www.ra-thomasgeib.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:c5:54:f6:66:23:db:9c:3d:36:b1:55:0b:83:c6:de:28:84 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.ra-thomasgeib.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:c5:54:f6:66:23:db:9c:3d:36:b1:55:0b:83:c6:de:28:84Serial Number (int): 415597704538785727748822561247152186468484
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: c7:6d:a7:51:1d:aa:64:36:b0:e0:6e:7d:82:02:39:cc:32:bb:41:a4
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ad:1e:56:67:c5:38:70:1b:28:9f:43:66:af:7b:46:54:8d:d1:b1:63
Fingerprint (sha256): ea:1c:e1:65:03:13:5f:64:5b:9d:dd:e3:7d:6d:f7:27:63:16:01:9c:a6:f7:5d:a4:bd:06:03:44:ae:07:80:21
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.ra-thomasgeib.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.ra-thomasgeib.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.ra-thomasgeib.de
Other certificates including the domain name ra-thomasgeib.de
(limited to 100 certificates)
www.roescheisen.org
manga.kingcalifornia.de
www.ra-thomasgeib.de
www.ra-thomasgeib.de
www.theextron.eu.org
beta.getmyads.wiki
urlaub.henning-kruse.de
music.creativemd.de
monezmo.de
dreamland-games.de
store.beautyled.eu
xn--hnde-werk-v2a.de
nogibeautyhouse.de
www.ra-thomasgeib.de
www.ra-thomasgeib.de
www.ra-thomasgeib.de
*.sensorled.com
www.ra-thomasgeib.de
www.ilonas-cottage.de
lorcher.de
eva-weiss.net
www.ra-thomasgeib.de
job.tom-lindemann.eu
www.ra-thomasgeib.de
vogel.schnabel24.de
heilpraxis-einssein.de
ra-thomasgeib.de
www.ra-thomasgeib.de
www.ra-thomasgeib.de
www.beetlecabrio.eu
bestattungen-else-gugler.de
*.bienenzuchtverein-spittaldrau.at
www.bilder.tim-ahlrichs.de
internet.kevinkoziol.de
www.sa-linea.de
www.ra-thomasgeib.de
ra-thomasgeib.de
dein-sex-dating.de
www.slawischarischeweden.de
blog.digifor.pw
www.ra-thomasgeib.de
das-kleine-ferienhaus.de
*.stressfrei-bewegen.de
manga.kingcalifornia.de
www.ra-thomasgeib.de
www.ra-thomasgeib.de
www.theextron.eu.org
beta.getmyads.wiki
urlaub.henning-kruse.de
music.creativemd.de
monezmo.de
dreamland-games.de
store.beautyled.eu
xn--hnde-werk-v2a.de
nogibeautyhouse.de
www.ra-thomasgeib.de
www.ra-thomasgeib.de
www.ra-thomasgeib.de
*.sensorled.com
www.ra-thomasgeib.de
www.ilonas-cottage.de
lorcher.de
eva-weiss.net
www.ra-thomasgeib.de
job.tom-lindemann.eu
www.ra-thomasgeib.de
vogel.schnabel24.de
heilpraxis-einssein.de
ra-thomasgeib.de
www.ra-thomasgeib.de
www.ra-thomasgeib.de
www.beetlecabrio.eu
bestattungen-else-gugler.de
*.bienenzuchtverein-spittaldrau.at
www.bilder.tim-ahlrichs.de
internet.kevinkoziol.de
www.sa-linea.de
www.ra-thomasgeib.de
ra-thomasgeib.de
dein-sex-dating.de
www.slawischarischeweden.de
blog.digifor.pw
www.ra-thomasgeib.de
das-kleine-ferienhaus.de
*.stressfrei-bewegen.de
Certificate
The complete raw certificate details for www.ra-thomasgeib.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgISBMVU9mYj25w9NrFVC4PG3iiEMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMjkxMjI5MTRaFw0y MDA0MjgxMjI5MTRaMB8xHTAbBgNVBAMTFHd3dy5yYS10aG9tYXNnZWliLmRlMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxF7Q5aomqoWjicn04rSEuZjj lyZwADVp3erGIX5qK0i3+q2esjfaI2p0EljGH8jF4doSw2GEsY/LpVbCEDUSAyNB 5plkQTtnKrEiU+/mSAw6kjxxvoXNHkKC+4o9bkMenQ4YxkjS+3UgPYGuWuuraW02 m42MSSAWEUXa7cTgn+QXx6iMhiacgg2f7+LXh8KypZo/TeVOBiy3FAv+4FPqX3Zc BYLfK37rWcIOoU7HWXUbHfqi8hlf4qjb0mbQ6ONyUh1/Nxm53OcMfFZzNMCKL/iE iexxEBTDvMXxNYnkoyQHlIZR35uqn4Oc1And2miEq127agGOZRg58UuuYbqPzQID AQABo4ICajCCAmYwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTHbadRHapkNrDgbn2C AjnMMrtBpDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEF BQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5j cnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5j cnlwdC5vcmcvMB8GA1UdEQQYMBaCFHd3dy5yYS10aG9tYXNnZWliLmRlMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDx AHcAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFv8X3aGQAABAMA SDBGAiEAzXBkOedA6w+DFY4wS+hsR2uneAVTCXr8ReDcVhlagVMCIQDJHLRi15ga dCZ3XDI3XYv2gtSbYE0xefnEIYAcTQWxLgB2AAe3XBvlfWj/8bDGHSMVx7rmV3xX lLdq7rxhOhpp06IcAAABb/F92kIAAAQDAEcwRQIhAIem2fA+PoJ99PbBCmq5UIpK RhjQN0iVVpH9fe1kyToQAiAwz0OCdKt3c0abhC2gNA4+n58AZmoQ6sn2NBV1PszF 3TANBgkqhkiG9w0BAQsFAAOCAQEABsbQTm18mbPLIX5ixEJiRtfVqdZ4bYdZYvy7 RXzWbRQBdbXsKmPn64ia0SX7ZA8veXGPIzBS+zztx99QLcLDk5opmNJHRRf6bed/ HkywGIj/SfxNdVNIo/jdfajUnXMg0PdlmzxgOZ8sl1V8/GAdcXAho/Ikq7r3WZFA /tpqnz/MHPg+fWKdtxF78KKhhhDZylFnzqLYD98TQDQISR7sHd0WrVNdz7uEC398 iLDJweq/YXGGUJVwGHfRG6HRzORMEgVNaGKsBk9yLB6VeOHs9LsdLftAGxwFKj0r e7MfQoozZL+/2jeZfJjbaPdHqkf0u1SOIiLyAL8XPhJZ51j4pA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxF7Q5aomqoWjicn04rSE uZjjlyZwADVp3erGIX5qK0i3+q2esjfaI2p0EljGH8jF4doSw2GEsY/LpVbCEDUS AyNB5plkQTtnKrEiU+/mSAw6kjxxvoXNHkKC+4o9bkMenQ4YxkjS+3UgPYGuWuur aW02m42MSSAWEUXa7cTgn+QXx6iMhiacgg2f7+LXh8KypZo/TeVOBiy3FAv+4FPq X3ZcBYLfK37rWcIOoU7HWXUbHfqi8hlf4qjb0mbQ6ONyUh1/Nxm53OcMfFZzNMCK L/iEiexxEBTDvMXxNYnkoyQHlIZR35uqn4Oc1And2miEq127agGOZRg58UuuYbqP zQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 415597704538785727748822561247152186468484 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-29 12:29:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-28 12:29:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ra-thomasgeib.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24789463287721227700454491004827558031690552736377657333732012976000906957832943990222283940779328471589278783058319035396047463142324316940067401402090345477966204454956511621063854239878234112973165456152857121709871295057086456415556883530481885272558863842718212661618141427002188057629617864875313016739870790399379058179393688668478223439626034149030705480035035527837658869158238251861951744031567264173970120881336685152724431308141465013670260614293473291979377907283793065546231132402491762189287744085196103696683814468602205061521035188862712245026110207120488890619223765919071431638069376021901220679629 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c76da7511daa6436b0e06e7d820239cc32bb41a4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ra-thomasgeib.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016ff17dda190000040300483046022100cd706439e740eb0f83158e304be86c476ba7780553097afc45e0dc56195a8153022100c91cb462d7981a7426775c32375d8bf682d49b604d3179f9c421801c4d05b12e00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016ff17dda42000004030047304502210087a6d9f03e3e827df4f6c10a6ab9508a4a4618d03748955691fd7ded64c93a10022030cf438274ab7773469b842da0340e3e9f9f00666a10eac9f63415753eccc5dd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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