crossfit-nordlicht.de

Issued by StartCom Class 1 DV Server CA

About this certificate


This digital certificate with serial number 55:c0:f2:7a:fe:1b:9a:09:86:ff:bd:11:02:95:f6:2f was issued on by StartCom Ltd. .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present
  • WARNING: Certificate contains unknown extension ([2.5.29.18])

crossfit-nordlicht.de

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: StartCom Certification Authority

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 55:c0:f2:7a:fe:1b:9a:09:86:ff:bd:11:02:95:f6:2f
Serial Number (int): 113986218726159007457931239699672069679
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: 9e:f1:37:34:28:cb:d9:0f:1c:18:df:92:92:19:b9:48:f0:d4:d8:0d
AuthorityKeyId: d7:91:4e:01:c4:b0:bf:f8:c8:67:93:44:9c:e7:33:fa:ad:93:0c:af

Fingerprint (sha1): e7:a3:4a:b3:b6:c0:e6:0c:62:1a:d7:2a:f9:04:52:98:f7:60:28:ad
Fingerprint (sha256): 4c:80:31:de:99:c4:fc:3a:a2:66:4c:30:69:83:dd:da:70:ed:e5:b2:b5:cd:0e:f4:50:05:b6:d3:2e:de:aa:67

Issuing Certificate URL: http://aia.startssl.com/certs/sca.server1.crt

Revocation information

OCSP Server: http://ocsp.startssl.com
CRL Distribution Point: http://crl.startssl.com/sca-server1.crl

Check the revocation status for the current certificate on crossfit-nordlicht.de
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Client Authentication
Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

crossfit-nordlicht.de
www.crossfit-nordlicht.de

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIF/jCCBOagAwIBAgIQVcDyev4bmgmG/70RApX2LzANBgkqhkiG9w0BAQsFADB4 MQswCQYDVQQGEwJJTDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjEpMCcGA1UECxMg U3RhcnRDb20gQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkxJjAkBgNVBAMTHVN0YXJ0 Q29tIENsYXNzIDEgRFYgU2VydmVyIENBMB4XDTE1MTIyNDEzNDk0M1oXDTE2MTIy NDEzNDk0M1owIDEeMBwGA1UEAwwVY3Jvc3NmaXQtbm9yZGxpY2h0LmRlMIICIjAN BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzMOw3GVxwprO02iUogl7DVJkJxpQ QAlqCNGJ0LSD6r7ImH7nyjo1/HQNO28dj8WTaqVHJ8+Pl5JCYDeBIiqGqTjSIC/J IuL13mUZZZVLAZDwvcK41km0Bhtp0AHGDIYtXdGwNIAzFT+puiX5bOZ8FkVnpqYs dRHl2V2ZdHxSLZbSxgmene2GcGqe3v1X5EE7R0rCLF1EcFcEiCbWF+GHXNnR2jKL i+Vo9GNMUfh+bBdlcr/0R0pLaDEi1iEt/TtOCQsI1pNH1cHn96rtH5Cv1K7TyXZD 3S4LqiJPt+1gkIXZnW+pQc9SmeTg50vKZYZgBqLgmw0xDmBQv1VJ2rzo3VWAA+Zf AaPwt9y6JpWB2Cga+JZwAshRHUBB/hBgKneBsOSZGS8oZkiQpQKvBTyTGbNzb473 9GgWqJ7U7E7Drk+RRdzPodvtknP0An0Y+NWwU+grbzTxTsgdp/cEdZOi2GIyNZ96 uYv/28b1SVdqRChXsi8XmhdfKAuuLpIflUvNVmtg9PJ8sBN9FwqO31Q06spyMsGO VF7s9fNAMnNYyDzE0+XBn0UPOjtVnQCsk5IyRidwCS1uYid+RXTGpTjkLa3hKmCE 6J/MYSdy6ggXsAt8AeBusGiFRYdDNGSu4X2TbnM+BbH9fklpmcM2olBNezemXCkS jIv6cZhVNRAYmGMCAwEAAaOCAdowggHWMAsGA1UdDwQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAgYIKwYBBQUHAwEwCQYDVR0TBAIwADAdBgNVHQ4EFgQUnvE3NCjL 2Q8cGN+Skhm5SPDU2A0wHwYDVR0jBBgwFoAU15FOAcSwv/jIZ5NEnOcz+q2TDK8w bwYIKwYBBQUHAQEEYzBhMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5zdGFydHNz bC5jb20wOQYIKwYBBQUHMAKGLWh0dHA6Ly9haWEuc3RhcnRzc2wuY29tL2NlcnRz L3NjYS5zZXJ2ZXIxLmNydDA4BgNVHR8EMTAvMC2gK6AphidodHRwOi8vY3JsLnN0 YXJ0c3NsLmNvbS9zY2Etc2VydmVyMS5jcmwwOwYDVR0RBDQwMoIVY3Jvc3NmaXQt bm9yZGxpY2h0LmRlghl3d3cuY3Jvc3NmaXQtbm9yZGxpY2h0LmRlMCMGA1UdEgQc MBqGGGh0dHA6Ly93d3cuc3RhcnRzc2wuY29tLzBQBgNVHSAESTBHMAgGBmeBDAEC ATA7BgsrBgEEAYG1NwECBDAsMCoGCCsGAQUFBwIBFh5odHRwOi8vd3d3LnN0YXJ0 c3NsLmNvbS9wb2xpY3kwDQYJKoZIhvcNAQELBQADggEBAGR+UasYBKvSJkLOzfna Vi1NjP8l2tYHmEYF+irPKBcyaQXMSu4rsdOiC0m4z0/EdoVV7D0nzB5v4mib1tCt 6IYy2i5CkQHyU7SrB2sbmq2eQVSqVwOajROgQUEu/MEQkXHFdcU158XiT7kuisM0 HU9rtkAcnDOKritzbCDM9hRL4Apo1pDnWihkFr3kExsNV4Un/IjEXKhlg8hDR2uR VnM+91t3Es+RixstmYFmW9PGF2VAB/ByFV8HKnUG/vYYyHeGOceitXBMOqqafdzK fBNsem06mzc8z32DOMa2acTW0T/FwgPu3TqvnjMBv/NiDa7a3GrzIDvWGFgLGlMK aJ4= -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzMOw3GVxwprO02iUogl7 DVJkJxpQQAlqCNGJ0LSD6r7ImH7nyjo1/HQNO28dj8WTaqVHJ8+Pl5JCYDeBIiqG qTjSIC/JIuL13mUZZZVLAZDwvcK41km0Bhtp0AHGDIYtXdGwNIAzFT+puiX5bOZ8 FkVnpqYsdRHl2V2ZdHxSLZbSxgmene2GcGqe3v1X5EE7R0rCLF1EcFcEiCbWF+GH XNnR2jKLi+Vo9GNMUfh+bBdlcr/0R0pLaDEi1iEt/TtOCQsI1pNH1cHn96rtH5Cv 1K7TyXZD3S4LqiJPt+1gkIXZnW+pQc9SmeTg50vKZYZgBqLgmw0xDmBQv1VJ2rzo 3VWAA+ZfAaPwt9y6JpWB2Cga+JZwAshRHUBB/hBgKneBsOSZGS8oZkiQpQKvBTyT GbNzb4739GgWqJ7U7E7Drk+RRdzPodvtknP0An0Y+NWwU+grbzTxTsgdp/cEdZOi 2GIyNZ96uYv/28b1SVdqRChXsi8XmhdfKAuuLpIflUvNVmtg9PJ8sBN9FwqO31Q0 6spyMsGOVF7s9fNAMnNYyDzE0+XBn0UPOjtVnQCsk5IyRidwCS1uYid+RXTGpTjk La3hKmCE6J/MYSdy6ggXsAt8AeBusGiFRYdDNGSu4X2TbnM+BbH9fklpmcM2olBN ezemXCkSjIv6cZhVNRAYmGMCAwEAAQ== -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 113986218726159007457931239699672069679 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Ltd.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Certification Authority' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Class 1 DV Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-12-24 13:49:43 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-24 13:49:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'crossfit-nordlicht.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 835365940924241479166397347734754638967303624686605191976643230330741189565266136013861580586271156810449637331310773093677322174716022817806364583168690481802066370112829387928253715959981871092054077948118996323569247928228996681987392149805929643082209143145153660005374125365886626137724649267849510902319344198402650838968249915186391219209376619413900896237974812924974408359985468919102674515509042729792368363352420716250298178885453942681444939002665261201446973604026118709612609709366134626070453454591920408692056765429896628430101035594492889318435311491063291325763657824401775679710049895573113792604862274687833155892948476317213001952610453909424885592725082710114704999623559129051406157707534966402718984144316701682699002176857072405822389817627887288997807328134821140389866922374421880453697574327288351171114577346097958141676690067364785310435237191939803537333624523670600681790258736957518347996012736147990641677388810304763174395783678685233692901398816232023638061130063223994291116311457546956297103931597551928619240219173806773952705927162824777003541189826365951275695086035520569047344749059602918444751277683499956887089324573473156826727325060568799784140915769029530592531680356512995158686996579 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9ef1373428cbd90f1c18df929219b948f0d4d80d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d7914e01c4b0bff8c86793449ce733faad930caf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.startssl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.startssl.com/certs/sca.server1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.startssl.com/sca-server1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'crossfit-nordlicht.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.crossfit-nordlicht.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.18 (issuerAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.startssl.com/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.23223.1.2.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.startssl.com/policy' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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