tapisserie-landau.de
Issued by R3
About this certificate
This digital certificate with serial number 04:0c:14:9b:3a:1a:e3:37:5e:7e:17:22:df:16:41:8c:3f:0d was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=tapisserie-landau.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:0c:14:9b:3a:1a:e3:37:5e:7e:17:22:df:16:41:8c:3f:0dSerial Number (int): 352559922674531028635342279452159170592525
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: c3:8e:99:2c:2b:56:9e:2b:41:67:15:ad:3c:4f:71:7e:42:fd:ee:81
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): b3:7a:65:5d:42:87:90:7e:45:c6:63:3a:39:70:06:e4:c6:41:14:47
Fingerprint (sha256): be:c6:dd:e9:19:84:75:eb:bf:8b:3c:d3:8e:cb:36:36:f4:fa:05:a9:09:bb:b9:a1:02:de:20:ea:37:2d:0d:71
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate tapisserie-landau.de
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tapisserie-landau.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tapisserie-landau.de
webmail.tapisserie-landau.de
www.tapisserie-landau.de
webmail.tapisserie-landau.de
www.tapisserie-landau.de
Other certificates including the domain name tapisserie-landau.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for tapisserie-landau.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgISBAwUmzoa4zdefhci3xZBjD8NMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMDIxNTA3MTdaFw0yNDAzMDExNTA3MTZaMB8xHTAbBgNVBAMT FHRhcGlzc2VyaWUtbGFuZGF1LmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAxWzMoaTQoJNNYHpRM64pUljJxWtM+hZ2bR8kRiMB7BuxUZxiPblPOXVP x3cKvIIP8u6qucm+PplSgKrTeOpoQdP1p7BEjkyqsICyepBfCxPFUwaLPA3+Jc6L 5ZYBuoR6alSOj1zJpsyoTkNEGohP232Ws9N3sGDyvEf8688AFmrDJxDBBmD03J4l aPSb53O8qDkL5L/lv9VBV70TbYbJZSBBd7X88UPg7ZNnha9bbw35upE/yQnMKqEv oygrBbY0QppvGqbNbNoP5Nr/BR6cW25/+Q0g8K46hghH8H2L7J87IxCrDt5gjJo+ y4G3hEeWNd+dHJL7xePum0+I4/dS6QIDAQABo4ICTTCCAkkwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBTDjpksK1aeK0FnFa08T3F+Qv3ugTAfBgNVHSMEGDAWgBQULrMX t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0 dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu Y3Iub3JnLzBXBgNVHREEUDBOghR0YXBpc3NlcmllLWxhbmRhdS5kZYIcd2VibWFp bC50YXBpc3NlcmllLWxhbmRhdS5kZYIYd3d3LnRhcGlzc2VyaWUtbGFuZGF1LmRl MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYA O1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGMK0jAUgAABAMARzBF AiEAqmkLwWr1HFbbKIEhlvbqqSslFPUKo2VRNvRWjVhLsfwCIGH28G5otHZDCy4V px3lQH56HrYz50vXl14I32VHi60IAHUAKdA6G7Z0qnEc0wNbZVfBT4qni0/oOJRJ 7KRT+US9JGgAAAGMK0jBaAAABAMARjBEAiAydu3wwyKomeF6x+r1+J/K8vXZTOR4 vjq95RdZNADYOwIgXZfjnSvPfRuYN7MN5N2wD+sa17QusN6mMsvnN3rVkfwwDQYJ KoZIhvcNAQELBQADggEBALkMTo9jng1gh2Hv9Ruo2QuEuQjd5Fz571sqEmQmpJIp PW1sxb5NnDzjrYy3fLV5NeiM9bctSM9la24wWkf0HEOPUcRTWWK0C0iZJPZI+Vx7 M3EwRK08q3RZ4xAdUNiCRriPm9emHmsegX6gP45tnsZbUIfzx5dhmSEf1DUETXTN aa6VAPZbZyTbYGD3B65y6LzQDlbBqAnBtA0AyeOkcBb0l8UX2i9cFYbz/JBf7xKq hL7BchpVPtjdjRXixDnSBgB6mUK4rSGepbBMVTVmAyNXUk9nms3P3zqxZLeEioAG pnBzpVsp7I9GdFE2iCh21zjvKS1BNhq+KfF2qJaJC4c= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxWzMoaTQoJNNYHpRM64p UljJxWtM+hZ2bR8kRiMB7BuxUZxiPblPOXVPx3cKvIIP8u6qucm+PplSgKrTeOpo QdP1p7BEjkyqsICyepBfCxPFUwaLPA3+Jc6L5ZYBuoR6alSOj1zJpsyoTkNEGohP 232Ws9N3sGDyvEf8688AFmrDJxDBBmD03J4laPSb53O8qDkL5L/lv9VBV70TbYbJ ZSBBd7X88UPg7ZNnha9bbw35upE/yQnMKqEvoygrBbY0QppvGqbNbNoP5Nr/BR6c W25/+Q0g8K46hghH8H2L7J87IxCrDt5gjJo+y4G3hEeWNd+dHJL7xePum0+I4/dS 6QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 352559922674531028635342279452159170592525 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-02 15:07:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-01 15:07:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tapisserie-landau.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24922597033200136131810243250783065364412700201027989559290778262657381029096123042823365373801345381028007614080722584407780131082773486137095583814692372492327481169731019233139866558415532616762697490115564628939934001520019553481943903479639830935293103488278168481095590038279214337685479808181174506229749439122278241753804107017827706597462294676134076081918536187666856298718083013413371685037263657216488701447039008009337466634991153230946781460287968774831744715973548949902116105927314424897412096755144148137133302488453174177830361019344364551707758200204312160904444911651203675028805934203443034411753 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c38e992c2b569e2b416715ad3c4f717e42fdee81 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tapisserie-landau.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.tapisserie-landau.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tapisserie-landau.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c2b48c0520000040300473045022100aa690bc16af51c56db28812196f6eaa92b2514f50aa3655136f4568d584bb1fc022061f6f06e68b476430b2e15a71de5407e7a1eb633e74bd7975e08df65478bad0800750029d03a1bb674aa711cd3035b6557c14f8aa78b4fe8389449eca453f944bd24680000018c2b48c168000004030046304402203276edf0c322a899e17ac7eaf5f89fcaf2f5d94ce478be3abde517593400d83b02205d97e39d2bcf7d1b9837b30de4ddb00feb1ad7b42eb0dea632cbe7377ad591fc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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