th74.de
Issued by R3
About this certificate
This digital certificate with serial number 04:e0:13:ef:d8:fd:c4:79:ad:e8:26:fa:8a:ed:f0:65:e2:55 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=th74.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:e0:13:ef:d8:fd:c4:79:ad:e8:26:fa:8a:ed:f0:65:e2:55Serial Number (int): 424698894609306311295750602056609233756757
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 88:8e:db:49:45:08:8b:7a:91:42:69:c7:0f:eb:7d:75:7b:f8:53:1e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c1:6d:27:01:96:42:d2:46:b0:56:1e:b1:5d:df:59:1f:b7:e1:7d:54
Fingerprint (sha256): b3:6d:b3:d6:a8:0a:6f:58:1b:67:7f:7f:54:9e:f6:6d:3b:6a:03:6f:56:12:34:d3:98:1c:94:36:c0:79:de:88
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate th74.de
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for th74.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
th74.de
webmail.th74.de
www.th74.de
webmail.th74.de
www.th74.de
Other certificates including the domain name th74.de
(limited to 100 certificates)
th74.de
cloud.p-schwarz.de
cloud.p-schwarz.de
th74.de
cloud.th74.de
th74.de
cloud.p-schwarz.de
cloud.p-schwarz.de
th74.de
th74.de
cloud.p-schwarz.de
cloud.p-schwarz.de
th74.de
cloud.p-schwarz.de
th74.de
th74.de
cloud.p-schwarz.de
th74.de
th74.de
th74.de
cloud.th74.de
cloud.th74.de
th74.de
th74.de
cloud.p-schwarz.de
th74.de
th74.de
cloud.th74.de
cloud.p-schwarz.de
th74.de
cloud.p-schwarz.de
cloud.p-schwarz.de
th74.de
cloud.p-schwarz.de
th74.de
cloud.p-schwarz.de
th74.de
th74.de
cloud.th74.de
cloud.p-schwarz.de
th74.de
th74.de
th74.de
cloud.p-schwarz.de
th74.de
th74.de
th74.de
cloud.p-schwarz.de
cloud.p-schwarz.de
cloud.p-schwarz.de
cloud.th74.de
cloud.p-schwarz.de
th74.de
cloud.p-schwarz.de
cloud.p-schwarz.de
th74.de
cloud.p-schwarz.de
th74.de
th74.de
cloud.p-schwarz.de
cloud.p-schwarz.de
th74.de
cloud.th74.de
th74.de
cloud.p-schwarz.de
cloud.p-schwarz.de
th74.de
th74.de
cloud.p-schwarz.de
cloud.p-schwarz.de
th74.de
cloud.p-schwarz.de
th74.de
th74.de
cloud.p-schwarz.de
th74.de
th74.de
th74.de
cloud.th74.de
cloud.th74.de
th74.de
th74.de
cloud.p-schwarz.de
th74.de
th74.de
cloud.th74.de
cloud.p-schwarz.de
th74.de
cloud.p-schwarz.de
cloud.p-schwarz.de
th74.de
cloud.p-schwarz.de
th74.de
cloud.p-schwarz.de
th74.de
th74.de
cloud.th74.de
cloud.p-schwarz.de
th74.de
th74.de
th74.de
cloud.p-schwarz.de
th74.de
th74.de
th74.de
cloud.p-schwarz.de
cloud.p-schwarz.de
cloud.p-schwarz.de
cloud.th74.de
cloud.p-schwarz.de
th74.de
cloud.p-schwarz.de
cloud.p-schwarz.de
th74.de
cloud.p-schwarz.de
th74.de
th74.de
Certificate
The complete raw certificate details for th74.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE+zCCA+OgAwIBAgISBOAT79j9xHmt6Cb6iu3wZeJVMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMTkwNTM4MjNaFw0yNDA0MTgwNTM4MjJaMBIxEDAOBgNVBAMT B3RoNzQuZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM8Xv9Oha0 pw6q+JrlSWeyJy2gZx7OmQV29b9f1MATz+aMpUjAmtr/yeS607Adl88UkpS7L4+l tDlk6iDa7ifaw4eZ4sMPfkzqy3BsXw4OtoGNmTrBi/aHEj1gBW4SZNIeuMwzHBbj H7GRH+0ZYxJqS5v8yVhF1cTXVD0rdtDZhgMZ8H5EfCva6xz6Vhffmhg6t8iL/9p9 XxGR076+1pMLFjUuafqNIMgNYQBf0XCyBqZcKASPjeOB9h28XTbChklxHCda8zKK U4cPwEBk2hHABHiZAeklyOfQo5UQrjInm7+TjkxPQtvBV8XjSadaMBGI1SBV1XCH hNIE5rllLTZPAgMBAAGjggIpMIICJTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIiO 20lFCIt6kUJpxw/rfXV7+FMeMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52L FMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVu Y3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMDAGA1Ud EQQpMCeCB3RoNzQuZGWCD3dlYm1haWwudGg3NC5kZYILd3d3LnRoNzQuZGUwEwYD VR0gBAwwCjAIBgZngQwBAgEwggEGBgorBgEEAdZ5AgQCBIH3BIH0APIAdwCi4r/W Ht4vLweg1k5tN6fcZUOwxrUuotq3iviabfUX2AAAAY0gcSiiAAAEAwBIMEYCIQCK c9VnrHH17/zy8PPpODDsMJBuqrc3ge2p0HB71KLeGAIhALHHbiC837Re7qpkuAmr 3nlb8NTDSEIFZOEojRhqr2mcAHcAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/m Z0xaOnQAAAGNIHEpDAAABAMASDBGAiEA/MNDA0Etm766Su7CN0l1IEJmNOLZ2Fmf iRH2+pSqW7oCIQCJb5Dx8HoO8a96qnyyzOHe6UeCwHLed5O8CDqNZmMEFzANBgkq hkiG9w0BAQsFAAOCAQEArJk7IFNiD3eXuFb8pHEiDHlD88TAjUS8e3kNToZh7HfH 4VAwlIVgPPoHs8ZeFuGs39ZQbvmCBq4geW+LqLOLvQ1KVouPXSNvwgeV6lmjASDk 68Td0lkmygSDm5AhMC5qZEOn5h0vaBWJvW0YF7OjXtoWifGtWF7j9fH1UPZSClgN YvCcX66xG1MU0S4VFeIKLuUErouCTYB2ugZVf+bCCSasFhSmKDAg4xMUdQmkRpIX IpQ4bkR2gRSg4rVUYVhrHUbTPY8bm/CciNjoSNgVpYbXV6TPkHjZN9xlPS8r+xj3 GyI3tRumjouiB+t89C1JJwSHRbxZWEZiU38Plg/dqg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzPF7/ToWtKcOqvia5Uln sictoGcezpkFdvW/X9TAE8/mjKVIwJra/8nkutOwHZfPFJKUuy+PpbQ5ZOog2u4n 2sOHmeLDD35M6stwbF8ODraBjZk6wYv2hxI9YAVuEmTSHrjMMxwW4x+xkR/tGWMS akub/MlYRdXE11Q9K3bQ2YYDGfB+RHwr2usc+lYX35oYOrfIi//afV8RkdO+vtaT CxY1Lmn6jSDIDWEAX9FwsgamXCgEj43jgfYdvF02woZJcRwnWvMyilOHD8BAZNoR wAR4mQHpJcjn0KOVEK4yJ5u/k45MT0LbwVfF40mnWjARiNUgVdVwh4TSBOa5ZS02 TwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 424698894609306311295750602056609233756757 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-19 05:38:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-18 05:38:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'th74.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25871694575709314453168052833852745845798599255549433219956972258801976895518222590935498465042632300644061604103546620370892234888889995722965775436907889328066153860845655849491368308352919009560044278678570361704192921638972765856689405407561058524496710139052420453389892161178919580037114818678653737950097807407578986841223497225451036509920565648388402658065643640718720805374486605997491424111901843265144757128642755348833673932112753376630758784528329216642195783572802169529077156389807669835515901633228445446455550578213050207321630678999821607984161034725802347864051366891760011145175926034013694539343 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 888edb4945088b7a914269c70feb7d757bf8531e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (41 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'th74.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.th74.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.th74.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d207128a200000403004830460221008a73d567ac71f5effcf2f0f3e93830ec30906eaab73781eda9d0707bd4a2de18022100b1c76e20bcdfb45eeeaa64b809abde795bf0d4c348420564e1288d186aaf699c00770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018d2071290c0000040300483046022100fcc34303412d9bbeba4aeec237497520426634e2d9d8599f8911f6fa94aa5bba022100896f90f1f07a0ef1af7aaa7cb2cce1dee94782c072de7793bc083a8d66630417 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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