hess-gruppe.de

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:60:59:f5:d5:36:75:3b:f6:6d:a4:a5:b8:58:eb:05:0e:6e was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=hess-gruppe.de

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:60:59:f5:d5:36:75:3b:f6:6d:a4:a5:b8:58:eb:05:0e:6e
Serial Number (int): 381235828680274126214510232271976491454062
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: c4:40:5b:80:38:01:66:a4:11:41:48:4b:f8:53:4e:bc:e1:b7:48:2f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): a0:a3:4f:90:55:7c:0b:5b:33:be:62:29:cb:2e:19:b5:d6:1d:37:c8
Fingerprint (sha256): eb:10:d0:bc:12:2e:6e:ac:15:06:88:5e:2d:c6:c3:92:be:0a:53:2d:9c:92:43:1a:40:fd:38:60:cc:9f:2e:22

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate hess-gruppe.de

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for hess-gruppe.de

Public Key Algorithm

RSA

Key Size

3072

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

hess-gruppe.de

Other certificates including the domain name hess-gruppe.de

(limited to 100 certificates)
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
mailrz.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
ssgd.hess-gruppe.de
*.hess-gruppe.de
www.hess-gruppe.de
mailrz.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
*.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
vpn.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de

Certificate

The complete raw certificate details for hess-gruppe.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAtHmfJ9e0G2NPQUc3bKxo
Milc/eMZb8VH6n10ai2nEw6UyZyqxGD0AcUceRQnGNAjAoHVQF3W+z6eVQbkuIsl
VnQkCpYdFJRyWQ8VueRP4E9veUA2D7GRar7HH3R+YZIN+buf4qgVlhs6cC80Pe4L
FujVy2hHoCb7b3ZzFMALcMLSUf6t2xdKMAZvTcjSq3mdRawokrDb8Mxdb/BtYFN3
pzjpTlmFf23CBvo+I3ppbQlPp9RBcu4ibMMkAGtHHS/V04Vb9xyhfUcraGI/x3CT
UBqNaEhzJUZzrAgn5Qc9VcciSWVRlj4OcxOq3itks2WOcWrFMrIpR6w5vSPJMf9l
cpOQDFjmTBXW47+47jIFShBhJ/CWlHeNVXNvDiSzAdaRQzcxfC+3g7mlrM29vQ77
zSCwvtZ/wS0uj6WszhNInUJaD9M6wGe2tCD/+Iu4gIhUGgeYS6U8gPk+kV9YTMOq
nBz+HKhxITvoi48JOHLIKVLtctwLj0itB5HH7Vo7+9r9AgMBAAE=
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 381235828680274126214510232271976491454062
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-24 07:00:49 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-23 07:00:49 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hess-gruppe.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 4095660681671285689931794319938486687921508081461517089085351938723386091129956637200035928622371946666994878854958811139783711457560388259169350274812158689493926897792129452143059870870538752291290451600474900641060727503137758726673666051330808378792968918792559898834609837585258579412704250470109596888841364889905529738549037534613876476088840523779235139042344894238194688543581883216721432756280889895554638398224535574365933194379990354553770199669714820536668593051854174382370128796967597603240012290542410558174292356449378092091645632124903964330744490586868443349585543543060767139597895532243220889323246669161063060341686970569548041845640322459120279179468897073305064309802050443716516792613049439948998252402403142245708987247356478771771711943316711143878155156269107704038261471689358829054679857492946411289487466073348047648755007842396941559191695986180623485448854602906289492364761720776701180107517
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c4405b80380166a41141484bf8534ebce1b7482f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hess-gruppe.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016f36ec3c8e000004030046304402201e5f5f5e8f077a14842477def5b2cc25b7f3414f95c9b1bff43d3f58fa5e21e4022001ea59a6d59c1d1b523b4eb0c167af5b50ed7c6c81dae1acdde465a18b71219e0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016f36ec3ce900000403004730450220266b1b9607822fa40e9609c30b4dcc18eab40d13acbb3c3734b994a657eebb5b0221008ad8edb3ddb01862889a6da9bf3445261387b70f9518faa627d80141d7516c65
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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