hess-gruppe.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:60:59:f5:d5:36:75:3b:f6:6d:a4:a5:b8:58:eb:05:0e:6e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hess-gruppe.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:60:59:f5:d5:36:75:3b:f6:6d:a4:a5:b8:58:eb:05:0e:6eSerial Number (int): 381235828680274126214510232271976491454062
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: c4:40:5b:80:38:01:66:a4:11:41:48:4b:f8:53:4e:bc:e1:b7:48:2f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a0:a3:4f:90:55:7c:0b:5b:33:be:62:29:cb:2e:19:b5:d6:1d:37:c8
Fingerprint (sha256): eb:10:d0:bc:12:2e:6e:ac:15:06:88:5e:2d:c6:c3:92:be:0a:53:2d:9c:92:43:1a:40:fd:38:60:cc:9f:2e:22
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate hess-gruppe.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hess-gruppe.de
Public Key Algorithm
RSA
Key Size
3072
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hess-gruppe.de
Other certificates including the domain name hess-gruppe.de
(limited to 100 certificates)
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
mailrz.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
ssgd.hess-gruppe.de
*.hess-gruppe.de
www.hess-gruppe.de
mailrz.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
*.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
vpn.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
mailrz.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
ssgd.hess-gruppe.de
*.hess-gruppe.de
www.hess-gruppe.de
mailrz.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
*.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
www.hess-gruppe.de
vpn.hess-gruppe.de
www.hess-gruppe.de
hess-gruppe.de
Certificate
The complete raw certificate details for hess-gruppe.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF0zCCBLugAwIBAgISBGBZ9dU2dTv2baSluFjrBQ5uMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMjQwNzAwNDlaFw0y MDAzMjMwNzAwNDlaMBkxFzAVBgNVBAMTDmhlc3MtZ3J1cHBlLmRlMIIBojANBgkq hkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAtHmfJ9e0G2NPQUc3bKxoMilc/eMZb8VH 6n10ai2nEw6UyZyqxGD0AcUceRQnGNAjAoHVQF3W+z6eVQbkuIslVnQkCpYdFJRy WQ8VueRP4E9veUA2D7GRar7HH3R+YZIN+buf4qgVlhs6cC80Pe4LFujVy2hHoCb7 b3ZzFMALcMLSUf6t2xdKMAZvTcjSq3mdRawokrDb8Mxdb/BtYFN3pzjpTlmFf23C Bvo+I3ppbQlPp9RBcu4ibMMkAGtHHS/V04Vb9xyhfUcraGI/x3CTUBqNaEhzJUZz rAgn5Qc9VcciSWVRlj4OcxOq3itks2WOcWrFMrIpR6w5vSPJMf9lcpOQDFjmTBXW 47+47jIFShBhJ/CWlHeNVXNvDiSzAdaRQzcxfC+3g7mlrM29vQ77zSCwvtZ/wS0u j6WszhNInUJaD9M6wGe2tCD/+Iu4gIhUGgeYS6U8gPk+kV9YTMOqnBz+HKhxITvo i48JOHLIKVLtctwLj0itB5HH7Vo7+9r9AgMBAAGjggJiMIICXjAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQC MAAwHQYDVR0OBBYEFMRAW4A4AWakEUFIS/hTTrzht0gvMB8GA1UdIwQYMBaAFKhK amMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYi aHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYj aHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wGQYDVR0RBBIwEIIO aGVzcy1ncnVwcGUuZGUwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMB AQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggED BgorBgEEAdZ5AgQCBIH0BIHxAO8AdQAHt1wb5X1o//Gwxh0jFce65ld8V5S3au68 YToaadOiHAAAAW827DyOAAAEAwBGMEQCIB5fX16PB3oUhCR33vWyzCW380FPlcmx v/Q9P1j6XiHkAiAB6lmm1ZwdG1I7TrDBZ69bUO18bIHa4azd5GWhi3EhngB2AG9T dqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABbzbsPOkAAAQDAEcwRQIg JmsblgeCL6QOlgnDC03MGOq0DROsuzw3NLmUplfuu1sCIQCK2O2z3bAYYoiabam/ NEUmE4e3D5UY+qYn2AFB11FsZTANBgkqhkiG9w0BAQsFAAOCAQEAfyJlY8bSmbZb Iv4K+qSHFESiT+A16Mb0VaXdDow4ZE4bLJ9yheeX4jbVCK4h67WXoUYUgY2P7PWa ND0kVLv2sQyEPm1glW53V0tZVsXH2muc+J+5z7mdpP/N+/IL9VOsZp3WH8YLqnJA lAhpZ3mamtq7ohO6ij7E2iohDjeNILduMqH6PsznM4roxsdLUQyJF+2r2VNYcxSH IXytn9n3rsLcz90pn+s3mhoo0e3KaewIkXrs5aF1/igFs80tTNXPJvucqnXqHy19 3QSEaXbYZ8IH2MfesmZ2rilN126Sdw/0L+J09QLgmd++7DrWUHIAIvUeFvVWHcjO 3pIq5gqrVQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAtHmfJ9e0G2NPQUc3bKxo Milc/eMZb8VH6n10ai2nEw6UyZyqxGD0AcUceRQnGNAjAoHVQF3W+z6eVQbkuIsl VnQkCpYdFJRyWQ8VueRP4E9veUA2D7GRar7HH3R+YZIN+buf4qgVlhs6cC80Pe4L FujVy2hHoCb7b3ZzFMALcMLSUf6t2xdKMAZvTcjSq3mdRawokrDb8Mxdb/BtYFN3 pzjpTlmFf23CBvo+I3ppbQlPp9RBcu4ibMMkAGtHHS/V04Vb9xyhfUcraGI/x3CT UBqNaEhzJUZzrAgn5Qc9VcciSWVRlj4OcxOq3itks2WOcWrFMrIpR6w5vSPJMf9l cpOQDFjmTBXW47+47jIFShBhJ/CWlHeNVXNvDiSzAdaRQzcxfC+3g7mlrM29vQ77 zSCwvtZ/wS0uj6WszhNInUJaD9M6wGe2tCD/+Iu4gIhUGgeYS6U8gPk+kV9YTMOq nBz+HKhxITvoi48JOHLIKVLtctwLj0itB5HH7Vo7+9r9AgMBAAE= -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 381235828680274126214510232271976491454062 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-24 07:00:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-23 07:00:49 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hess-gruppe.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 4095660681671285689931794319938486687921508081461517089085351938723386091129956637200035928622371946666994878854958811139783711457560388259169350274812158689493926897792129452143059870870538752291290451600474900641060727503137758726673666051330808378792968918792559898834609837585258579412704250470109596888841364889905529738549037534613876476088840523779235139042344894238194688543581883216721432756280889895554638398224535574365933194379990354553770199669714820536668593051854174382370128796967597603240012290542410558174292356449378092091645632124903964330744490586868443349585543543060767139597895532243220889323246669161063060341686970569548041845640322459120279179468897073305064309802050443716516792613049439948998252402403142245708987247356478771771711943316711143878155156269107704038261471689358829054679857492946411289487466073348047648755007842396941559191695986180623485448854602906289492364761720776701180107517 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c4405b80380166a41141484bf8534ebce1b7482f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hess-gruppe.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016f36ec3c8e000004030046304402201e5f5f5e8f077a14842477def5b2cc25b7f3414f95c9b1bff43d3f58fa5e21e4022001ea59a6d59c1d1b523b4eb0c167af5b50ed7c6c81dae1acdde465a18b71219e0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016f36ec3ce900000403004730450220266b1b9607822fa40e9609c30b4dcc18eab40d13acbb3c3734b994a657eebb5b0221008ad8edb3ddb01862889a6da9bf3445261387b70f9518faa627d80141d7516c65 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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