heikowild.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:92:a4:d7:b1:83:d7:9c:0b:ae:76:77:1f:52:3f:90:a4:43 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=heikowild.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:92:a4:d7:b1:83:d7:9c:0b:ae:76:77:1f:52:3f:90:a4:43Serial Number (int): 311237196701303183857038793049026098930755
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 34:d4:bc:cb:11:03:50:cf:d5:91:bd:e3:84:a2:9d:2c:0a:9c:aa:1d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 08:e2:e1:88:60:5b:cb:a6:53:16:05:48:96:b8:35:34:d0:00:41:f6
Fingerprint (sha256): b9:9f:6a:30:d8:7d:ff:7e:68:1e:bf:11:fb:0f:86:e3:60:dc:e2:5e:77:31:8b:cf:ab:48:6e:71:b0:21:67:92
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate heikowild.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for heikowild.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
heikowild.de
www.heikowild.de
www.heikowild.de
Other certificates including the domain name heikowild.de
(limited to 100 certificates)
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
webmail.heikowild.de
heikowild.de
cpcalendars.heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
cpcalendars.heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
webmail.heikowild.de
heikowild.de
cpcalendars.heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
heikowild.de
cpcalendars.heikowild.de
heikowild.de
heikowild.de
Certificate
The complete raw certificate details for heikowild.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGDTCCBPWgAwIBAgISA5Kk17GD15wLrnZ3H1I/kKRDMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzEyMjEwOTQyNDhaFw0x ODAzMjEwOTQyNDhaMBcxFTATBgNVBAMTDGhlaWtvd2lsZC5kZTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAOa4MY3e41VLrOJbJ+/Kn58g3yqYzLgI4VZI yBtoUPSFE2bQ3ZQHEJp6rTQfe4SHi+UdChfxs9HOznbJkIzg79RBIv1Diup8BiFh oiQy5Lpm9kiS6IEAcjIXUyamqpsSq4WdVA80vTxgjQxQx+P01JsEfGEuJPGc1DwI 6/JVO2tP4Bo0xa0K3AkJXhMsbOfUi69a30/MPS8bI1bs9vrlAkmc500sFJBYXpPL BG3vKQcUY8dIyZ+qsodHpy1qa9hXy2S4JtehhT1uFxbXFeNISmixwLaNQVvgEcrQ H2tiCSOcEehMKqlpM6Hjpjj8hh0Cp2fH4MhBWtbfItkomUI/rsEaTKVZQpCHtjSq Lc5tuPtR7EFBb9TO+8ZJNJPkn6RJbd4u5Fl4yklqbxQ91fT2DOxuaKMIANOORM8f EV/d0ocEv/stIjRVPfYU3Ix3icop68jopqqSHiPDnTeIikfL0btO/BpGl2KBtnRT 7oeb4NfGXrk4dklaFFKX+ssUiVLEImndVYzbX6yFfX2cKSh63uE39jk7NYxYWci1 l9LRGbvR/z8zcGF8awx1UWZknCJBZF3rRoXnJddJSNQQ0SztA8l0QK8yZgIbSn3R Kfni+K3+oFSZt7l/12LrtreXObXBvC1LWMIVfbyoZ/Zv1lr4Ize8mvOp335NTgJa +vfIPdVPAgMBAAGjggIeMIICGjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFDTUvMsR A1DP1ZG944SinSwKnKodMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wKQYDVR0RBCIwIIIMaGVpa293aWxkLmRlghB3d3cu aGVpa293aWxkLmRlMIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLf EwEBATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcw gasGCCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSBy ZWxpZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3Jk YW5jZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6 Ly9sZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEB ADOA2vVlmTuZfMWgPg5b7m2mjPTx4MQQxAoe/VTlPyByPLo2PD2MzrclCLVfT7uo /v6avHxX3ljYVFWHsJJ3TX6CbMQ4AVaRreOpwOPwrzO5eETIHuWlRmXN2yIY2uLV rNW9kXA6xMgofnwjzyIio6zZ02hevMJv8VskHd/2iHCsSusZZq8B/DA2HqwhyW1m ayckZIfTE4X7AsDTPRa0A8NNE2JK99KnwMGt6TubJAjaDPwLJlNIlLSLIdsUcFy1 vprBv7e+y92j/gCVL29WiJbA4BB8clOkn7BkH5K4RNE/IF3Y0P+Y1Hoy/a8tln0k fmFflNFUPzHvUcf9xEcUnaE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA5rgxjd7jVUus4lsn78qf nyDfKpjMuAjhVkjIG2hQ9IUTZtDdlAcQmnqtNB97hIeL5R0KF/Gz0c7OdsmQjODv 1EEi/UOK6nwGIWGiJDLkumb2SJLogQByMhdTJqaqmxKrhZ1UDzS9PGCNDFDH4/TU mwR8YS4k8ZzUPAjr8lU7a0/gGjTFrQrcCQleEyxs59SLr1rfT8w9LxsjVuz2+uUC SZznTSwUkFhek8sEbe8pBxRjx0jJn6qyh0enLWpr2FfLZLgm16GFPW4XFtcV40hK aLHAto1BW+ARytAfa2IJI5wR6EwqqWkzoeOmOPyGHQKnZ8fgyEFa1t8i2SiZQj+u wRpMpVlCkIe2NKotzm24+1HsQUFv1M77xkk0k+SfpElt3i7kWXjKSWpvFD3V9PYM 7G5oowgA045Ezx8RX93ShwS/+y0iNFU99hTcjHeJyinryOimqpIeI8OdN4iKR8vR u078GkaXYoG2dFPuh5vg18ZeuTh2SVoUUpf6yxSJUsQiad1VjNtfrIV9fZwpKHre 4Tf2OTs1jFhZyLWX0tEZu9H/PzNwYXxrDHVRZmScIkFkXetGhecl10lI1BDRLO0D yXRArzJmAhtKfdEp+eL4rf6gVJm3uX/XYuu2t5c5tcG8LUtYwhV9vKhn9m/WWvgj N7ya86nffk1OAlr698g91U8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 311237196701303183857038793049026098930755 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-21 09:42:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-21 09:42:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'heikowild.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 941253464587587077348126408032968043730900302135341334940910415038189857162683487966907093804347087616706974116539950544305342083500546205077828940163215553734098325498628011044947410810806668297824745824768869750549630046381114961325191670912273081548447089520367866108942888041699469505189475418927122631105200245165814238410191921534703581184299770973950166667622144656845861438347514560168671100575120215353212515419862475790449629260019715018705693794518796867156702708021249731984949497956957508653786126432727181535374210989066844266570305443606184978835955626478459481811017164180173400844422684470856725380502487507957801504341247088901076531236332650357257841368327486629746678504139940864267650118005095484737875828818866334824062099010741095167930988271172333540183112619977581980318532413085555233213795559556888447800779662968884458833483611517443159034502694936293035085153324069747928448797330126130692496559622999682313870035457818035055395465704576878923693528270492172937660270820556977973735367677641520180768130685827611568561193772222297837159872392111164422658233728007289774286438865454176066125754688286256112071563175014436071158804666776681664412693826245041178995435524076880920690780070396460957874115919 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 34d4bccb110350cfd591bde384a29d2c0a9caa1d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'heikowild.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.heikowild.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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