pommernland-jarmen.de
Issued by R3
About this certificate
This digital certificate with serial number 04:43:d2:8d:4a:50:8a:1e:fc:de:9e:84:aa:d0:18:1f:d8:0e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=pommernland-jarmen.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:43:d2:8d:4a:50:8a:1e:fc:de:9e:84:aa:d0:18:1f:d8:0eSerial Number (int): 371527933810995059447184764738519550646286
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 7d:cd:f1:6f:3f:32:b4:80:ba:22:a2:e6:44:63:06:76:2f:e4:35:73
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): fa:1a:80:5f:58:fa:40:63:90:40:22:d3:87:1e:b1:ea:d2:5c:c3:e1
Fingerprint (sha256): b8:84:09:e8:5a:8f:c0:ee:ab:6c:f1:35:d1:84:ef:f2:c3:fe:76:68:7e:ff:15:38:5b:29:b3:2e:de:25:f2:c7
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate pommernland-jarmen.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pommernland-jarmen.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pommernland-jarmen.de
Other certificates including the domain name pommernland-jarmen.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for pommernland-jarmen.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE+DCCA+CgAwIBAgISBEPSjUpQih783p6EqtAYH9gOMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMTUxNDAzMjNaFw0yNDA0MTQxNDAzMjJaMCAxHjAcBgNVBAMT FXBvbW1lcm5sYW5kLWphcm1lbi5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAOF1YFnGX0E2c5FCWcP6Lk0DiBJZ+YsgdjzS0FHqg6FSwjnqCwF09Hgt gl3oRWKKMmgf/RyUuFmDFVGqgaaspHu7px/lYPokMm3Lj86zm2K3zvIWddmhVKBw jeEQAmoWqUeokYJRstiKJPRbQJbpE9FbtBvgSCfOfnyU8tNy2+08ibcGeKqlEtIS +ERtz2wcbYrnSNX5N1I3z6aZAeahSLj+hqLt6tycTarEutK7QgNM8xW7tCfXtBAL mO0ZXqQU8Zg5tst21bcv+VDPqu6aFcvdRXPTTZ+rpGmU/ZV8sEHTrFFZOcgp5Paz W0PAYcTXgMBDuGkTcLuC990M0WE0q38CAwEAAaOCAhgwggIUMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIw ADAdBgNVHQ4EFgQUfc3xbz8ytIC6IqLmRGMGdi/kNXMwHwYDVR0jBBgwFoAUFC6z F7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVo dHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxl bmNyLm9yZy8wIAYDVR0RBBkwF4IVcG9tbWVybmxhbmQtamFybWVuLmRlMBMGA1Ud IAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcASLDja9qm RzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGNDaYSpQAABAMASDBGAiEAsxnO fxKAnUI22yn5UEPypheoxFrbd5mf01+aw/u4TAICIQCRfiFmj9+UNzUVRsg/+P1W 9M5hhf86GHgQJapNRVSAegB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdM Wjp0AAABjQ2mE4AAAAQDAEcwRQIgc9B9WmeF3NYQRtVZKyqdDThW01Y+Xg1bqArw YyADbqUCIQCvPkdKSBeGPUeyLUoC5i7n7jQ+S7Vdgzubt396Qg5UWzANBgkqhkiG 9w0BAQsFAAOCAQEAp4Sp+/ubO/CHZLQDPLpvDciZ7b/cguX6rY3sZycHQWi94bzV Bit9NGs0oDZ1F2ULV37ttZhwgYDodZK6YV6X+uuSjwJQNwcVh2OAqMRvPV2mDtcS h6bXfpkd7Fzq45p7eHThKb9lsALUx2FQRiEyV97/JTGGNXpwL/Iow8SWClbyYbRC a3EElPieEihM8gO+uO6GSneU56LOaR3ACmAdO88XhrVfwbZODtfC1xUfc7i9lUZ6 YgS068Wl3SngesMXTU86grPkME+qh5FPg/snD4Y0wy0TMyGWQvKSZJVIPQ3GPqbw mlsD1Npc3cvadEpfJIk4NbVmhoZae1CdXB+/zQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4XVgWcZfQTZzkUJZw/ou TQOIEln5iyB2PNLQUeqDoVLCOeoLAXT0eC2CXehFYooyaB/9HJS4WYMVUaqBpqyk e7unH+Vg+iQybcuPzrObYrfO8hZ12aFUoHCN4RACahapR6iRglGy2Iok9FtAlukT 0Vu0G+BIJ85+fJTy03Lb7TyJtwZ4qqUS0hL4RG3PbBxtiudI1fk3UjfPppkB5qFI uP6Gou3q3JxNqsS60rtCA0zzFbu0J9e0EAuY7RlepBTxmDm2y3bVty/5UM+q7poV y91Fc9NNn6ukaZT9lXywQdOsUVk5yCnk9rNbQ8BhxNeAwEO4aRNwu4L33QzRYTSr fwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 371527933810995059447184764738519550646286 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-15 14:03:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-14 14:03:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pommernland-jarmen.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28461499062572980356891165560277882144038260771257836560112664127094671596820490623482380156303400330750308880391696325479789036724125232557038928574219832702487597105921187298747534215505149044080876315888156283457018662609689828496370939822478089216800971728328592461151693136694081183210095355695781205120350300763046429503704063507278455317667962483060196630607704328143326849576360440520345899399415080312643396671610695419255673720576447579800212239107549119853710905452997381677626817758149553321249636530834490969712101506517270341308845565568552981468718110279759063916747943644716962916922193238795130022783 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7dcdf16f3f32b480ba22a2e6446306762fe43573 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pommernland-jarmen.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d0da612a50000040300483046022100b319ce7f12809d4236db29f95043f2a617a8c45adb77999fd35f9ac3fbb84c02022100917e21668fdf9437351546c83ff8fd56f4ce6185ff3a18781025aa4d4554807a00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018d0da613800000040300473045022073d07d5a6785dcd61046d5592b2a9d0d3856d3563e5e0d5ba80af06320036ea5022100af3e474a4817863d47b22d4a02e62ee7ee343e4bb55d833b9bb77f7a420e545b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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