egw.lucas-knapp.de

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:a1:2b:de:4f:71:e7:b8:1a:b7:7a:4a:a7:ed:f3:9b:92:96 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=egw.lucas-knapp.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:a1:2b:de:4f:71:e7:b8:1a:b7:7a:4a:a7:ed:f3:9b:92:96
Serial Number (int): 316180629974608033330122875980797661909654
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 6d:e8:57:ff:f7:a5:3a:ba:ca:fd:3b:c9:98:50:37:c5:ce:4a:6e:7b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): b3:05:c3:30:82:f5:8e:97:09:66:a8:75:d0:6e:07:ee:d8:a9:7e:60
Fingerprint (sha256): d0:38:01:85:e9:32:f3:9d:9e:8d:18:2e:c4:70:47:0b:58:b2:7e:07:6a:7f:0e:17:d7:1f:15:ff:06:96:60:a7

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate egw.lucas-knapp.de

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for egw.lucas-knapp.de

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

egw.lucas-knapp.de

Other certificates including the domain name lucas-knapp.de

(limited to 100 certificates)

Certificate

The complete raw certificate details for egw.lucas-knapp.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGBzCCBO+gAwIBAgISA6Er3k9x57gat3pKp+3zm5KWMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzA3MzEyMjAxMDBaFw0x
NzEwMjkyMjAxMDBaMB0xGzAZBgNVBAMTEmVndy5sdWNhcy1rbmFwcC5kZTCCAiIw
DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAODfGlb770pypEOnkLcpDbc1hkIV
wB+KUbROxvDYXMcOwoQV++sDia6Ff/NZEpL3QVvxyCkamWJAdxAuIqe6flF125pk
MmMzG5zMA1Mb2VoLf2haWiz6wp4ig2CnCQzCExhzkKCsmUR8tT/fohs+zfVtcwJs
oeoCEMyzN9vbrhICYi8eGjnXp3zzwPyxl2nyf+DX7Fo6qRnTPJZa55JOATKAsKg3
LNafAouf3OvpyE1rCPrsyyUd4bSpbKZqhMuq5MPNeuIYNNkxIcrE+BpNAnIJqZNt
v20No9CL1xLo9Xpc9+3uW9OKO7uv92L0ET1OXjeKZBgxud8qrA8ByExuKpkenb5r
xCaMzMpmfY8eKM5f6tgTuIM1j9AzWzfhhZduVrV2XCt4W3MFYU3gw00m458yCeJV
ejOmGMOxVOzBU6F6a5IaNfZuM6Ud131m+zb2xN5oVEloZVPs7guo+5+KYf6Gw3xZ
Sf2D7YOChujs0v0qeZsWKClNHlQlksSYG/tE/RNMGB244Q6h5EkgTwJqYkN9I6f2
aI0J0ZpDZOSN0obUZyzvlmu7cXpagYYLgD1PAxMEYSQxyc0Fx0sGO92bVdHpzwO7
fcAbIE3i4o2WkLvv07AGoVtOMKnBbgxIV4zc4q3nUswV1r96juNDrjz4SVUwKNXy
pSQs/fDwhNxwzIlXAgMBAAGjggISMIICDjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l
BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE
FG3oV//3pTq6yv07yZhQN8XOSm57MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF
Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au
aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu
aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISZWd3Lmx1Y2FzLWtu
YXBwLmRlMIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB
1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsG
AQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQg
dXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3
aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRz
ZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEBAI8NDvk0
ZnXv62VwL8f00majkMERjMoYBkXBFML0pNakv3RW6KO/XJKJMO3289f004lV89BX
mpnnU1S7RDPCaSaGOBfLD76z/EIiY9RmMhkGiuaXbPdHIE2TOv3ecLY/oU37foID
KW4Wli+D800xB79x4k1euP262RS2bJCkGPdahn4XX1CaB4D2tFoaW8/uDQtgKOu8
6vXN98MAQ8qCOXKQ++3ssxCBzwmMQuZ6PpMpk44xOELTZoowZtpSyPchfihJSWSc
QYzk+NuTm2eRNQG8FTkgVrhVcEdD+bPxqAyA1BPq1q6YBaM7m5rcyuwGyYfSAooD
61iIJ2bnZHYlYVg=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4N8aVvvvSnKkQ6eQtykN
tzWGQhXAH4pRtE7G8Nhcxw7ChBX76wOJroV/81kSkvdBW/HIKRqZYkB3EC4ip7p+
UXXbmmQyYzMbnMwDUxvZWgt/aFpaLPrCniKDYKcJDMITGHOQoKyZRHy1P9+iGz7N
9W1zAmyh6gIQzLM329uuEgJiLx4aOdenfPPA/LGXafJ/4NfsWjqpGdM8llrnkk4B
MoCwqDcs1p8Ci5/c6+nITWsI+uzLJR3htKlspmqEy6rkw8164hg02TEhysT4Gk0C
cgmpk22/bQ2j0IvXEuj1elz37e5b04o7u6/3YvQRPU5eN4pkGDG53yqsDwHITG4q
mR6dvmvEJozMymZ9jx4ozl/q2BO4gzWP0DNbN+GFl25WtXZcK3hbcwVhTeDDTSbj
nzIJ4lV6M6YYw7FU7MFToXprkho19m4zpR3XfWb7NvbE3mhUSWhlU+zuC6j7n4ph
/obDfFlJ/YPtg4KG6OzS/Sp5mxYoKU0eVCWSxJgb+0T9E0wYHbjhDqHkSSBPAmpi
Q30jp/ZojQnRmkNk5I3ShtRnLO+Wa7txelqBhguAPU8DEwRhJDHJzQXHSwY73ZtV
0enPA7t9wBsgTeLijZaQu+/TsAahW04wqcFuDEhXjNziredSzBXWv3qO40OuPPhJ
VTAo1fKlJCz98PCE3HDMiVcCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 316180629974608033330122875980797661909654
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-07-31 22:01:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-29 22:01:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'egw.lucas-knapp.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 917395663349078259308851454869215223926324175226186399512555377762940403915876123104402479937390207670168833010937969632896878686076648275573661297072295483285448966000953231624161741438945102750182025099042702061166066301023187912614135830113714880058970074604053548574991395855814295445937015887134090003857248226824761365821458265896533480103318495413497109414849699416645076655190279649719647148714299037231474043640884718239520072249470760853954201433313289564180421860300977896382728015196929926783448046005282625985167338836638439402557569976701359095251954088553586017541502095389110104009749265003320303210633976688188660744172294706087249827111715797374152674904479024933666987011841101892985937535156424783997868322210604391138580832872543081917736312984413078820200455100004980963621674396420885940673376674720268635882302366408207687999092505017837275366872254043054250560801677471656673169611513256306185819331331143213877683086470186529555998465254282278199619402951107210230317493153541010667872223698746339251089791021966098171503606640280199963853085022685847286964754281866882517218642995143779113092135004842707124752460031599097782483982425708608386651365067539324722090391316184003348487572946567974545680795991
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6de857fff7a53abacafd3bc9985037c5ce4a6e7b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'egw.lucas-knapp.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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