www.ra-thomasgeib.de

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:c5:54:f6:66:23:db:9c:3d:36:b1:55:0b:83:c6:de:28:84 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.ra-thomasgeib.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:c5:54:f6:66:23:db:9c:3d:36:b1:55:0b:83:c6:de:28:84
Serial Number (int): 415597704538785727748822561247152186468484
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: c7:6d:a7:51:1d:aa:64:36:b0:e0:6e:7d:82:02:39:cc:32:bb:41:a4
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): ad:1e:56:67:c5:38:70:1b:28:9f:43:66:af:7b:46:54:8d:d1:b1:63
Fingerprint (sha256): ea:1c:e1:65:03:13:5f:64:5b:9d:dd:e3:7d:6d:f7:27:63:16:01:9c:a6:f7:5d:a4:bd:06:03:44:ae:07:80:21

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.ra-thomasgeib.de

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.ra-thomasgeib.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.ra-thomasgeib.de

Other certificates including the domain name ra-thomasgeib.de

(limited to 100 certificates)
www.roescheisen.org
manga.kingcalifornia.de
www.ra-thomasgeib.de
www.ra-thomasgeib.de
www.theextron.eu.org
beta.getmyads.wiki
urlaub.henning-kruse.de
music.creativemd.de
monezmo.de
dreamland-games.de
store.beautyled.eu
xn--hnde-werk-v2a.de
nogibeautyhouse.de
www.ra-thomasgeib.de
www.ra-thomasgeib.de
www.ra-thomasgeib.de
*.sensorled.com
www.ra-thomasgeib.de
www.ilonas-cottage.de
lorcher.de
eva-weiss.net
www.ra-thomasgeib.de
job.tom-lindemann.eu
www.ra-thomasgeib.de
vogel.schnabel24.de
heilpraxis-einssein.de
ra-thomasgeib.de
www.ra-thomasgeib.de
www.ra-thomasgeib.de
www.beetlecabrio.eu
bestattungen-else-gugler.de
*.bienenzuchtverein-spittaldrau.at
www.bilder.tim-ahlrichs.de
internet.kevinkoziol.de
www.sa-linea.de
www.ra-thomasgeib.de
ra-thomasgeib.de
dein-sex-dating.de
www.slawischarischeweden.de
blog.digifor.pw
www.ra-thomasgeib.de
das-kleine-ferienhaus.de
*.stressfrei-bewegen.de

Certificate

The complete raw certificate details for www.ra-thomasgeib.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxF7Q5aomqoWjicn04rSE
uZjjlyZwADVp3erGIX5qK0i3+q2esjfaI2p0EljGH8jF4doSw2GEsY/LpVbCEDUS
AyNB5plkQTtnKrEiU+/mSAw6kjxxvoXNHkKC+4o9bkMenQ4YxkjS+3UgPYGuWuur
aW02m42MSSAWEUXa7cTgn+QXx6iMhiacgg2f7+LXh8KypZo/TeVOBiy3FAv+4FPq
X3ZcBYLfK37rWcIOoU7HWXUbHfqi8hlf4qjb0mbQ6ONyUh1/Nxm53OcMfFZzNMCK
L/iEiexxEBTDvMXxNYnkoyQHlIZR35uqn4Oc1And2miEq127agGOZRg58UuuYbqP
zQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 415597704538785727748822561247152186468484
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-29 12:29:14 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-28 12:29:14 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ra-thomasgeib.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24789463287721227700454491004827558031690552736377657333732012976000906957832943990222283940779328471589278783058319035396047463142324316940067401402090345477966204454956511621063854239878234112973165456152857121709871295057086456415556883530481885272558863842718212661618141427002188057629617864875313016739870790399379058179393688668478223439626034149030705480035035527837658869158238251861951744031567264173970120881336685152724431308141465013670260614293473291979377907283793065546231132402491762189287744085196103696683814468602205061521035188862712245026110207120488890619223765919071431638069376021901220679629
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c76da7511daa6436b0e06e7d820239cc32bb41a4
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ra-thomasgeib.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016ff17dda190000040300483046022100cd706439e740eb0f83158e304be86c476ba7780553097afc45e0dc56195a8153022100c91cb462d7981a7426775c32375d8bf682d49b604d3179f9c421801c4d05b12e00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016ff17dda42000004030047304502210087a6d9f03e3e827df4f6c10a6ab9508a4a4618d03748955691fd7ded64c93a10022030cf438274ab7773469b842da0340e3e9f9f00666a10eac9f63415753eccc5dd
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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