*.baelz.de
Issued by Encryption Everywhere DV TLS CA - G2
About this certificate
This digital certificate with serial number 0a:40:57:89:a2:32:9a:44:10:0e:6f:07:23:4a:4f:f6 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.baelz.de
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0a:40:57:89:a2:32:9a:44:10:0e:6f:07:23:4a:4f:f6Serial Number (int): 13626362430886916228817731854747193334
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: a5:07:d4:37:8e:3f:19:36:89:a6:80:00:d1:a8:e8:4e:b4:65:be:c6
AuthorityKeyId: 78:df:91:90:5f:ee:de:ac:f6:c5:75:eb:d5:4c:55:53:ef:24:4a:b6
Fingerprint (sha1): 1c:b3:b2:23:e4:e8:ba:f6:ca:ff:99:ba:c6:33:38:2b:3b:28:ac:f8
Fingerprint (sha256): d9:c4:b8:bd:14:ab:d0:85:0a:88:27:12:25:25:75:e8:76:6e:93:2f:ba:f4:d7:23:09:95:b0:94:34:cb:38:e4
Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCheck the revocation status for certificate *.baelz.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.baelz.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.baelz.de
baelz.de
baelz.de
Other certificates including the domain name baelz.de
(limited to 100 certificates)
w.baelz.de
www.baelz.de
w.baelz.de
cag.baelz.de
www.baelz.de
www.baelz.de
w.baelz.de
w.baelz.de
starface.baelz.de
news.baelz.de
owa.baelz.de
*.baelz.de
*.baelz.de
w.baelz.de
baelz.de
owa.baelz.de
*.baelz.de
w.baelz.de
tsbf.baelz.de
cloud.baelz.de
*.baelz.de
*.baelz.de
cloud.baelz.de
w.baelz.de
owa.baelz.de
*.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
cag.baelz.de
w.baelz.de
news.baelz.de
cloud.baelz.de
*.baelz.de
w.baelz.de
cag.baelz.de
*.baelz.de
w.baelz.de
*.baelz.de
w.baelz.de
owa.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
owa.baelz.de
www.baelz.de
*.baelz.de
www.baelz.de
w.baelz.de
cag.baelz.de
www.baelz.de
www.baelz.de
w.baelz.de
w.baelz.de
starface.baelz.de
news.baelz.de
owa.baelz.de
*.baelz.de
*.baelz.de
w.baelz.de
baelz.de
owa.baelz.de
*.baelz.de
w.baelz.de
tsbf.baelz.de
cloud.baelz.de
*.baelz.de
*.baelz.de
cloud.baelz.de
w.baelz.de
owa.baelz.de
*.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
cag.baelz.de
w.baelz.de
news.baelz.de
cloud.baelz.de
*.baelz.de
w.baelz.de
cag.baelz.de
*.baelz.de
w.baelz.de
*.baelz.de
w.baelz.de
owa.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
w.baelz.de
owa.baelz.de
www.baelz.de
*.baelz.de
Certificate
The complete raw certificate details for *.baelz.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9TCCBN2gAwIBAgIQCkBXiaIymkQQDm8HI0pP9jANBgkqhkiG9w0BAQsFADBu MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg RFYgVExTIENBIC0gRzIwHhcNMjMwOTIyMDAwMDAwWhcNMjQxMDA2MjM1OTU5WjAV MRMwEQYDVQQDDAoqLmJhZWx6LmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEArfgPUcPVXkU/nI8dML+XDOs8zHep//CVl2g/NB+C6NPyzTSEBdm5onS/ pIT5yU7KoYzdqdblUhDsvAXYultIYv6CsW+R6FKU9tjcl/wlXbKNN71Ba8yZ/OlA AKcv63lLOm0JBuM6qUELZHd2bjeKSjlgADWI1/bmd7NDFIvSwUN3eFuyU7pa2Qh6 8r8rAVJaS56lSHThyyV63GskyHBaJfbktroRC1bOndk2XTyIYBooUrV9FZywOD31 pHq4TUh14+EGPYYQVGGGvvDesVed9rjhdPiiwjJ2oo0n81AFmvXqMlmXE8guVMxD iZKkzLS0z6KTC07JLymudkWVNT54LwIDAQABo4IC5jCCAuIwHwYDVR0jBBgwFoAU eN+RkF/u3qz2xXXr1UxVU+8kSrYwHQYDVR0OBBYEFKUH1DeOPxk2iaaAANGo6E60 Zb7GMB8GA1UdEQQYMBaCCiouYmFlbHouZGWCCGJhZWx6LmRlMD4GA1UdIAQ3MDUw MwYGZ4EMAQIBMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29t L0NQUzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMIGABggrBgEFBQcBAQR0MHIwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRp Z2ljZXJ0LmNvbTBKBggrBgEFBQcwAoY+aHR0cDovL2NhY2VydHMuZGlnaWNlcnQu Y29tL0VuY3J5cHRpb25FdmVyeXdoZXJlRFZUTFNDQS1HMi5jcnQwDAYDVR0TAQH/ BAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHUA7s3QZNXbGs7FXLedtM0T ojKHRny87N7DUUhZRnEftZsAAAGKu2jwOwAABAMARjBEAiABgVEoh/cMrtzzKxb4 ZVnh5HBRaw6TAUVgjhVMXZwvxAIgMQEeJfl3NR7baxlZHrtACtn0zo0aeg5zYDZq izfL3t0AdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYq7aPAI AAAEAwBHMEUCIGM8M65Tn25DqbV5obtBp5RbVIT37GRFnDhtymxPIDi4AiEAqgKB EVf+PTjeM8cZwUmDXsuhy8hnuLo0INtr63IJdm0AdgDatr9rP7W2Ip+bwrtca+hw kXFsu1GEhTS9pD0wSNf7qwAAAYq7aO/dAAAEAwBHMEUCIQDIjwVSE+yP+VFRE7BM fnZXp7JTnPG4NzR4LL4Haz/rSwIgPwa8XwsPbghU1FSw0ZFQio/+kZJ5P0d3MRmm lvl41xIwDQYJKoZIhvcNAQELBQADggEBAC/K2fLWZjBkQaV2c5RQvK9LUAWWrlLp RGTpZLzDJ70qdsC3dtVQ4q/l5FXCPHzvq9ZWl1fnAS9cS88YDbsdqTWy1oZZl0rv exPZUTVncw7R2s+Lgsg+xdrLLfwrK17fOOiJx6gDosA+3T+SUnqqvwqkqV1UurwN 6nVfNcPkR9aJbxSSR0Tor5lzEOJM7OkJ4/ex2hjmJSR5y/PmnR9H28/abNM8tOGu DlzT0NXVQ5TEhCHB6ra6KfOMP6xs+tXIzCVRDxASbrkdHM8yYgjPzMJ3g9ZTVZag Uu7iTw9/X3dgfIewW8OxU0phBpsmfJrZvsCXlUw9031QfSeVCICuCNw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfgPUcPVXkU/nI8dML+X DOs8zHep//CVl2g/NB+C6NPyzTSEBdm5onS/pIT5yU7KoYzdqdblUhDsvAXYultI Yv6CsW+R6FKU9tjcl/wlXbKNN71Ba8yZ/OlAAKcv63lLOm0JBuM6qUELZHd2bjeK SjlgADWI1/bmd7NDFIvSwUN3eFuyU7pa2Qh68r8rAVJaS56lSHThyyV63GskyHBa JfbktroRC1bOndk2XTyIYBooUrV9FZywOD31pHq4TUh14+EGPYYQVGGGvvDesVed 9rjhdPiiwjJ2oo0n81AFmvXqMlmXE8guVMxDiZKkzLS0z6KTC07JLymudkWVNT54 LwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13626362430886916228817731854747193334 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-06 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.baelz.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21961549625950518394636939613534552587754790265407252231263175541892003953779685861948752765797835674567209980622332709801206924795671546653965423358937655988238973460978638545184475435586090533984106924858376964623876815057679628883452703125370563925966919037662854543938229345837734327247445459072373111829330533841575355152227310558582250950074110846725293202765227860555852459126664890999701180239375799242804894810970815313789861287756350523249452765714675981593270114503603234760266283464375629323119239285933451583466347508187916222140322656977725955534109009862947469060966768367686378410545767730627429169199 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 78df91905feedeacf6c575ebd54c5553ef244ab6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a507d4378e3f193689a68000d1a8e84eb465bec6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.baelz.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'baelz.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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