ekitchen.de

Issued by R3

About this certificate

This digital certificate with serial number 04:ce:a0:16:3d:c5:de:ab:4b:71:44:66:6d:59:10:c8:7f:56 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=ekitchen.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:ce:a0:16:3d:c5:de:ab:4b:71:44:66:6d:59:10:c8:7f:56
Serial Number (int): 418760103275514630958647564057819335917398
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 75:17:b2:72:53:47:32:75:84:1a:f8:3a:94:81:0d:6b:df:49:a2:5f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): ea:3a:27:d6:f4:79:73:4c:ba:a2:4a:2f:b9:83:38:64:3a:77:ac:f5
Fingerprint (sha256): e9:f2:0a:39:24:54:9e:53:04:dd:25:00:cb:93:ce:72:de:f2:63:65:2e:ae:3f:db:43:e7:f6:1e:25:7d:a3:12

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate ekitchen.de

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ekitchen.de

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ekitchen.de
www.ekitchen.de

Other certificates including the domain name ekitchen.de

(limited to 100 certificates)
ekitchen.de
www.stage.ekitchen.de
www.stage.ekitchen.de
ekitchen.de
ekitchen.de
www.stage.ekitchen.de
ekitchen.de
www.stage.ekitchen.de
ekitchen.de
www.stage.ekitchen.de
cmp.autobild.de
ekitchen.de
ekitchen.de
cmp.bike-bild.de
cmp.bike-bild.de
www.stage.ekitchen.de
ekitchen.de
ekitchen.de
ekitchen.de
www.ekitchen.de
www.stage.ekitchen.de
www.stage.ekitchen.de
cmp.bike-bild.de
www.stage.ekitchen.de
www.stage.ekitchen.de
cmp.ekitchen.de
www.stage.ekitchen.de
cmp.autobild.de
ekitchen.de
www.ekitchen.de
ekitchen.de
cmp.bike-bild.de
ekitchen.de
ekitchen.de
www.stage.ekitchen.de
cmp.bike-bild.de
www.stage.ekitchen.de
ekitchen.de
ekitchen.de

Certificate

The complete raw certificate details for ekitchen.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIF8zCCBNugAwIBAgISBM6gFj3F3qtLcURmbVkQyH9WMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yNDAxMjMwNjMzMDZaFw0yNDA0MjIwNjMzMDVaMBYxFDASBgNVBAMT
C2VraXRjaGVuLmRlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzine
Vc6DhLpF24cMxZJ22mZaOINfrginwwILtrXF28GpZaTAOmjHDnDp8/LcoD+seKuW
1YxlNZn7H1SCMRqqg1VW3MlAHfTvxLjK3e6gdrQrWjstDSU5q8Tef38R5iIKKYy6
wJzMKIXlj02kxMG3oELQjgNLeNoN0KCtYMkB+bLxgaLrDtWJN9dMWL6Nxrr0xiro
qA56DPBSV4MmD00P+wfLhgZb5LixbDPw+CcLpqnYZ3m+FPcmYcwA0COEVeWBGZQb
p2mXEQfTi78rkZBSDafEFAm6cfOQWP8QdFvqn23exPQHWi+tYsgGOMRa2kgfDu5M
iM19YvPEcnBWVOPlwkEIR5y5WfgSwRXg+Eyxvg0TBugYtNWJNhNtbiggsegqBVUZ
lZfF+8ojc5OXVc38Y3jmXh6ZqoCbSc2TD5s/aCyjUvEeMNP6Vu4yNgHj/V7rk+4M
FfmJM5HB88nkOay3slGNRWFeVw6bezIaKSL9UjriVtn5J1Q+7EM2uE/WTYFWFqxW
4yqLCvddALbo4sQqxPQtar4CiCh4yEEMX3v8lC1YMLq4Qa9zwTZhFzuq/ujY1KJe
67aSaiMnwf1jwjgYnWBNy+ny5UGfcQKWKSwHUVk8fggi8mAorLX3wYT/QFSqwkIo
D3DayqADQGCTbdM000izCnyOGhTD5AF6oWaakGMCAwEAAaOCAh0wggIZMA4GA1Ud
DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T
AQH/BAIwADAdBgNVHQ4EFgQUdReyclNHMnWEGvg6lIENa99Jol8wHwYDVR0jBBgw
FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF
BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y
My5pLmxlbmNyLm9yZy8wJwYDVR0RBCAwHoILZWtpdGNoZW4uZGWCD3d3dy5la2l0
Y2hlbi5kZTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQE
gfEA7wB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjTU8tTYA
AAQDAEcwRQIgbFIeBYvtCrBNzax6CsvchBYoMKTzx4dlIA4GM7hez6ECIQDDext/
hvnGASz6AHp8lSH1JEAFx4y6MPCc41bBZpPZgQB1AHb/iD8KtvuVUcJhzPWHujS0
pM27KdxoQgqf5mdMWjp0AAABjTU8tZAAAAQDAEYwRAIgZ7qeCPFbPfZkgK/H3mSp
OXExa/MGEcIZsTbSAmGH7SMCIFcc73QwvyXNmy8WT35iUskNQYhP+8E3obHdfS1x
NyLSMA0GCSqGSIb3DQEBCwUAA4IBAQCt3IYESdIT2v8IJGtfLg2iMB8o2msbUp/Z
0R75fy7hMW3spO1gDBeYtcaoTFrTrnBjzUbb4IfdUF9PyeQFLfGLj7Gs6WY6Otvh
yDJjaWPLYYQ9kDWdvg8Tm+mLvgAelg/Q9dyHKkpZNMWvvOXkBHFupJMOlNTlEt5/
GAk/RClN8EmpgM++bcYzRItxyUQ81DZU0Zv96oW1x2VAqxmQpNYRKtYTCAItCOdW
zmbHW4FSWXLbq58o+z9GCTdi67LxzClfy1MQX+q8baNO/7EkaMVlpLwFqCNh4/06
9tt5nzcR0BpOk+BMON8rC/Lgo5vMqlIfPzRXRYtqY3MAb6S9SX3Q
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 418760103275514630958647564057819335917398
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-23 06:33:06 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-22 06:33:05 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ekitchen.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 841073898967741985855132315627631802824648559409777087933029690494061916927757573441080386981656843350052808724619955671098955111350017893656923525596560279433127011936077782786422249820076494471933514320325153204621641152215583965265967200939644714121306317886434471111445737557562554824305623430173279196203154239679594210644352224128420639394983150006843698713334030724333527368880273673206211994719654606160227312830815634256001594517518900975976611121750830767924117102655128947312859674660631890395438704379292858311320368624637587098661545620588404146022901595541266604345548906228029516442148639175849655123695525242209381308059442440965983781406221217899708954178867570955801274645485137445680151686328068372783018947649222825306536454078264934572565387523945289789213698729311382631751353183108152461276422913486454030264781221378199011702203034243286246905764158587675814153298656700190206763937905000038805470173841745414912619748261064305749090890153806270200154100208485621280722403792661092806252038894207116747940383119320217162195987267981399546706171179807288836705116744795876914436057670466219058612187756054001003903169299639980494408124255230669848822630628418066245150329953364197001877292870431579805469806691
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							7517b27253473275841af83a94810d6bdf49a25f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ekitchen.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ekitchen.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d353cb536000004030047304502206c521e058bed0ab04dcdac7a0acbdc84162830a4f3c78765200e0633b85ecfa1022100c37b1b7f86f9c6012cfa007a7c9521f5244005c78cba30f09ce356c16693d98100750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018d353cb5900000040300463044022067ba9e08f15b3df66480afc7de64a93971316bf30611c219b136d2026187ed230220571cef7430bf25cd9b2f164f7e6252c90d41884ffbc137a1b1dd7d2d713722d2
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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