rt-forum.de
Issued by R3
About this certificate
This digital certificate with serial number 03:90:9c:fe:05:16:e2:4b:d8:5e:8e:42:e6:2a:aa:3c:a3:e5 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=rt-forum.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:90:9c:fe:05:16:e2:4b:d8:5e:8e:42:e6:2a:aa:3c:a3:e5Serial Number (int): 310546197145865496297991950506302923121637
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 92:6d:fa:59:8f:28:e8:29:a5:6f:cd:99:fe:a8:9f:4f:31:12:61:3d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 0f:a9:50:d0:29:79:6f:a4:20:74:81:fc:b0:64:14:41:a5:41:42:df
Fingerprint (sha256): db:ab:bb:ea:aa:f8:a7:a1:24:bb:29:97:31:f3:57:fd:16:79:7c:ba:db:ae:39:7b:db:72:6d:c1:db:7a:77:ff
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate rt-forum.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rt-forum.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rt-forum.de
www.rt-forum.de
www.rt-forum.de
Other certificates including the domain name rt-forum.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for rt-forum.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9TCCBN2gAwIBAgISA5Cc/gUW4kvYXo5C5iqqPKPlMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjgxMzU3MjNaFw0yNDA2MjYxMzU3MjJaMBYxFDASBgNVBAMT C3J0LWZvcnVtLmRlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAocLE TpWA0BYhhok1kstni4QkQtkVR+5+ku2i3qZE3KCplvNGBvPLy81hPnadIjMs0CH2 MEa7Mq/Eyx+/vVk8j4PiQfvKlztiP2Y6TSjaHf0e86juzhj1m7E4rziy2/5fK+kB M6rJLzb3O6JFKgBe6Hvu44okRqOKO76MqrcGXFkD7NPCVYgnAi7reO4Qn1C1aPMB uEall54wBf4gHw8L7Orukz/L7Tbnr0aMpArEAM+bGy9h+XQWPKDG6wvEokYa0GWk SzV5nxcCZheU+JgY1/VHc5HTnTTQU0op6VEbysT2Lg5jQiqKF6AtpenfA3ZBSrK5 0K6fqwifjr1BWhdTJ652n7I3hKffJsQFPgghcsJzUAYh3x4YVXAWLDUUfUvav08P pr6YEnf2ZD97d4TuM1P7cTsGv6v930+pzh8p9kZEdV/si7DEA0hdXdK/Bgvi1ty1 vSGRCLJeTn26TqoilMVj+XFN0v/CvHa23aX7GE8yAuNfw9YeHGqUWMYkmfQa/7zx 6AHMBDZUDYwTDjmfpsHzkSmUkQRiyCBSkKOAHh58hT+kaf3ZHb/hdpV2lwpuHN6R NleYmB1dOBOLDconnC4mkkJ9bKrGXYKVsOFMqUDwQI9E6nTiNzG0y3+65pKv0YIs Xj4BYuo6HsDeN5BI+7kVJF/1JaEGGxOTfOLha5cCAwEAAaOCAh8wggIbMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQUkm36WY8o6Cmlb82Z/qifTzESYT0wHwYDVR0jBBgw FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y My5pLmxlbmNyLm9yZy8wJwYDVR0RBCAwHoILcnQtZm9ydW0uZGWCD3d3dy5ydC1m b3J1bS5kZTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYE gfMA8QB2AD8XS0/XIkdYlB1lHIS+DRLtkDd/H4Vq68G/KIXs+GRuAAABjoWQz+UA AAQDAEcwRQIgJE/M1KjWyHu6wQ9emGenvzUbTFNR3DCn3vvfWaMlSkQCIQD2vOSA zO38vP20IwMOM9xJeuANRO/2SYiM1dYDYwXMrAB3AEiw42vapkc0D+VqAvqdMOsc UgHLVt0sgdm7v6s52IRzAAABjoWQz9sAAAQDAEgwRgIhAOCWJsGMjbGjtedR+Dqa Km/Mz7j9350P4qa2rmENgAM8AiEA6S/CFXQcHpmMZ3wpmopeucaJt1ea9TwnZKDq hV7tW3MwDQYJKoZIhvcNAQELBQADggEBAGrihwDaesCzaYfATvJCGRMaL4VQDc02 8rGHC7T3v4M6IbbJWaoySsGqB348xh4b8jnUWJkTPJZyOMgf5pfWlz9D6/sJQ3mb XP7B/1oLNvuZRNq+0ezsHuUl24qs9TKqWSniczmy5g5+FyoIs7EgvGHo/S5wd9qU BBAPe9pO/vYLomyDz7mP9n3Nh/gGB3Ai6r5YhfJvFcbEV7Z/w466T9NOzKYJjE55 s9jpVSii3NX01TtwXt4tQM3oC6tcz5QGrPvZ2ErADgBrSrhFxaM78Bk91GVyN6W1 Vdrp86QX5E3b9ngeJpbprp7FB+Zg7vFSXj+VB59ehDCsrThxgQBGfgY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAocLETpWA0BYhhok1kstn i4QkQtkVR+5+ku2i3qZE3KCplvNGBvPLy81hPnadIjMs0CH2MEa7Mq/Eyx+/vVk8 j4PiQfvKlztiP2Y6TSjaHf0e86juzhj1m7E4rziy2/5fK+kBM6rJLzb3O6JFKgBe 6Hvu44okRqOKO76MqrcGXFkD7NPCVYgnAi7reO4Qn1C1aPMBuEall54wBf4gHw8L 7Orukz/L7Tbnr0aMpArEAM+bGy9h+XQWPKDG6wvEokYa0GWkSzV5nxcCZheU+JgY 1/VHc5HTnTTQU0op6VEbysT2Lg5jQiqKF6AtpenfA3ZBSrK50K6fqwifjr1BWhdT J652n7I3hKffJsQFPgghcsJzUAYh3x4YVXAWLDUUfUvav08Ppr6YEnf2ZD97d4Tu M1P7cTsGv6v930+pzh8p9kZEdV/si7DEA0hdXdK/Bgvi1ty1vSGRCLJeTn26Tqoi lMVj+XFN0v/CvHa23aX7GE8yAuNfw9YeHGqUWMYkmfQa/7zx6AHMBDZUDYwTDjmf psHzkSmUkQRiyCBSkKOAHh58hT+kaf3ZHb/hdpV2lwpuHN6RNleYmB1dOBOLDcon nC4mkkJ9bKrGXYKVsOFMqUDwQI9E6nTiNzG0y3+65pKv0YIsXj4BYuo6HsDeN5BI +7kVJF/1JaEGGxOTfOLha5cCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 310546197145865496297991950506302923121637 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-28 13:57:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-26 13:57:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rt-forum.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 659926520414415983651866906177119309113232206678406890467756425620593040452718251106071756794659976743356123180002717303408068763157008660484313253813443459256056473854001824738824826084983879688772882055906151616297849469736859463980029914918819523611491949737525363725213720990681632121018797213350361395162412003860445065526035025265980778080850541638211355627016551089775182518959416567482944282766235830295492832088555633983428491426200943903160163235748533127927830462288052670730752685139502064458328549145765422082571044628713907703994476756027745819196549427110156409666166095943304969971829169641747600820785695927085741095700759038644856351660646891698954443242096333307742765064454663758065502963038314690862560851800573823563233099950992991732632586748558093896107084295978610296402387208164977765453029290861359364264377976954038237265582405165895603271942850795929715813840512408149034126373263130900487369200013320201076532949041690831207330249206259429250313754173197916937014088234571554883220930122745403314793343880988191949831959803244471468643540265101036507416290833022911821546131157319890007458228237550207634118065641442878777473385701752600592302118005715473812022804315593630897578590807186129585600293783 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 926dfa598f28e829a56fcd99fea89f4f3112613d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rt-forum.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rt-forum.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018e8590cfe500000403004730450220244fccd4a8d6c87bbac10f5e9867a7bf351b4c5351dc30a7defbdf59a3254a44022100f6bce480ccedfcbcfdb423030e33dc497ae00d44eff649888cd5d6036305ccac00770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e8590cfdb0000040300483046022100e09626c18c8db1a3b5e751f83a9a2a6fcccfb8fddf9d0fe2a6b6ae610d80033c022100e92fc215741c1e998c677c299a8a5eb9c689b7579af53c2764a0ea855eed5b73 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 006ae28700da7ac0b36987c04ef24219131a2f85500dcd36f2b1870bb4f7bf833a21b6c959aa324ac1aa077e3cc61e1bf239d45899133c967238c81fe697d6973f43ebfb0943799b5cfec1ff5a0b36fb9944dabed1ecec1ee525db8aacf532aa5929e27339b2e60e7e172a08b3b120bc61e8fd2e7077da9404100f7bda4efef60ba26c83cfb98ff67dcd87f806077022eabe5885f26f15c6c457b67fc38eba4fd34ecca6098c4e79b3d8e95528a2dcd5f4d53b705ede2d40cde80bab5ccf9406acfbd9d84ac00e006b4ab845c5a33bf0193dd4657237a5b555dae9f3a417e44ddbf6781e2696e9ae9ec507e660eef1525e3f95079f5e8430acad38718100467e06