ub2018.symrise.de
Issued by R3
About this certificate
This digital certificate with serial number 04:68:b1:f6:48:06:1e:69:79:86:91:ae:86:eb:91:8a:c4:f1 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ub2018.symrise.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:68:b1:f6:48:06:1e:69:79:86:91:ae:86:eb:91:8a:c4:f1Serial Number (int): 384075062007917988963187411581921510737137
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: d5:35:d1:79:d7:d6:a7:fa:f3:0b:ea:e4:d1:60:5d:0a:aa:11:d7:05
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 06:0a:d2:ce:6e:03:a6:a6:c2:36:40:c4:cd:9d:c7:49:61:09:9e:cb
Fingerprint (sha256): e3:88:c2:20:e5:36:37:2a:05:23:a6:f9:1d:bc:c7:d8:9e:a6:18:78:28:ff:51:0e:66:de:5f:45:70:49:55:58
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate ub2018.symrise.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ub2018.symrise.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ub2018.symrise.de
Other certificates including the domain name symrise.de
(limited to 100 certificates)
symrise.de
dev.symrise.de
symrise.de
ub2016.symrise.de
symrise.de
symrise.de
ub2018.symrise.de
symrise.de
ub2019.symrise.de
symrise.de
dev.symrise.de
symrise.de
symrise.de
ub2018.symrise.de
symrise.de
ub2018.symrise.de
dev.symrise.de
symrise.de
symrise.de
ub2017.symrise.de
ub2018.symrise.de
symrise.de
dev.symrise.de
dev.symrise.de
ub2017.symrise.de
symrise.de
symrise.de
dev.symrise.de
dev.symrise.de
ub2018.symrise.de
ub2018.symrise.de
ub2019.symrise.de
dev.symrise.de
symrise.de
ub2016.symrise.de
symrise.de
symrise.de
ub2018.symrise.de
symrise.de
ub2019.symrise.de
symrise.de
dev.symrise.de
symrise.de
symrise.de
ub2018.symrise.de
symrise.de
ub2018.symrise.de
dev.symrise.de
symrise.de
symrise.de
ub2017.symrise.de
ub2018.symrise.de
symrise.de
dev.symrise.de
dev.symrise.de
ub2017.symrise.de
symrise.de
symrise.de
dev.symrise.de
dev.symrise.de
ub2018.symrise.de
ub2018.symrise.de
ub2019.symrise.de
Certificate
The complete raw certificate details for ub2018.symrise.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgISBGix9kgGHml5hpGuhuuRisTxMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDMxNzIwNDlaFw0yNDA3MDIxNzIwNDhaMBwxGjAYBgNVBAMT EXViMjAxOC5zeW1yaXNlLmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjGYNFj+ekfa9VZ++ZOwA4lQYD4bC2A73Um3lsoY98jWszaDwe7UlLn5R9CK uhxysTiLtIm8o/duIZ2PjEi4qbTSxm9pmv5L1JKzFpzpH/RhVmVRM1AaKkLHu4qc anBCjpzxG+yCsLq7rVZW2VgmUF+vk01O5Uu/cdX4USBoLAVqWjGRjLptaswJOtkj Q0bc6tND0eGVUeFoM5x8NQpwKM5t0TJt36d8w9UpVvSg03WaCk2gFlquJYk720Xt lgMRS64r5LqC6RW1uyIgSLQe9GdmKhKIxrSLs8gQy4HhoTe0TP42DG48Trwlh16U /ejfL3Ooisu5iAAsV0HJ7cC/lwIDAQABo4ICFDCCAhAwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0G A1UdDgQWBBTVNdF519an+vML6uTRYF0KqhHXBTAfBgNVHSMEGDAWgBQULrMXt1hW y65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6 Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iu b3JnLzAcBgNVHREEFTATghF1YjIwMTguc3ltcmlzZS5kZTATBgNVHSAEDDAKMAgG BmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2AEiw42vapkc0D+VqAvqd MOscUgHLVt0sgdm7v6s52IRzAAABjqUxNu4AAAQDAEcwRQIhAJvnJJ9QzoiypP1f M8HuqoAnep/CyR43tYcHbMx8Vcp/AiBsjwLskxRbS7LFDJiFTgsdsR81+hrLhrsU W8qp24cVQgB3AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjqUx Nu8AAAQDAEgwRgIhAMH4eD322YEo2x7fSBmyeYYjQFYXlJoDh7JhjG9gTIN+AiEA 7txw9hRqUV7rpAz9/h5oDRfCPcFCjAHiuNvyHAiL5XEwDQYJKoZIhvcNAQELBQAD ggEBAHCO1IC4/VnFimuOKOw6lXdJcYhmpIpjVFwT3/TvuhFFF72oCLOFNvxnNuKA 1A0Wbu66el6pDZNikOof346UgB47ShPpFyloea621g4ZYJYNZyhWx6htzBS89HjS xy0f7pAZp3Qrq69mx2EwlC5xvfWwSOOPldjCMF2h7o52YwlezNJKObVq6aQu3/KV WsVH/pcoME40L+dnLk4ffrunmf21mHaGf/GKSrgjG7QqpQX3TIziGqdHbQ4eP/Ur q2jv3s4iYn4C9xATL5btnKCe99HMz6eBSOcn9GSbpvBIikvAFPZfXhFKkLT9yjJm EjazXUwELkPmVK2I07Vk44cqwUI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzjGYNFj+ekfa9VZ++ZOw A4lQYD4bC2A73Um3lsoY98jWszaDwe7UlLn5R9CKuhxysTiLtIm8o/duIZ2PjEi4 qbTSxm9pmv5L1JKzFpzpH/RhVmVRM1AaKkLHu4qcanBCjpzxG+yCsLq7rVZW2Vgm UF+vk01O5Uu/cdX4USBoLAVqWjGRjLptaswJOtkjQ0bc6tND0eGVUeFoM5x8NQpw KM5t0TJt36d8w9UpVvSg03WaCk2gFlquJYk720XtlgMRS64r5LqC6RW1uyIgSLQe 9GdmKhKIxrSLs8gQy4HhoTe0TP42DG48Trwlh16U/ejfL3Ooisu5iAAsV0HJ7cC/ lwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 384075062007917988963187411581921510737137 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-03 17:20:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-02 17:20:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ub2018.symrise.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26029546806489353777970525174357700512470460885633413350187709219787097890590248461267573267124974765293291672613112593151067220434124319998756494295551840113662830481478502115516488082795882003145148914183014314138788863542618503549754806072882479158954061861510833885728718395474174494526320343519220754615658280552974123144605790310805267629548860414418318942008849714148596359214133558443370441011491253586989903414337914637936327768297481144985577648876061494362282753505909603924988579759992065206897514736791897271185958908198857673634799909257434635433832443730297779219788855603164916112448046049334294265751 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d535d179d7d6a7faf30beae4d1605d0aaa11d705 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ub2018.symrise.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ea53136ee00000403004730450221009be7249f50ce88b2a4fd5f33c1eeaa80277a9fc2c91e37b587076ccc7c55ca7f02206c8f02ec93145b4bb2c50c98854e0b1db11f35fa1acb86bb145bcaa9db871542007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ea53136ef0000040300483046022100c1f8783df6d98128db1edf4819b2798623405617949a0387b2618c6f604c837e022100eedc70f6146a515eeba40cfdfe1e680d17c23dc1428c01e2b8dbf21c088be571 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00708ed480b8fd59c58a6b8e28ec3a957749718866a48a63545c13dff4efba114517bda808b38536fc6736e280d40d166eeeba7a5ea90d936290ea1fdf8e94801e3b4a13e917296879aeb6d60e1960960d672856c7a86dcc14bcf478d2c72d1fee9019a7742babaf66c76130942e71bdf5b048e38f95d8c2305da1ee8e7663095eccd24a39b56ae9a42edff2955ac547fe9728304e342fe7672e4e1f7ebba799fdb59876867ff18a4ab8231bb42aa505f74c8ce21aa7476d0e1e3ff52bab68efdece22627e02f710132f96ed9ca09ef7d1cccfa78148e727f4649ba6f0488a4bc014f65f5e114a90b4fdca32661236b35d4c042e43e654ad88d3b564e3872ac142