www.schunk.net
Issued by R3
About this certificate
This digital certificate with serial number 04:73:5c:79:30:9d:1e:09:da:14:97:1d:5a:3e:71:a9:e4:ca was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.schunk.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:73:5c:79:30:9d:1e:09:da:14:97:1d:5a:3e:71:a9:e4:caSerial Number (int): 387704534152484783809736295645519538676938
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 8d:21:87:67:ee:86:0e:98:e1:ac:a3:8b:b5:fe:38:dc:c5:21:fe:85
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 6b:e1:0d:a0:ef:e5:99:9b:da:48:c6:e3:2a:7d:4a:cf:cb:17:a3:f0
Fingerprint (sha256): d0:61:08:d3:e4:20:c8:53:94:28:26:93:7f:2d:fb:ff:76:c9:fa:12:75:ec:22:d2:d6:f6:80:43:77:fb:f7:13
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.schunk.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.schunk.net
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
schunk.net
www.schunk.net
www.schunk.net
Other certificates including the domain name schunk.net
(limited to 100 certificates)
kiki.schunk.net
www.schunk.net
monitoring.schunk.net
kiki.schunk.net
kiki.schunk.net
vpn-gw.schunk.net
www.schunk.net
www.schunk.net
monitoring.schunk.net
monitoring.schunk.net
monitoring.schunk.net
kiki.schunk.net
www.schunk.net
www.schunk.net
www.schunk.net
schunk.net
www.schunk.net
www.schunk.net
www.schunk.net
www.schunk.net
www.schunk.net
www.schunk.net
stellar.schunk.net
www.schunk.net
vpn-gw.schunk.net
www.schunk.net
www.schunk.net
www.schunk.net
vpn-gw.schunk.net
stellar.schunk.net
monitoring.schunk.net
www.schunk.net
www.schunk.net
monitoring.schunk.net
kiki.schunk.net
kiki.schunk.net
vpn-gw.schunk.net
www.schunk.net
www.schunk.net
monitoring.schunk.net
monitoring.schunk.net
monitoring.schunk.net
kiki.schunk.net
www.schunk.net
www.schunk.net
www.schunk.net
schunk.net
www.schunk.net
www.schunk.net
www.schunk.net
www.schunk.net
www.schunk.net
www.schunk.net
stellar.schunk.net
www.schunk.net
vpn-gw.schunk.net
www.schunk.net
www.schunk.net
www.schunk.net
vpn-gw.schunk.net
stellar.schunk.net
monitoring.schunk.net
www.schunk.net
Certificate
The complete raw certificate details for www.schunk.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF8zCCBNugAwIBAgISBHNceTCdHgnaFJcdWj5xqeTKMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMjAwODA3MjJaFw0yNDAyMTgwODA3MjFaMBkxFzAVBgNVBAMT Dnd3dy5zY2h1bmsubmV0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA zRgZgL1PuD+uRFD5mhl9Sgezpmaf0EFXVABXYpH9ZJex+me34zUlnMOQbtH/5U+k kg64AGOktxHg5DdcivogEcjUHLhHZ60jYE72Vi58iUGsRJgicX8BvJ8oZZQlS8zi noDN/vaPOzl0AdWOlzK0vhRTbudsxSofbheCtgYXZOg0DdYSOqJXpYws1B0xilt8 kgsNzW4S67BaZAa4A6RnPZwsx7apPxIiiBSRV8zBdp1wkUATfummTMtWrQZG9FRX rZVehFn6tEzD2XC3CjGD32pmH8QIAaDexu+icrdXXy6LzoB+xBZopmApJ/hUoFJ+ jAABopLTrUkIR7m60f7xY3BNVmtMZMwAJYhvdTl+4qH4O26qBuuWVsfOI0YX1ELs 8kBQPIbfdj01I3CRK4n6j3rwedewonGAwu03n6uhkcNYEUv7giy0L9JBlzw47+// HUtGVAdZWxuEWg0KCdCOnczb1rBWVc07u37QOjLRIJ26Yq1LIJaC9qROvvanaCRJ AHOWT58ytrnDidSbKyNnRRCvcEr52MnJDuonr6i4LjY5w6R4WcWY/bBlHVj3Off1 5/5Sv0iqW5oNXxBrtoKVymkQ9uh1mWTgCxX/jtXLHYmgfJMphPt6bq1Stm3hoHkv o1FHV78xoehCqRVqHLhvSiZ+/7YdULujhQ2eMwwx1rkCAwEAAaOCAhowggIWMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYD VR0TAQH/BAIwADAdBgNVHQ4EFgQUjSGHZ+6GDpjhrKOLtf443MUh/oUwHwYDVR0j BBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsG AQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6 Ly9yMy5pLmxlbmNyLm9yZy8wJQYDVR0RBB4wHIIKc2NodW5rLm5ldIIOd3d3LnNj aHVuay5uZXQwEwYDVR0gBAwwCjAIBgZngQwBAgEwggECBgorBgEEAdZ5AgQCBIHz BIHwAO4AdQA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYvr/ADx AAAEAwBGMEQCIGA50j/v+IC3kEwvyqjObvhrCuQDazFTLjSWWajC1uEnAiAehGTK rBxtl77LDGM8VLXOUqNshRno55hn5dBoP3Et4AB1AEiw42vapkc0D+VqAvqdMOsc UgHLVt0sgdm7v6s52IRzAAABi+v8APMAAAQDAEYwRAIgHqK1Dj6sCZhwo6Aruzok +7jrSIfYH31gfYqL+3csxrMCIG1WtOYg3g/3tOUhDNEp0yz8aQdmQ/9+r29+e4cS i3ZXMA0GCSqGSIb3DQEBCwUAA4IBAQBNVl3LLL/tk4Qb6SCHdW6q1GJKckYjoWVS TKa68kKyxguFiMLUqwkcrTOM53eqEI9wrO24ijbCmamnkJxEASyS1qZCGK8mDlg1 s9v6tHLs6IgyCnDpaoT3fbTEBYROh9PYbV7MwC5W+mbN+3ElW6mJ7aeg2/8ZgQhX 438+3wJs2M5vWr4h+6mjZ6CIiL9IZjT9pefgXprt/H0f3/HiAETJHYlcH7nmFgFX qU0TUdNB8uJBY4YdpV3AbWyeIwJ+vx61Cx0SkYs0XHZ9cr48Y/BJnw19ompYfzz2 uMiLX9CvzTkRNHyvARcPe5CT93b3UEcdjYXbrvRBnVpiizLsy/lq -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzRgZgL1PuD+uRFD5mhl9 Sgezpmaf0EFXVABXYpH9ZJex+me34zUlnMOQbtH/5U+kkg64AGOktxHg5Ddcivog EcjUHLhHZ60jYE72Vi58iUGsRJgicX8BvJ8oZZQlS8zinoDN/vaPOzl0AdWOlzK0 vhRTbudsxSofbheCtgYXZOg0DdYSOqJXpYws1B0xilt8kgsNzW4S67BaZAa4A6Rn PZwsx7apPxIiiBSRV8zBdp1wkUATfummTMtWrQZG9FRXrZVehFn6tEzD2XC3CjGD 32pmH8QIAaDexu+icrdXXy6LzoB+xBZopmApJ/hUoFJ+jAABopLTrUkIR7m60f7x Y3BNVmtMZMwAJYhvdTl+4qH4O26qBuuWVsfOI0YX1ELs8kBQPIbfdj01I3CRK4n6 j3rwedewonGAwu03n6uhkcNYEUv7giy0L9JBlzw47+//HUtGVAdZWxuEWg0KCdCO nczb1rBWVc07u37QOjLRIJ26Yq1LIJaC9qROvvanaCRJAHOWT58ytrnDidSbKyNn RRCvcEr52MnJDuonr6i4LjY5w6R4WcWY/bBlHVj3Off15/5Sv0iqW5oNXxBrtoKV ymkQ9uh1mWTgCxX/jtXLHYmgfJMphPt6bq1Stm3hoHkvo1FHV78xoehCqRVqHLhv SiZ+/7YdULujhQ2eMwwx1rkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 387704534152484783809736295645519538676938 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-20 08:07:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-18 08:07:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.schunk.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 836711088141244655990829994491915744960346939999732883530165679663181878458528606275399424261381607630668717337068488964990169752560600050875189059146585531794272728949473024320518221724825215775765458542187807883115642811576429884340420127307418614599226589610928248941059278629427018582131973895207091938603460571817360554887652358518334874588119551254059528245912736495338283409088778674500821971973362976299915669310790680743954816775496185149551586491820144518018798021790579988858097531704912810361310850139290095214426124475138941807904222042072788685317939542402141596697479480210710459201065814473923265952689688173234505978415352962399457143845750278415121874463987178337272625592590132255376592924372328178149677927895791268194741223312488354048282133232346688100519596205979622998475507375078129235967945483448704724973082552487242695732288514617906474022198260919266785481993960852373474505017228432556835794946301236508214809925732330121664012495256611228329982837471120435952533374593532641069677314761405491416326873236938570871763157497801882073912281990154456278768043569075264363493372377897624735040455321124884832187965207584208837391876785473237346781105360694541378247185517044345641839408702661099711783622329 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8d218767ee860e98e1aca38bb5fe38dcc521fe85 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'schunk.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.schunk.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018bebfc00f1000004030046304402206039d23feff880b7904c2fcaa8ce6ef86b0ae4036b31532e349659a8c2d6e12702201e8464caac1c6d97becb0c633c54b5ce52a36c8519e8e79867e5d0683f712de000750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018bebfc00f3000004030046304402201ea2b50e3eac099870a3a02bbb3a24fbb8eb4887d81f7d607d8a8bfb772cc6b302206d56b4e620de0ff7b4e5210cd129d32cfc69076643ff7eaf6f7e7b87128b7657 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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