hajoscho.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:7d:0e:41:6a:e6:5b:17:fe:c4:d5:0b:17:77:9b:48:92:d2 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hajoscho.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:7d:0e:41:6a:e6:5b:17:fe:c4:d5:0b:17:77:9b:48:92:d2Serial Number (int): 391003388451581175615091387719749969941202
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a7:a4:49:12:b7:34:a9:70:69:4b:c6:8d:fb:4a:eb:65:28:87:c5:76
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 23:a7:55:53:71:97:75:27:29:c2:ae:3f:a5:6a:b3:b9:82:0e:68:91
Fingerprint (sha256): c7:07:7f:46:27:9f:10:80:a6:2f:37:58:03:d6:09:b2:21:39:19:29:e3:03:b1:9c:d3:65:03:f6:16:26:86:55
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate hajoscho.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hajoscho.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hajoscho.de
www.hajoscho.de
www.hajoscho.de
Other certificates including the domain name hajoscho.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for hajoscho.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgISBH0OQWrmWxf+xNULF3ebSJLSMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMDEwMTAwMjhaFw0y MDA1MzAwMTAwMjhaMBYxFDASBgNVBAMTC2hham9zY2hvLmRlMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAne0pplLmSutafpXxb6NUfn8LtUiTX1TadUmx +l9Er5zp91GzponE9Jq6TdyelB3jyT8AUQsV36naHEqvzF5wj9A229JyTxdKKpJR Ik+T0hztjwfjRlI2JTDLKyc7T8NDJK9suvyUQHSViLi2H/6QmkUhDe5w3moHwsHc EZAleksm/qSeZdW461xGbNr+TkrPZvW4sWoa5f2jqWs1v5MMTUnSXEZXN8jYeUJ9 nk/mHBBZ7Hoj1Hy2HC+UacCf4wQYEgPIk4+l/AhTNLIJDfPtNlQxCwx8SoqPRH9d q/nJ9UqrZzm1S9BeILOyevRUWyCvWgS18JRH6Eeh4Hp4sh7dLri3a02sqghWNj5X xr7qfOKNHm7g290JFbje1/HK323qpu7GIB6P7R+nZvJ40jTIF3hmLX46WIkCTXHY QcB174Weptg5sQop0dKU++njEa8yqzYXx/4IjmbLC4tXJ93sjcZOo+g0m5wfdxYh +alxsGuGGeNXjE0/DHGH8tPruwYtLFvVaYZgwSXHEfToPV+CE8sqd7OZZ0cAODmu pnqnE7HeyJuQC+/SRvJ9yj1KzjVyxjV5iD+RKyXsEGEZ9jBNbKYIw0ZT9IngkGRH gOgFufv3YIn+r+EA2jqQOwGh4fHarqrizc414Qg3BRJ0peadMgm+Uxp51aj0vci+ oxevyykCAwEAAaOCAnMwggJvMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUp6RJErc0 qXBpS8aN+0rrZSiHxXYwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAnBgNVHREEIDAeggtoYWpvc2Noby5kZYIPd3d3Lmhh am9zY2hvLmRlMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgw JgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBgYKKwYB BAHWeQIEAgSB9wSB9ADyAHcA5xLysDd+GmL7jskMYYTx6ns3y1YdESZb8+DzS/JB VG4AAAFwk9LEsAAABAMASDBGAiEAqm/O2Mpfy+7rbQows4KtSPYKKXUiYQV+sFwI tFJp/gECIQCKpE9LWStUWlD+TrrJzwhmGkuhve+m4O2UFAaDF20WOQB3ALIeBcyL os2KIE6HZvkruYolIGdr2vpw57JJUy3vi5BeAAABcJPSxKcAAAQDAEgwRgIhAJPC La6tb9UEk1Ar7K55FvcH8XGoE0KrKxcUI4ia8/sqAiEAsarrobfXiaq+2Q+w8LFI gPMmZ3cHTohyQTwwqTKQC5AwDQYJKoZIhvcNAQELBQADggEBAB8179pwF+kms2GQ MBzjSlSoW8P/dVw+IvpS4z51wZXr8dOdeK+ij5YcrQNlQczzyMWoqZUA/Yle9+sI br0M0bSSt5Kmc3JRw8H/rIsBLlr8vucoKnfl0D7cnqA40j7xa9/b16X9oPvqpTdI J4VHxc7Bm69YB02MmmS/Qz96Kg5N6uL2DPmvaIyzljPeQp+cjpuasHFInNaaPMB9 BFM933F0tgz5sSers9h5JZI2X8F5FtD5zlLMcrgCzSX70ERToERqMur8KMeOoJJ3 4VFrX3ck7nhFdCChN2U7DgBRmaD+VWFMfP7WK3O3qja7f6B4v6rShEljGZ+Kky7A E5XmeXM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAne0pplLmSutafpXxb6NU fn8LtUiTX1TadUmx+l9Er5zp91GzponE9Jq6TdyelB3jyT8AUQsV36naHEqvzF5w j9A229JyTxdKKpJRIk+T0hztjwfjRlI2JTDLKyc7T8NDJK9suvyUQHSViLi2H/6Q mkUhDe5w3moHwsHcEZAleksm/qSeZdW461xGbNr+TkrPZvW4sWoa5f2jqWs1v5MM TUnSXEZXN8jYeUJ9nk/mHBBZ7Hoj1Hy2HC+UacCf4wQYEgPIk4+l/AhTNLIJDfPt NlQxCwx8SoqPRH9dq/nJ9UqrZzm1S9BeILOyevRUWyCvWgS18JRH6Eeh4Hp4sh7d Lri3a02sqghWNj5Xxr7qfOKNHm7g290JFbje1/HK323qpu7GIB6P7R+nZvJ40jTI F3hmLX46WIkCTXHYQcB174Weptg5sQop0dKU++njEa8yqzYXx/4IjmbLC4tXJ93s jcZOo+g0m5wfdxYh+alxsGuGGeNXjE0/DHGH8tPruwYtLFvVaYZgwSXHEfToPV+C E8sqd7OZZ0cAODmupnqnE7HeyJuQC+/SRvJ9yj1KzjVyxjV5iD+RKyXsEGEZ9jBN bKYIw0ZT9IngkGRHgOgFufv3YIn+r+EA2jqQOwGh4fHarqrizc414Qg3BRJ0pead Mgm+Uxp51aj0vci+oxevyykCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 391003388451581175615091387719749969941202 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-01 01:00:28 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-30 01:00:28 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hajoscho.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 644283569375821934156064774235112848564487157803416218006082705349889538104796668478599241895358896475147248566087692677350723796288300235460577514924538810730244579482949140800591902045310566044216455016959592374404157362212678910241351953351436569300160939661818553891199608160990070366751243454152869947821255436263277909674793507700202810682631181679770360247879922134066217098660612822031341131589629476218792223615453390971192799737022271327992226336821238967886567272113115358756995404569398445009734665336042644737515786363700381133920098065244595012633774952776800771334318107574963639157782427132055661040090433039649050144252599906846299543951283686386759101408678165885225237217286551921199665314261521493689525873885679018008011879294992545858699233791588760424981446024475783982754065117489764188917841649878864288069637290379099186460344117224949415421356568716577472710965180565146960174368161435009247455619498975638953803239528515292987771634663308999172706946115369213316443782041798769315985821568014762351110915969194322760552872925119559311072123086718149151888266560957028154166839400318816881967101477170317203335030178974535239141245660640620718513321863985618687574937991450325131321247426539434955498310441 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a7a44912b734a970694bc68dfb4aeb652887c576 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hajoscho.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hajoscho.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e0000017093d2c4b00000040300483046022100aa6fced8ca5fcbeeeb6d0a30b382ad48f60a29752261057eb05c08b45269fe010221008aa44f4b592b545a50fe4ebac9cf08661a4ba1bdefa6e0ed94140683176d1639007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000017093d2c4a7000004030048304602210093c22daead6fd50493502becae7916f707f171a81342ab2b171423889af3fb2a022100b1aaeba1b7d789aabed90fb0f0b14880f3266777074e8872413c30a932900b90 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 001f35efda7017e926b36190301ce34a54a85bc3ff755c3e22fa52e33e75c195ebf1d39d78afa28f961cad036541ccf3c8c5a8a99500fd895ef7eb086ebd0cd1b492b792a6737251c3c1ffac8b012e5afcbee7282a77e5d03edc9ea038d23ef16bdfdbd7a5fda0fbeaa53748278547c5cec19baf58074d8c9a64bf433f7a2a0e4deae2f60cf9af688cb39633de429f9c8e9b9ab071489cd69a3cc07d04533ddf7174b60cf9b127abb3d8792592365fc17916d0f9ce52cc72b802cd25fbd04453a0446a32eafc28c78ea09277e1516b5f7724ee78457420a137653b0e005199a0fe55614c7cfed62b73b7aa36bb7fa078bfaad2844963199f8a932ec01395e67973