vs-habilis.de

Issued by R3

About this certificate

This digital certificate with serial number 03:b7:2b:62:8d:1e:1a:7d:63:b6:75:ba:7a:49:58:65:93:3b was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=vs-habilis.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:b7:2b:62:8d:1e:1a:7d:63:b6:75:ba:7a:49:58:65:93:3b
Serial Number (int): 323666199452928163736488050517459874452283
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: c8:14:fd:c0:f6:bd:dd:24:2e:31:71:9f:98:ab:70:82:af:29:ed:89
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 4e:1d:8d:07:55:25:69:fa:54:c7:c3:83:8d:03:e5:3b:5f:eb:02:3e
Fingerprint (sha256): d2:0e:66:ef:96:3a:1f:f1:53:9f:ac:57:35:cb:64:b7:b9:c9:26:f4:cd:8b:93:a6:32:90:b8:65:23:5e:33:bb

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate vs-habilis.de

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for vs-habilis.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

vs-habilis.de
www.vs-habilis.de

Other certificates including the domain name vs-habilis.de

(limited to 100 certificates)
piwik.vs-habilis.de
vs-habilis.de
vs-habilis.de
vs-habilis.de
piwik.vs-habilis.de
www2.vs-habilis.de
vs-habilis.de
piwik.vs-habilis.de
piwik.vs-habilis.de
piwik.vs-habilis.de
vs-habilis.de
www2.vs-habilis.de
ruehen.vs-habilis.de
vs-habilis.de
piwik.vs-habilis.de
www2.vs-habilis.de
vs-habilis.de
vs-habilis.de
www2.vs-habilis.de
piwik.vs-habilis.de
vs-habilis.de
www2.vs-habilis.de
vs-habilis.de
piwik.vs-habilis.de
piwik.vs-habilis.de
vs-habilis.de
piwik.vs-habilis.de
vs-habilis.de
piwik.vs-habilis.de
piwik.vs-habilis.de
vs-habilis.de
www2.vs-habilis.de
vs-habilis.de
www2.vs-habilis.de
piwik.vs-habilis.de
ruehen.vs-habilis.de
vs-habilis.de
www.vs-habilis.de
vs-habilis.de
vs-habilis.de
vs-habilis.de
alt.vs-habilis.de
www2.vs-habilis.de
piwik.vs-habilis.de
www2.vs-habilis.de
vs-habilis.de
piwik.vs-habilis.de
piwik.vs-habilis.de
vs-habilis.de
piwik.vs-habilis.de
zwei.vs-habilis.de
vs-habilis.de
vs-habilis.de
vs-habilis.de
piwik.vs-habilis.de
vs-habilis.de
ruehen.vs-habilis.de
vs-habilis.de
piwik.vs-habilis.de
www2.vs-habilis.de
www2.vs-habilis.de
www2.vs-habilis.de
vs-habilis.de
piwik.vs-habilis.de
piwik.vs-habilis.de
piwik.vs-habilis.de
piwik.vs-habilis.de
www2.vs-habilis.de
pluto.vs-habilis.de

Certificate

The complete raw certificate details for vs-habilis.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIE+TCCA+GgAwIBAgISA7crYo0eGn1jtnW6eklYZZM7MA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yMzEwMDUxMDAxNTZaFw0yNDAxMDMxMDAxNTVaMBgxFjAUBgNVBAMT
DXZzLWhhYmlsaXMuZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG
JolAK1+w/woLiv9Jf41omVQYOtX222cRajSs3w9TX8te8dzGzlaaynJAaCplhfre
TgGrH2RPHqJ9IU3Rlik+APqcXxSEwNnUzX+COEM+0qoFA+3aFleQ8eZ/s5J1ovRK
Jh8ppxNGDj8aAZ+kdEKIxKdubdZUGfZDiWMRIpACb99NUCkWj7DKDxYhaKyRXP1F
odaL05GviCCriCu4pKiXZKlTW0cQWSz5n79Lvtqwd6OjsWL9V/6/5e115fCZWkt1
WO1rkiKos3gc11NuvCNlwdZYcfx4S6s3aSR8vWEYNmb+EVK4nf54/hmR72vY0LD9
/ksvfRHvgJqRJ/HW1X4VAgMBAAGjggIhMIICHTAOBgNVHQ8BAf8EBAMCBaAwHQYD
VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O
BBYEFMgU/cD2vd0kLjFxn5ircIKvKe2JMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ
QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz
Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv
MCsGA1UdEQQkMCKCDXZzLWhhYmlsaXMuZGWCEXd3dy52cy1oYWJpbGlzLmRlMBMG
A1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYA2ra/
az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGK/4BcbwAABAMARzBFAiBh
XRZ/o+OGpTBOOtkaE56/tcWivR0y7bfS4bZLTSzTpgIhAPoPZGm7RRwT4mpACRj7
OxKD4YSsoBpC669Qjyl1C2wjAHUAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1y
b+H61BcAAAGK/4BcxAAABAMARjBEAiBC1KFglSYcn27t5p15B57PcH9rF6hmybtz
Yux3B8KeCAIgIJ2rjAVzMvbKLzerDt5+X24QRjcmCXBRBbv1mpMb0IgwDQYJKoZI
hvcNAQELBQADggEBALj8pFSKTbPx6IKt8GtR6zSFCh4qocLGjZXgZ07ivo3yaEha
L2OAJJRzWQgYOqBX1Q9wOLX/jClDnYwl0eJ5SC32RXoJSY3Z3FKMHX8TfeeNJb2M
m6g2Y1dLiEkXtFwIm4P1tefBMDV9iRPnF8Ioyh25e5nlx6Dh216eaeCwRyjjibX7
+uZudhTHxErS4J/M8+GnHhalDFa1Bys7XkDuGsUHCvnHzAS9CZ/07jdVWShLE4jH
P2OJVQB0130WhPlUNExhoAQAnu4weaSUTW5u0jPxkRYBHy3LMnz0a+9bJhs8IdEt
7L6lfQCrherIp1ki6F1+yJP2mKJciH+H9Jfihtw=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxiaJQCtfsP8KC4r/SX+N
aJlUGDrV9ttnEWo0rN8PU1/LXvHcxs5WmspyQGgqZYX63k4Bqx9kTx6ifSFN0ZYp
PgD6nF8UhMDZ1M1/gjhDPtKqBQPt2hZXkPHmf7OSdaL0SiYfKacTRg4/GgGfpHRC
iMSnbm3WVBn2Q4ljESKQAm/fTVApFo+wyg8WIWiskVz9RaHWi9ORr4ggq4gruKSo
l2SpU1tHEFks+Z+/S77asHejo7Fi/Vf+v+XtdeXwmVpLdVjta5IiqLN4HNdTbrwj
ZcHWWHH8eEurN2kkfL1hGDZm/hFSuJ3+eP4Zke9r2NCw/f5LL30R74CakSfx1tV+
FQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 323666199452928163736488050517459874452283
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-05 10:01:56 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-03 10:01:55 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vs-habilis.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25014187259891162793761278115480269947607351806104608567392588736151133879377752400173327024597583905278122573512051227860183467989710853898635692499161331244907752043132406097303313953588638999168714680951551066749675096678452182535392868752318416151783314490388231167146512823457969798920054934180387053673912123027431973865539005070158315135373696827918716537321905791915073360189305861308022550991387194441266049388277977615247174733057075147839939456637468494181233602398566368932754802029436374605601509689298626236590647017402342528083146986345043245960144540234702549863073233243770024189337948872347737226773
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c814fdc0f6bddd242e31719f98ab7082af29ed89
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vs-habilis.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.vs-habilis.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018aff805c6f00000403004730450220615d167fa3e386a5304e3ad91a139ebfb5c5a2bd1d32edb7d2e1b64b4d2cd3a6022100fa0f6469bb451c13e26a400918fb3b1283e184aca01a42ebaf508f29750b6c230075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018aff805cc40000040300463044022042d4a16095261c9f6eede69d79079ecf707f6b17a866c9bb7362ec7707c29e080220209dab8c057332f6ca2f37ab0ede7e5f6e1046372609705105bbf59a931bd088
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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