kpcdesign.de
Issued by R3
About this certificate
This digital certificate with serial number 04:c7:b4:fe:32:e1:7d:79:e6:dd:7a:c6:4d:51:3e:e9:0b:78 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=kpcdesign.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:c7:b4:fe:32:e1:7d:79:e6:dd:7a:c6:4d:51:3e:e9:0b:78Serial Number (int): 416405915658936743263822183909438865869688
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 16:64:85:e8:47:9d:86:d1:c6:0e:d4:a1:a3:6c:ca:97:00:6e:ea:5f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 50:e7:ab:01:c8:98:5d:36:75:fe:fd:13:e6:c8:bb:0e:bf:69:c7:ab
Fingerprint (sha256): d9:35:4e:f6:4f:10:6f:a9:8e:90:47:c6:2f:52:8c:9a:0c:2a:3d:44:29:de:14:9e:e9:23:1b:f6:33:cd:9e:35
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate kpcdesign.de
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kpcdesign.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kpcdesign.de
webmail.kpcdesign.de
www.kpcdesign.de
webmail.kpcdesign.de
www.kpcdesign.de
Other certificates including the domain name kpcdesign.de
(limited to 100 certificates)
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
www.kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
www.kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
kpcdesign.de
Certificate
The complete raw certificate details for kpcdesign.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISBMe0/jLhfXnm3XrGTVE+6Qt4MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMTgxODExMjVaFw0yNDA0MTcxODExMjRaMBcxFTATBgNVBAMT DGtwY2Rlc2lnbi5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMXR NPpbtUv/9PcFF/zCDzeJzfir/ILBqnZ18MMMH9HSbrvUJAfd+2wcXTfohZNS4JZm xzW3kUqXWWda1K9/Bcybkq0Nkpkwp87ia6tlYxwT8/qvfxEp3C7xMQo1wuAYQcpz XX8VHIf3NY4jzh2jcAiVYCm58RYsFYSI8VoXuv5gOfci/hOPlA4hjmaxC+nhizGa XGY2jIMW9PDXM3XeropumSY3LwiwVLM+rJO8qjrnVGeBx1aIvytmuwmb8mCQUOpI 6lFv/BZhHRTyepub2WP6cVaL3pKvxta5RY0jzGTwO3z9yfRQe7AH2PzyHifwr0cp vyRqE05tK8Ds07GM6LECAwEAAaOCAjcwggIzMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUFmSF6EedhtHGDtSho2zKlwBu6l8wHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w PwYDVR0RBDgwNoIMa3BjZGVzaWduLmRlghR3ZWJtYWlsLmtwY2Rlc2lnbi5kZYIQ d3d3LmtwY2Rlc2lnbi5kZTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB 1nkCBAIEgfYEgfMA8QB3AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfY AAABjR38OHEAAAQDAEgwRgIhAM7h7iHsj5GB8XYiEjwTdxJRZZcpN2TDIaxW8Etx tsZ3AiEAiRKU8rrCqhno5iwBMtyQAsLE7ODyv8FlLPi7oFn3sVkAdgA7U3d1Pi25 gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAY0d/DpcAAAEAwBHMEUCIARAqn0Q CVSpVrjwqwFHnSeSee4rY3v27lBmlUsnXbKOAiEApXdnyfIFsEQAEpx4PfLHfov3 Em52Mo8fkUJHc2btOb8wDQYJKoZIhvcNAQELBQADggEBAEUWEkq6qu2JnNrtYcex 3z02jaAt/46Zk8TepZS8Bp5SJTtJebiQvp+dF0RojL6WN6wary5N30q+SlqydKhz QPNWsnHQNIQtZbGq1VijPObdijKtSS2aWlnBTJJp1q6tMFYCfkq+pzaktz+/1W9V NqjSBzJYwpe/+D8q9aM8+6rXzQgaHfLrOyNSGGH3mxzgjcvpPRl3BAiaNRAVh6wh EScmg90ZlVmLMddYqIiblSCjH3k4VR6XG4leImsCxGdgo/w5DE+LklbXKLGX0Ul5 WpaaRi4/fX5//IhJOYXC3G7oLH378iBnXk0XJdmjq4J70toybTzxLS7qrNW8KJ7G +8I= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxdE0+lu1S//09wUX/MIP N4nN+Kv8gsGqdnXwwwwf0dJuu9QkB937bBxdN+iFk1LglmbHNbeRSpdZZ1rUr38F zJuSrQ2SmTCnzuJrq2VjHBPz+q9/ESncLvExCjXC4BhBynNdfxUch/c1jiPOHaNw CJVgKbnxFiwVhIjxWhe6/mA59yL+E4+UDiGOZrEL6eGLMZpcZjaMgxb08Nczdd6u im6ZJjcvCLBUsz6sk7yqOudUZ4HHVoi/K2a7CZvyYJBQ6kjqUW/8FmEdFPJ6m5vZ Y/pxVovekq/G1rlFjSPMZPA7fP3J9FB7sAfY/PIeJ/CvRym/JGoTTm0rwOzTsYzo sQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 416405915658936743263822183909438865869688 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-18 18:11:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-17 18:11:24 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kpcdesign.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24972109867940764940659487163017331929143339910534558730182863318963802949059402228065926735026576863423977947210583219816268996382638040799450888679812778396594164697142493488852823251342135990828364949451635895677528663176970183345186216719144506681468887613237761098104449361116662907790816601759116512180971699181237681502346211193867087013560133751326214658776831184906336126144655595196906727459606409894531486378220302148100352734670414600325132906230130390689333073027702091732201772021847187434071278115580369447363475820305953300596839585755193339159320441861219459078504542271467767394465632168890489170097 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 166485e8479d86d1c60ed4a1a36cca97006eea5f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kpcdesign.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.kpcdesign.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kpcdesign.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d1dfc38710000040300483046022100cee1ee21ec8f9181f17622123c137712516597293764c321ac56f04b71b6c677022100891294f2bac2aa19e8e62c0132dc9002c2c4ece0f2bfc1652cf8bba059f7b1590076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d1dfc3a5c000004030047304502200440aa7d100954a956b8f0ab01479d279279ee2b637bf6ee5066954b275db28e022100a57767c9f205b04400129c783df2c77e8bf7126e76328f1f9142477366ed39bf . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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