www.pca.dfn.de

Issued by DFN-CERT Services GmbH CA - G02

About this certificate


This digital certificate with serial number 13:cb:09:9c:64:b5:2f was issued on by DFN-CERT Services GmbH .

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present

DFN-CERT Services GmbH

Organization: DFN-CERT Services GmbH
State / Province: Hamburg
Locality: Hamburg
Country: DE

DFN-CERT Services GmbH

Organization: DFN-CERT Services GmbH
State / Province: Hamburg
Locality: Hamburg
Country: DE

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 13:cb:09:9c:64:b5:2f
Serial Number (int): 5571266696492335
Serial Number lenght: 53 bits, 7 octets

SubjectKeyId: 55:fc:2b:61:eb:e5:08:6f:75:67:f6:ce:8f:1e:e8:40:e5:bd:f6:a5
AuthorityKeyId: c6:8b:cf:fa:44:fc:3a:6a:4b:68:ab:e8:e7:bf:38:23:e5:ba:0a:96

Fingerprint (sha1): 68:74:24:fe:6c:3b:f5:91:0c:f9:56:8a:10:50:e4:eb:20:4a:c4:e4
Fingerprint (sha256): 3c:57:68:5f:32:1c:16:f9:8a:0d:8d:b8:26:87:ad:bb:16:02:bf:04:f1:7d:b7:3f:2b:d7:a5:77:36:42:c1:69

Issuing Certificate URL: http://cdp1.pca.dfn.de/dfn-cert-services-gmbh-ca/pub/cacert/g_cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/dfn-cert-services-gmbh-ca/pub/cacert/g_cacert.crt

Revocation information

CRL Distribution Point: http://cdp1.pca.dfn.de/dfn-cert-services-gmbh-ca/pub/crl/g_cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/dfn-cert-services-gmbh-ca/pub/crl/g_cacrl.crl

Check the revocation status for the current certificate on www.pca.dfn.de
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Content Commitment
Key Encipherment
Data Encipherment

Extended Key Usages

Server Authentication

Extensions

9 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any other subject alternative names besides the common name of the subject: www.pca.dfn.de

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgIHE8sJnGS1LzANBgkqhkiG9w0BAQUFADBYMQswCQYDVQQG EwJERTEfMB0GA1UEChMWREZOLUNFUlQgU2VydmljZXMgR21iSDEoMCYGA1UEAxMf REZOLUNFUlQgU2VydmljZXMgR21iSCBDQSAtIEcwMjAeFw0xMjA1MTAwOTM2MTJa Fw0xNzA1MDkwOTM2MTJaMGsxCzAJBgNVBAYTAkRFMRAwDgYDVQQIEwdIYW1idXJn MRAwDgYDVQQHEwdIYW1idXJnMR8wHQYDVQQKExZERk4tQ0VSVCBTZXJ2aWNlcyBH bWJIMRcwFQYDVQQDEw53d3cucGNhLmRmbi5kZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJx2IpGvTNx1W+jpo5A6OZBNT2MaFzf3LUegx7egnfOomWkM MhrdT0SMsA07FJiCGNx1i/tjZ6CjfnWxkfuhPjCq0V79ploSNHKQr8697UScrlUK Zzl1TKwPw7RtAri4DIUWZF1Fx6U5LJbihHeq0ttiCt1Ym5FyjnjNV9CksjXy/gWE Fv/h1OZQGU5SyehRd8T/Mk/6MWV3EJyLpPUwmuNX+BAAYvQI44hvPl1tl8e2wfxt GpdszibR5v2gH+CIupszccz5/su2tJGJicS+YywuwuEvIfYz2xbJLLKnhGZgFXt7 nue8l2YenGLjPS7PbGKBypOzxy81Cl1aSmYDoDsCAwEAAaOCAg8wggILMBwGA1Ud IAQVMBMwEQYPKwYBBAGBrSGCLAEBBAICMAkGA1UdEwQCMAAwCwYDVR0PBAQDAgTw MBMGA1UdJQQMMAoGCCsGAQUFBwMBMB0GA1UdDgQWBBRV/Cth6+UIb3Vn9s6PHuhA 5b32pTAfBgNVHSMEGDAWgBTGi8/6RPw6aktoq+jnvzgj5boKljAZBgNVHREEEjAQ gg53d3cucGNhLmRmbi5kZTCBowYDVR0fBIGbMIGYMEqgSKBGhkRodHRwOi8vY2Rw MS5wY2EuZGZuLmRlL2Rmbi1jZXJ0LXNlcnZpY2VzLWdtYmgtY2EvcHViL2NybC9n X2NhY3JsLmNybDBKoEigRoZEaHR0cDovL2NkcDIucGNhLmRmbi5kZS9kZm4tY2Vy dC1zZXJ2aWNlcy1nbWJoLWNhL3B1Yi9jcmwvZ19jYWNybC5jcmwwgbwGCCsGAQUF BwEBBIGvMIGsMFQGCCsGAQUFBzAChkhodHRwOi8vY2RwMS5wY2EuZGZuLmRlL2Rm bi1jZXJ0LXNlcnZpY2VzLWdtYmgtY2EvcHViL2NhY2VydC9nX2NhY2VydC5jcnQw VAYIKwYBBQUHMAKGSGh0dHA6Ly9jZHAyLnBjYS5kZm4uZGUvZGZuLWNlcnQtc2Vy dmljZXMtZ21iaC1jYS9wdWIvY2FjZXJ0L2dfY2FjZXJ0LmNydDANBgkqhkiG9w0B AQUFAAOCAQEAgfDIHErWLQBWeY4DpSqLHh6rq5tDHTJqxc2VDb/18fvnuuPcqlP5 ltoxAODtbKUcUzEx/GqsBSM0w9/uSze72eIEmu3KufK4O5ziWy5BzNAEgl+ZD660 +lby6w9O+i8JSoFsZfJLR75O0EJdgPc8VxhsQmJZjek/zyAlmY1QKpqYZa24iIhP +9xVqzohYDX1NAbOmiBk0yTWtlwCbpDxqL6mqxdoFX3HUNB8CDesjIV09BDycs1i HpfnATWrD888EgE8Ey7GEo0STAAst3XMPP5XsXFu+/e9B+46FaZmSLUcOl8e3Ehk SRXWHE4G+EPdHK1lNnCZL7CVKX0YZmBy3g== -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnHYika9M3HVb6OmjkDo5 kE1PYxoXN/ctR6DHt6Cd86iZaQwyGt1PRIywDTsUmIIY3HWL+2NnoKN+dbGR+6E+ MKrRXv2mWhI0cpCvzr3tRJyuVQpnOXVMrA/DtG0CuLgMhRZkXUXHpTksluKEd6rS 22IK3VibkXKOeM1X0KSyNfL+BYQW/+HU5lAZTlLJ6FF3xP8yT/oxZXcQnIuk9TCa 41f4EABi9AjjiG8+XW2Xx7bB/G0al2zOJtHm/aAf4Ii6mzNxzPn+y7a0kYmJxL5j LC7C4S8h9jPbFskssqeEZmAVe3ue57yXZh6cYuM9Ls9sYoHKk7PHLzUKXVpKZgOg OwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5571266696492335 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DFN-CERT Services GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DFN-CERT Services GmbH CA - G02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-05-10 09:36:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-09 09:36:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hamburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hamburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DFN-CERT Services GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.pca.dfn.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19751430131874020838509133390117700011742578631195324236612270014993426798628481953888118652134460413419772769268901436576645086049486502422101400495776762379583312717094852360228264330398636122550904154852952470253190561612001432200432229471647934790600248015013396920623489706298870690818167075145509188834750300161870783506546778149106678657371026873869400091045431775985955427897410415259112161735171871164732697066864840256221367744441837726108386335917801945007059316329090298358300106437652272308258881861511519687307476866286144002137514242972580336667177125581723951400145461022852004562538975428148891721787 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.2.2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04f0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 55fc2b61ebe5086f7567f6ce8f1ee840e5bdf6a5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c68bcffa44fc3a6a4b68abe8e7bf3823e5ba0a96 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pca.dfn.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (155 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-cert-services-gmbh-ca/pub/crl/g_cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-cert-services-gmbh-ca/pub/crl/g_cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (175 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-cert-services-gmbh-ca/pub/cacert/g_cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-cert-services-gmbh-ca/pub/cacert/g_cacert.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0081f0c81c4ad62d0056798e03a52a8b1e1eabab9b431d326ac5cd950dbff5f1fbe7bae3dcaa53f996da3100e0ed6ca51c533131fc6aac052334c3dfee4b37bbd9e2049aedcab9f2b83b9ce25b2e41ccd004825f990faeb4fa56f2eb0f4efa2f094a816c65f24b47be4ed0425d80f73c57186c4262598de93fcf2025998d502a9a9865adb888884ffbdc55ab3a216035f53406ce9a2064d324d6b65c026e90f1a8bea6ab1768157dc750d07c0837ac8c8574f410f272cd621e97e70135ab0fcf3c12013c132ec6128d124c002cb775cc3cfe57b1716efbf7bd07ee3a15a66648b51c3a5f1edc48644915d61c4e06f843dd1cad653670992fb095297d18666072de