digum.de
Issued by R3
About this certificate
This digital certificate with serial number 03:f3:3b:59:25:64:ab:2f:24:97:a6:60:89:4a:a1:f7:13:e6 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=digum.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:f3:3b:59:25:64:ab:2f:24:97:a6:60:89:4a:a1:f7:13:e6Serial Number (int): 344104360281665456713165843755572412224486
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 1b:cf:fb:d0:ba:d1:27:25:ac:d0:08:1a:3d:bd:3b:6b:ed:cb:23:25
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f4:33:51:d3:35:9e:48:84:7c:94:7c:72:93:f0:e4:3f:2d:36:0c:f4
Fingerprint (sha256): e1:f3:8c:8f:87:54:c5:87:a0:4e:2a:d7:35:90:9f:8f:eb:1b:70:e6:f8:f5:d2:c2:69:46:16:82:d2:3c:d0:15
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate digum.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for digum.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
digum.de
Other certificates including the domain name digum.de
(limited to 100 certificates)
facturen.youngcoders.nl
finance.robvens.nl
facturen.youngcoders.nl
www.web.digum.de
*.digum.de
digum.de
invoice.bmine.io
accounts.bcctelemarketing.co.uk
digum.de
facturen.youngcoders.nl
digum.de
facturen.youngcoders.nl
pay.classictravelandtours.com
www.digum.de
invoice.besc.be
www.web.digum.de
digum.de
digum.de
agent.tuketravel.se
www.digum.de
rechnungen.digum.de
www.digum.de
facturen.youngcoders.nl
*.digum.de
mybill.cityaddress.co.uk
invoice.mediologysoftware.com
*.digum.de
www.web.digum.de
www.web.digum.de
digum.de
www.digum.de
digum.de
clients.broomx.com
usinvoice.sujaynsg.in
werkbank.digum.de
finance.robvens.nl
facturen.youngcoders.nl
www.web.digum.de
*.digum.de
digum.de
invoice.bmine.io
accounts.bcctelemarketing.co.uk
digum.de
facturen.youngcoders.nl
digum.de
facturen.youngcoders.nl
pay.classictravelandtours.com
www.digum.de
invoice.besc.be
www.web.digum.de
digum.de
digum.de
agent.tuketravel.se
www.digum.de
rechnungen.digum.de
www.digum.de
facturen.youngcoders.nl
*.digum.de
mybill.cityaddress.co.uk
invoice.mediologysoftware.com
*.digum.de
www.web.digum.de
www.web.digum.de
digum.de
www.digum.de
digum.de
clients.broomx.com
usinvoice.sujaynsg.in
werkbank.digum.de
Certificate
The complete raw certificate details for digum.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF3DCCBMSgAwIBAgISA/M7WSVkqy8kl6ZgiUqh9xPmMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MTcwNzM1MDVaFw0yNDA4MTUwNzM1MDRaMBMxETAPBgNVBAMT CGRpZ3VtLmRlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAm/WSbSlO z6NVfnKiItW+jYa53gVCwVEInjszBYljhtIJ3tXi/GzHTWgy7Fw6h6f//GQC6mcf knOj7P1velmEM18ZWe/DXmB7qRSqpXHf2xjnglPMJ43RLcQb499NIZ6Hc2RTcgm+ PfjY1/sPVXNWLE8ITQUW9TOE7rWyGibAzAPqfhfeT1Worm13XYK0tiCaN9rtOQAk U+8jD7NenB5zUbQ8bpeVs7i1pRV93wtm1tesTW2cmN8j5EhLz5Z2CIWjTYAKymA8 3SjovvsyYMQoqaiEXg9XSz3Y8cPdlGUW+I+vcZtqjJLEg6KcoX+F6pXc59mW7R9g qCQDhN4DPYu7QqKaD8wmDcVFuykKkmFOVe5jvt+ATh+bgv7dZNDT1aAuKyusZx0v BllWT8tMFab3APNebzGAgT5TQxn+PQqJ2YRhg0SSNFflZNal905QO65S7ad39Uma 3NuCsXl98QINA81nVJ4vFsjwKw1nZMP8gYAwkqiPO2FhqfI9FAf3puQnMb0cao4T 7Fe5JNRQngrkUgUCR2ZFuOpYoLJxOXLPUD4lE0JT6cAkx/zFtnV3zY5XVrKT3QFM rvJJMjJKAakm3+G3NGJa0i6XKfyTkeVVfa533y1HNohEiHjt86z3Wj/3spfnBjJY cOY7nlVeIpQQJU/KMHuOBRkkFrozN8QAo8UCAwEAAaOCAgkwggIFMA4GA1UdDwEB /wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/ BAIwADAdBgNVHQ4EFgQUG8/70LrRJyWs0AgaPb07a+3LIyUwHwYDVR0jBBgwFoAU FC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzAB hhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5p LmxlbmNyLm9yZy8wEwYDVR0RBAwwCoIIZGlndW0uZGUwEwYDVR0gBAwwCjAIBgZn gQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQA/F0tP1yJHWJQdZRyEvg0S 7ZA3fx+FauvBvyiF7PhkbgAAAY+FsMSSAAAEAwBGMEQCIEz8VtnkiMNbpSKr6/01 Y9cxA+8xJ0Wmr5ZrXw6i8BtaAiACZ8OfsxkEeScish30uny1hPCt2A1wQ179UnHH Bkq3/AB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABj4WwxN8A AAQDAEcwRQIhAJdZxLjI8oNDrzRDPVUknKavbJvmwtXCZ/ZRn80pEtrVAiB5fPSr P4ZCjpOgcSO3xqtA3Mp9qixkhvAwuhzqSTKGZDANBgkqhkiG9w0BAQsFAAOCAQEA BeH63z0NlM0IjRD7tZRFxPOIrog21M6mqN0z7YAaeG5pJBWWhtCfSLG2ejufLxUP Vh6FpY1hJh1hysgJsDDIUfs5bT+opT8NgC1WNX62NEBw/lhNdRsqPodJmP4iibvq q2yNlaLdvjui1CIsOee6tW57zux2XU1eRXk/wk1me3vYIUZ/5lngM03q6LZLO3lN ajd1bF/is8OguefSl/FTiqAUJFeuDm4M9+0yf/E+HzAsbBUieAH9tUYJO61CWvqc HyUyM9lC65RDF0WRFDEcXVN6HdhJHi0ijFMruJu89GEydnAbx0fnc7Ewqe8RqwPq pSTfREgDu3k4tqQzicCXVg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAm/WSbSlOz6NVfnKiItW+ jYa53gVCwVEInjszBYljhtIJ3tXi/GzHTWgy7Fw6h6f//GQC6mcfknOj7P1velmE M18ZWe/DXmB7qRSqpXHf2xjnglPMJ43RLcQb499NIZ6Hc2RTcgm+PfjY1/sPVXNW LE8ITQUW9TOE7rWyGibAzAPqfhfeT1Worm13XYK0tiCaN9rtOQAkU+8jD7NenB5z UbQ8bpeVs7i1pRV93wtm1tesTW2cmN8j5EhLz5Z2CIWjTYAKymA83SjovvsyYMQo qaiEXg9XSz3Y8cPdlGUW+I+vcZtqjJLEg6KcoX+F6pXc59mW7R9gqCQDhN4DPYu7 QqKaD8wmDcVFuykKkmFOVe5jvt+ATh+bgv7dZNDT1aAuKyusZx0vBllWT8tMFab3 APNebzGAgT5TQxn+PQqJ2YRhg0SSNFflZNal905QO65S7ad39Uma3NuCsXl98QIN A81nVJ4vFsjwKw1nZMP8gYAwkqiPO2FhqfI9FAf3puQnMb0cao4T7Fe5JNRQngrk UgUCR2ZFuOpYoLJxOXLPUD4lE0JT6cAkx/zFtnV3zY5XVrKT3QFMrvJJMjJKAakm 3+G3NGJa0i6XKfyTkeVVfa533y1HNohEiHjt86z3Wj/3spfnBjJYcOY7nlVeIpQQ JU/KMHuOBRkkFrozN8QAo8UCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 344104360281665456713165843755572412224486 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-17 07:35:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-15 07:35:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'digum.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 636258292511923634647281798644374457050177241064207320683225485071201552989515271681889665327607577994853694142362330749638691379000969648383347006295688403951718496328507558255833246126844295888084399251141570578034137409962989431752268845958798794847376256953555241654438992412241406706607604142487349562017891967169032385589939753927916876857569594772104597029175365780308531171013253311073960013806085202940700176840978015910598065783371389040142735788183361214860416233689415175223072426289830671838419894206552253710072978256069984661470782286217449463744854527495471279934101528784533225442086950019645615483066339051308722682048937052457495677509222183976936826070697813307746968485206497643714049910311471446815758182195474872413249618649594751462574587378469257392242234186783491292683258969346082142553117719694420872198552067924820959533179313848096940458861994446385389184338081178012246663569640319570344612844066672916168420898380640251044471137430316405865379830067036039614174883686216850159340976656865662838002023578545897927916370051852574311063740763799789491592705173334195372936213151764851842999904020628663669581305495087876634536360913733194747546944993150097430760801956334905450968443697179759894455165893 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1bcffbd0bad12725acd0081a3dbd3b6bedcb2325 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digum.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f85b0c492000004030046304402204cfc56d9e488c35ba522abebfd3563d73103ef312745a6af966b5f0ea2f01b5a02200267c39fb31904792722b21df4ba7cb584f0add80d70435efd5271c7064ab7fc00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018f85b0c4df00000403004730450221009759c4b8c8f28343af34433d55249ca6af6c9be6c2d5c267f6519fcd2912dad50220797cf4ab3f86428e93a07123b7c6ab40dcca7daa2c6486f030ba1cea49328664 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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