www.dampf-guhl.net
Issued by STRATO SSL - G4
About this certificate
This digital certificate with serial number 16:57:1b:c0:a6:da:7d:5a:69:8c:f9:c7:bc:5a:81:5d was issued on by STRATO AG.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.dampf-guhl.net
STRATO AG
Organization:
STRATO AG
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
DE
This certificate has expire since
Certificate Details
Serial Number (hex): 16:57:1b:c0:a6:da:7d:5a:69:8c:f9:c7:bc:5a:81:5dSerial Number (int): 29695308622465829964062497457919656285
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: c9:54:47:be:bd:cc:8f:b4:fb:4e:27:5a:0e:dc:bc:a9:5b:d9:ab:b9
Fingerprint (sha1): 5d:5e:4e:f1:e3:fa:c9:a7:77:92:7f:90:a5:4d:97:92:67:f8:d4:eb
Fingerprint (sha256): e5:99:d0:4a:56:88:9a:f5:24:7f:38:57:73:20:ca:d1:13:de:aa:7a:8e:5f:1f:3a:2c:42:b8:65:cd:15:a7:05
Issuing Certificate URL: http://strato-aia.digitalcertvalidation.com/stratog4.crt
Revocation information
OCSP Server: http://strato-ocsp.digitalcertvalidation.comCRL Distribution Point: http://strato-crl.digitalcertvalidation.com/stratog4.crl
Check the revocation status for certificate www.dampf-guhl.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.dampf-guhl.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.dampf-guhl.net
dampf-guhl.net
dampf-guhl.net
Other certificates including the domain name dampf-guhl.net
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.dampf-guhl.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGFzCCBP+gAwIBAgIQFlcbwKbafVppjPnHvFqBXTANBgkqhkiG9w0BAQsFADBa MQswCQYDVQQGEwJERTESMBAGA1UEChMJU1RSQVRPIEFHMR0wGwYDVQQLExREb21h aW4gVmFsaWRhdGVkIFNTTDEYMBYGA1UEAxMPU1RSQVRPIFNTTCAtIEc0MB4XDTE3 MDIyNTAwMDAwMFoXDTE4MDMyNzIzNTk1OVowHTEbMBkGA1UEAwwSd3d3LmRhbXBm LWd1aGwubmV0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5XRF2AGJ u06q4pCjVEt2kQkmhUZ0TV2FIZD+Cttq3paFyGRXyE+uz1X9+5OSh3yc3rcefBLe wBbFzVz6FFf9AB9yX+zd8D9kkmNpG/bAoi9iHAhRs+EaEC33z+hRagaQVl5d3w4q VEzXcZRBjMJnr90N+W7bR9jH+OC9+DLI/EUzXFEJ4ta8+Y7eZJNcN/+1HUbQW1U/ a0EhwPVYU5dT39l+fFyeQGb0MerLeLcyAPsNSwiLvXgQy6+d6CknCHlebRkBaAyj X6oKg7IeTO71GWyUOkPyzLUpM2ppn10qMqpnX0+OR0WWvsAbC8h1I6oBgLrUQ1ZZ Q5R9hlR5TcWG4QIDAQABo4IDFDCCAxAwLQYDVR0RBCYwJIISd3d3LmRhbXBmLWd1 aGwubmV0gg5kYW1wZi1ndWhsLm5ldDAJBgNVHRMEAjAAMEkGA1UdHwRCMEAwPqA8 oDqGOGh0dHA6Ly9zdHJhdG8tY3JsLmRpZ2l0YWxjZXJ0dmFsaWRhdGlvbi5jb20v c3RyYXRvZzQuY3JsMIGdBgNVHSAEgZUwgZIwgY8GBmeBDAECATCBhDA/BggrBgEF BQcCARYzaHR0cHM6Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNlcy9yZXBvc2l0 b3J5L2xlZ2FsMEEGCCsGAQUFBwICMDUMM2h0dHBzOi8vd3d3Lmdlb3RydXN0LmNv bS9yZXNvdXJjZXMvcmVwb3NpdG9yeS9sZWdhbDAfBgNVHSMEGDAWgBTJVEe+vcyP tPtOJ1oO3LypW9mruTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMIGQBggrBgEFBQcBAQSBgzCBgDA4BggrBgEFBQcwAYYsaHR0 cDovL3N0cmF0by1vY3NwLmRpZ2l0YWxjZXJ0dmFsaWRhdGlvbi5jb20wRAYIKwYB BQUHMAKGOGh0dHA6Ly9zdHJhdG8tYWlhLmRpZ2l0YWxjZXJ0dmFsaWRhdGlvbi5j b20vc3RyYXRvZzQuY3J0MIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYA3esdK3oN T6Ygi4GtgWhwfi6OnQHVXIiNPRHEzbbsvswAAAFacs+BmwAABAMARzBFAiEA1zG3 OHrrVDtAd5SvmwaE0rIajTJAhNdyCW+qMyq8NLACIBrTcKAlnEjRP6Zs1AI4szZy lSxbm6jGZ+WSFQQW7lwQAHYApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN 3BAAAAFacs+B0wAABAMARzBFAiEAjbIr4oO5O7X75idFHztyn/ZsjrmIAQnsIQp9 OHK0WfsCIFMaXJ6dT7zdPYCL68U3UJKgBTEkER602rRmrj5esFj8MA0GCSqGSIb3 DQEBCwUAA4IBAQAOPvK8ggMXR8ebXZvmfzdyQA6wDPU8kaYC0DUSnAreF+mTTzvf XPxtX40+dVmumUH8wL8iARG0HAok9cWd4hbtobskJcqFGQRfrMlAOBi3jssuhoPA 5vgLTZJzjIdkmiVtm9/g2GYcxX55+aRmb+H+iyyFcqxJfwDTkFAMJSM3ipAFLNjZ L4Rs+GdbitRMDcLmbdWPAI8J3DBHQbhdUYzM+YEekHQqOy3c94y9mq/97pEs3VLs 5jPfG+ivbXQWpo1G8lzUJxEr+vbM3iX21dlcajktp1SNKqhVgywVXWh5lNujmMcM ME45E/VMrUZ9f3NjUPB05TJjUReEgjsTJ9yM -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5XRF2AGJu06q4pCjVEt2 kQkmhUZ0TV2FIZD+Cttq3paFyGRXyE+uz1X9+5OSh3yc3rcefBLewBbFzVz6FFf9 AB9yX+zd8D9kkmNpG/bAoi9iHAhRs+EaEC33z+hRagaQVl5d3w4qVEzXcZRBjMJn r90N+W7bR9jH+OC9+DLI/EUzXFEJ4ta8+Y7eZJNcN/+1HUbQW1U/a0EhwPVYU5dT 39l+fFyeQGb0MerLeLcyAPsNSwiLvXgQy6+d6CknCHlebRkBaAyjX6oKg7IeTO71 GWyUOkPyzLUpM2ppn10qMqpnX0+OR0WWvsAbC8h1I6oBgLrUQ1ZZQ5R9hlR5TcWG 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 29695308622465829964062497457919656285 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'STRATO AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'STRATO SSL - G4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-02-25 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.dampf-guhl.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28965908105291498296642496153623104768019203983110462482546039695267099863375753958007856615021740403097766846876290440499103561735446761579577393339398289489499424511647855883861123426399901094983810073604861181278107376837799108813449104974847864485546136854203138489359945258715040628158751012722495271005730628858382165899083917121599112479372732182613605854986648733181064227030739764987838273322482024526315196230624227824345019440669738480950443971531747988010787531761280480335715266567752961250727047519124822976379038154574369412551133574522846528504013386246916687643661081432397798967892959842437255497441 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dampf-guhl.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dampf-guhl.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://strato-crl.digitalcertvalidation.com/stratog4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c95447bebdcc8fb4fb4e275a0edcbca95bd9abb9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (131 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://strato-ocsp.digitalcertvalidation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://strato-aia.digitalcertvalidation.com/stratog4.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc0000015a72cf819b0000040300473045022100d731b7387aeb543b407794af9b0684d2b21a8d324084d772096faa332abc34b002201ad370a0259c48d13fa66cd40238b33672952c5b9ba8c667e592150416ee5c10007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015a72cf81d300000403004730450221008db22be283b93bb5fbe627451f3b729ff66c8eb9880109ec210a7d3872b459fb0220531a5c9e9d4fbcdd3d808bebc5375092a0053124111eb4dab466ae3e5eb058fc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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