhl.com
dhl-top.dp-dhl.com
ic-app.dpwn.com
prodws.deutschepost.de
csg.crest.dpwn.com
optra.deutschepost.de
webmail.dhl.com
pstsr1-gpd.deutschepost.dpwn.com
piref-appswitch.deutschepost.de
csg.crest.dpwn.com
cig.dhl.de
sysm-essen01.deutschepost.dpwn.com
RETITPRD-A0001.deutschepost.dpwn.com
www.dpwn.com
csg.crest.dpwn.com
pstsr1-ppx.deutschepost.dpwn.com
*.hasci-prod-cn.azure.deutschepost.de
webmail.dhl.com
webmail.dhl.com
RETITREF-A0001.deutschepost.dpwn.com
RETITREF-A0001.deutschepost.dpwn.com
dpc-personal.dpwn.com
gmpppref-w0001.deutschepost.dpwn.com
pstsr1-gpd.deutschepost.dpwn.com
webmail.dhl.com
webmail.dhl.com
webmail.dhl.com
csg.crest.dpwn.com
cig.dhl.de
webshipping.dhl.com
webmail.dhl.com
pstsr1-gpd.deutschepost.dpwn.com
RETITPRD-A0001.deutschepost.dpwn.com
webmail.dhl.com
webmail.dhl.com
pi-appswitch.deutschepost.de
wlea-a0007.deutschepost.dpwn.com
cig.dhl.de
pidemo-appswitch.deutschepost.de
cosmo.dpwn.com
scc-prod.deutschepost.dpwn.com
hapo-esi.intra.dpwn.net
csg.crest.dpwn.com
IZE-RG-A0002.deutschepost.dpwn.com
cosmo.dpwn.com
pstsr1-ppx.deutschepost.dpwn.com
cig.dhl.de
pi-appswitch.deutschepost.de
klf.dpwn.com
web.dpwn.com
www.dpwn.com
webmail.dhl.com
klf.dpwn.com
pstsr1-ppx.deutschepost.dpwn.com
web.dpwn.com
klf.dpwn.com
webmail.dhl.com
dhl-top.dp-dhl.com
ic-app.dpwn.com
prodws.deutschepost.de
csg.crest.dpwn.com
optra.deutschepost.de
webmail.dhl.com
pstsr1-gpd.deutschepost.dpwn.com
piref-appswitch.deutschepost.de
Certificate
The complete raw certificate details for klf.dpwn.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEUzCCAzugAwIBAgIKNdaQfQAAAAAQETANBgkqhkiG9w0BAQUFADBOMSAwHgYD VQQKExdEZXV0c2NoZSBQb3N0IFdvcmxkIE5ldDEOMAwGA1UECxMFSTIgUFMxGjAY BgNVBAMTEURQV04gU1NMIENBIEkyIFBTMB4XDTEwMTIxNjE0NTEwMloXDTExMTIx NjE1MDEwMlowgacxCzAJBgNVBAYTAkRFMRwwGgYDVQQIExNOb3JkcmhlaW4tV2Vz dGZhbGVuMQ0wCwYDVQQHEwRCb25uMRkwFwYDVQQKExBEZXV0c2NoZSBQb3N0IEFH MRQwEgYDVQQLEwtJVCBTZXJ2aWNlczEVMBMGA1UEAxMMa2xmLmRwd24uY29tMSMw IQYJKoZIhvcNAQkBFhRlYS1uZXRvcHMtc2NAZGhsLmNvbTCBnzANBgkqhkiG9w0B AQEFAAOBjQAwgYkCgYEAw2aSPhknva43Ezh9VNfvBtHAvyYO5C/v1+F6IBiYtyUQ iC2zlRF3lo5etGwSqnNB454kBP2fSIscQ5izZRXpEVs3QlT5UFxAB7NrIcD8+Fby 2XQMexTV84HFjVzRzQxMvz+tMSxCSOe+y9t2sED5OrqLG7nnqcQjECEzysX2ZA8C AwEAAaOCAVswggFXMAsGA1UdDwQEAwIF4DArBgNVHREEJDAighJrbGYtaW50cmEu ZHB3bi5jb22CDGtsZi5kcHduLmNvbTAdBgNVHQ4EFgQU/4THeshqzCOqRVbduhou MDtJsl4wHwYDVR0jBBgwFoAUGEnBMtOo30EYJqEBg78ZatIZVWowRAYDVR0fBD0w OzA5oDegNYYzaHR0cDovL2tleXNlcnZlci5kcHduLm5ldC9wa2kvSTIvZHB3bl9z c2xfaTJfcHMuY3JsMHIGCCsGAQUFBwEBBGYwZDA/BggrBgEFBQcwAoYzaHR0cDov L2tleXNlcnZlci5kcHduLm5ldC9wa2kvSTIvZHB3bl9zc2xfaTJfcHMuY3J0MCEG CCsGAQUFBzABhhVodHRwOi8vb2NzcC5kcHduLm5ldC8wIQYJKwYBBAGCNxQCBBQe EgBXAGUAYgBTAGUAcgB2AGUAcjANBgkqhkiG9w0BAQUFAAOCAQEAET4qCX74EQ+R oN5xNfBZOF/yLPTMq6hkMLTkV9bd9oWRW9+1NljjHhhw6y6uWAfJ96AYy5+dvwX2 pVTsqeS77JEQTUukkNBKAd3Mn58p6EkbgkvBWVnr0+x8xU9P+28aDLuQpHHSACFp FWU4cV5VSorPLs94lbQnCyIsvTSavzLOuXhsCmtX3FpRug1FZubZvd/OFtbdHkmE sobW+wQ74LU0+Iky0dGp4F72VOadHM7dtndaukO4uiUXV9cRN3qwDzyFXBI7n7AW rJmUiMh2SDDwJsJZZGKg5q6LNfuXGmB3OegYDynIbrAoL2fDBZxh6PmRwitXs7G3 5ITtfU3Vqw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDDZpI+GSe9rjcTOH1U1+8G0cC/ Jg7kL+/X4XogGJi3JRCILbOVEXeWjl60bBKqc0HjniQE/Z9IixxDmLNlFekRWzdC VPlQXEAHs2shwPz4VvLZdAx7FNXzgcWNXNHNDEy/P60xLEJI577L23awQPk6uosb ueepxCMQITPKxfZkDwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 254243438301778590830609 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Deutsche Post World Net' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'I2 PS' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DPWN SSL CA I2 PS' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2010-12-16 14:51:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2011-12-16 15:01:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nordrhein-Westfalen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bonn' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Deutsche Post AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'klf.dpwn.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1120 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 137215016086338209892488417191794561309316633470511240113629821447409090693520646920335118246866194289424126219918858819519051312479506327276193605550280150940047815842827952815153399689692588300293062260642837728360698972111457273075037673066536751540468745793686233250098719077215454882046454487031452427279 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05e0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'klf-intra.dpwn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'klf.dpwn.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ff84c77ac86acc23aa4556ddba1a2e303b49b25e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1849c132d3a8df411826a10183bf196ad219556a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://keyserver.dpwn.net/pki/I2/dpwn_ssl_i2_ps.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (102 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://keyserver.dpwn.net/pki/I2/dpwn_ssl_i2_ps.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.dpwn.net/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.20.2 (enrollCerttypeExtension) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:30|false] BMPString [0 87 0 101 0 98 0 83 0 101 0 114 0 118 0 101 0 114] . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00113e2a097ef8110f91a0de7135f059385ff22cf4ccaba86430b4e457d6ddf685915bdfb53658e31e1870eb2eae5807c9f7a018cb9f9dbf05f6a554eca9e4bbec91104d4ba490d04a01ddcc9f9f29e8491b824bc15959ebd3ec7cc54f4ffb6f1a0cbb90a471d2002169156538715e554a8acf2ecf7895b4270b222cbd349abf32ceb9786c0a6b57dc5a51ba0d4566e6d9bddfce16d6dd1e4984b286d6fb043be0b534f88932d1d1a9e05ef654e69d1cceddb6775aba43b8ba251757d711377ab00f3c855c123b9fb016ac999488c8764830f026c2596462a0e6ae8b35fb971a607739e8180f29c86eb0282f67c3059c61e8f991c22b57b3b1b7e484ed7d4dd5ab