www.tunero.de
Issued by RapidSSL SHA256 CA - G3
About this certificate
This digital certificate with serial number e4:ae was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.tunero.de,OU=GT87013914+OU=See www.rapidssl.com/resources/cps (c)14+OU=Domain Control Validated - RapidSSL(R)
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): e4:aeSerial Number (int): 58542
Serial Number lenght: 16 bits, 2 octets
SubjectKeyId:
AuthorityKeyId: c3:9c:f3:fc:d3:46:08:34:bb:ce:46:7f:a0:7c:5b:f3:e2:08:cb:59
Fingerprint (sha1): 4f:3e:49:31:b2:44:b6:de:8a:9c:7e:c2:38:20:b1:67:a2:31:2c:73
Fingerprint (sha256): ba:e7:58:cb:6e:f3:50:f9:2d:50:22:c5:c1:ce:b8:32:b1:2c:27:f2:13:c5:36:a3:aa:43:3a:b1:df:29:b6:c8
Issuing Certificate URL: http://gv.symcb.com/gv.crt
Revocation information
OCSP Server: http://gv.symcd.comCRL Distribution Point: http://gv.symcb.com/gv.crl
Check the revocation status for certificate www.tunero.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.tunero.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.tunero.de
tunero.de
tunero.de
Other certificates including the domain name tunero.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.tunero.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFrDCCBJSgAwIBAgIDAOSuMA0GCSqGSIb3DQEBCwUAMEcxCzAJBgNVBAYTAlVT MRYwFAYDVQQKEw1HZW9UcnVzdCBJbmMuMSAwHgYDVQQDExdSYXBpZFNTTCBTSEEy NTYgQ0EgLSBHMzAeFw0xNDEyMDIxMTAyNDZaFw0xNjAyMDMxMjIyMzBaMIGRMRMw EQYDVQQLEwpHVDg3MDEzOTE0MTEwLwYDVQQLEyhTZWUgd3d3LnJhcGlkc3NsLmNv bS9yZXNvdXJjZXMvY3BzIChjKTE0MS8wLQYDVQQLEyZEb21haW4gQ29udHJvbCBW YWxpZGF0ZWQgLSBSYXBpZFNTTChSKTEWMBQGA1UEAxMNd3d3LnR1bmVyby5kZTCC AiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMdyV+J46k7a6EVwBazgwo1p VWoPjKaiGFlas/XB0DTykkbTFOMOSshLUz/uT5cAJzwY+B6RCuUnZccC1lPtb8jn /cZbsIVSDE8LIjKuqCQRv2f9GgG/9dOcRVDKSOKaFJozwWj2jGkD4JoKfTiyTrG1 T4tW2yLU5EayspiqC/xVGgeAnu+U5Sek3HIq83nTgtYOBMbbMhCae8jrzkCm839E UhPAmmHMwtSPoSJARTksSr466D+kWTeT48xV9nuHun9pn1h4cLDRWss3wJGTkEdU Rf8NkeLidCNOLmvuh2CcYXV3WziAiWclE66uWAnRJV8VF2kxopDwoR0xbRYM6lTt sPYfbipqsv9VK7g+GKW5/7JyfXiIRDq7HIzMVKBdSu0SCfWuQU24SNgBKK/6f9TY LqRnWNo63h0ztKtGyuv5pEsTjX6O7R2Se0jub+QesRI95s//EyvlXjmHx7Qd9wtq Yqqb4CaAPc5WOx/sxEchIXQsxshIG/Q0k0wT1o4PNKR2uv3C3zuLuqhmop2qfPSP fHRyG8fbUVVDZnSsIw7iPxSKlY0+cUTLYdcWbHrClsocw79HtaZiJRS5bNIkPT1b y0qD4N5l5ffwm6jZw3Cw8OOAqrFEzmhGnCGbENKlxd1Kj054lIcrKN5eH7Fe7+iU VwkKrylzieyNJXL6QrP7AgMBAAGjggFUMIIBUDAfBgNVHSMEGDAWgBTDnPP800YI NLvORn+gfFvz4gjLWTBXBggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6 Ly9ndi5zeW1jZC5jb20wJgYIKwYBBQUHMAKGGmh0dHA6Ly9ndi5zeW1jYi5jb20v Z3YuY3J0MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwIwYDVR0RBBwwGoINd3d3LnR1bmVyby5kZYIJdHVuZXJvLmRlMCsGA1Ud HwQkMCIwIKAeoByGGmh0dHA6Ly9ndi5zeW1jYi5jb20vZ3YuY3JsMAwGA1UdEwEB /wQCMAAwRQYDVR0gBD4wPDA6BgpghkgBhvhFAQc2MCwwKgYIKwYBBQUHAgEWHmh0 dHBzOi8vd3d3LnJhcGlkc3NsLmNvbS9sZWdhbDANBgkqhkiG9w0BAQsFAAOCAQEA kP1We91UtjI1igiXw1dJOysmbAFpIiOF5VdkV7gGq4iPy+QSjaUMAYR6cQD5dPmW PGcKwoszstUjCU8XRTKaQhWSWXA7Y+wfIwZSr6/vEDwL+NI4g3wb2rnxYdzG0Ggq fSFWUplWgV3UR4cp8Hdhm+cnTxHnQClsRmRyG2AAra6YEnfJWyKJxlLRUjB0jl1h /L58oxkq4CWulSDYlSqSmHtjHjUN2Kt5nM7onD8djNG3NQ78559jJyODpGM4sZ9K YyBqC/fO8BaIswaIqDCYb2SQ1PFwOvCuZAMRDr1BwibpRKed+NROYopOpUZre/Hj hWenq7Hz49GuGMS3KfhSDA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAx3JX4njqTtroRXAFrODC jWlVag+MpqIYWVqz9cHQNPKSRtMU4w5KyEtTP+5PlwAnPBj4HpEK5SdlxwLWU+1v yOf9xluwhVIMTwsiMq6oJBG/Z/0aAb/105xFUMpI4poUmjPBaPaMaQPgmgp9OLJO sbVPi1bbItTkRrKymKoL/FUaB4Ce75TlJ6TccirzedOC1g4ExtsyEJp7yOvOQKbz f0RSE8CaYczC1I+hIkBFOSxKvjroP6RZN5PjzFX2e4e6f2mfWHhwsNFayzfAkZOQ R1RF/w2R4uJ0I04ua+6HYJxhdXdbOICJZyUTrq5YCdElXxUXaTGikPChHTFtFgzq VO2w9h9uKmqy/1UruD4Ypbn/snJ9eIhEOrscjMxUoF1K7RIJ9a5BTbhI2AEor/p/ 1NgupGdY2jreHTO0q0bK6/mkSxONfo7tHZJ7SO5v5B6xEj3mz/8TK+VeOYfHtB33 C2piqpvgJoA9zlY7H+zERyEhdCzGyEgb9DSTTBPWjg80pHa6/cLfO4u6qGainap8 9I98dHIbx9tRVUNmdKwjDuI/FIqVjT5xRMth1xZsesKWyhzDv0e1pmIlFLls0iQ9 PVvLSoPg3mXl9/CbqNnDcLDw44CqsUTOaEacIZsQ0qXF3UqPTniUhyso3l4fsV7v 6JRXCQqvKXOJ7I0lcvpCs/sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 58542 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-12-02 11:02:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-02-03 12:22:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT87013914' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)14' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.tunero.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 813671356892615727458391441599000795511309872542189616335472545418320050728875739286490252001552258188284905897008873919099442107657315889020023829872915106711319542909164086532440760517476048371694185432940735771730287978308840078909798410918635065730056925757432161640531048428561380725092126242309840547112857837022667906713393254815028302485582276425502487471624274839287688535790150822265158957360175356557467990410052450486649318868807503506297209395026298437842354098995903949438891073316381718062633690908678714348848094530489158689465461065018551089578205593448919459474515873012569133126722331571126559365923601957208452771384761883077922744722614746383010299526333923477622746446959770630667883701115402373944292542389754838692808317302331836048135740853401972524095999338924345826440013060709388620882554837315855064535062652946013927642854181937075628760730963448155762701787141103359776197962373745018260904363973667550829349386572394514142521612557961574743927229383455982280918358002932597542901833326144810422104609789023329657605212567769300468705323915900586962834668319390116240695703825172316835680754740413846060366390204982479865645566867412442637546152277253354634579409614087629726129926621588935387455337467 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c39cf3fcd3460834bbce467fa07c5bf3e208cb59 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gv.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gv.symcb.com/gv.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tunero.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tunero.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gv.symcb.com/gv.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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