khaffee.de
Issued by R3
About this certificate
This digital certificate with serial number 04:67:ea:28:9e:3a:3e:bb:f8:35:92:98:d8:15:a4:45:02:6c was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=khaffee.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:67:ea:28:9e:3a:3e:bb:f8:35:92:98:d8:15:a4:45:02:6cSerial Number (int): 383809477772021026145251393159661481165420
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 20:93:9b:24:78:17:f3:ba:97:b7:d7:5e:2a:c3:cb:ce:f3:6d:bc:95
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 0a:75:09:92:53:64:dd:a9:c4:8a:5c:06:76:36:5d:1b:45:a3:01:8a
Fingerprint (sha256): eb:f1:76:ec:5a:5f:79:9f:56:7a:ef:6f:5a:69:7a:ee:3f:95:85:e5:d8:31:fb:01:59:a9:ee:c3:02:87:21:39
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate khaffee.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for khaffee.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
khaffee.de
Other certificates including the domain name khaffee.de
(limited to 100 certificates)
khaffee.de
www.khaffee.de
www.khaffee.de
khaffee.de
www.khaffee.de
www.khaffee.de
securetest.khaffee.de
www.khaffee.de
www.khaffee.de
khaffee.de
khaffee.de
khaffee.de
khaffee.de
www.khaffee.de
www.khaffee.de
khaffee.de
www.khaffee.de
khaffee.de
www.khaffee.de
www.khaffee.de
www.khaffee.de
khaffee.de
khaffee.de
www.khaffee.de
www.khaffee.de
khaffee.de
www.khaffee.de
khaffee.de
www.khaffee.de
www.khaffee.de
www.khaffee.de
khaffee.de
khaffee.de
khaffee.de
www.khaffee.de
www.khaffee.de
khaffee.de
www.khaffee.de
khaffee.de
www.khaffee.de
www.khaffee.de
www.khaffee.de
khaffee.de
khaffee.de
www.khaffee.de
www.khaffee.de
khaffee.de
www.khaffee.de
www.khaffee.de
securetest.khaffee.de
www.khaffee.de
www.khaffee.de
khaffee.de
khaffee.de
khaffee.de
khaffee.de
www.khaffee.de
www.khaffee.de
khaffee.de
www.khaffee.de
khaffee.de
www.khaffee.de
www.khaffee.de
www.khaffee.de
khaffee.de
khaffee.de
www.khaffee.de
www.khaffee.de
khaffee.de
www.khaffee.de
khaffee.de
www.khaffee.de
www.khaffee.de
www.khaffee.de
khaffee.de
khaffee.de
khaffee.de
www.khaffee.de
www.khaffee.de
khaffee.de
www.khaffee.de
khaffee.de
www.khaffee.de
www.khaffee.de
www.khaffee.de
khaffee.de
khaffee.de
Certificate
The complete raw certificate details for khaffee.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgISBGfqKJ46Prv4NZKY2BWkRQJsMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA2MjcxMzQyMDZaFw0yMzA5MjUxMzQyMDVaMBUxEzARBgNVBAMT CmtoYWZmZWUuZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjZBo8 mtLQoWHLVfXt+JVfRB9ta5k6l2y+bKR/Z3vpZ6FPJ7sNz/tK4Eu2HUl2JLDhDprk 475qTxAAvO6eVjnZ5XBmeiZOiklkfcasXKnUEbZlj86pb1fMCiqbiZbfy+11SlBk 2ZmtfCEhBSAO2b6JmOT4vu5Vg+XXJhgXmQ32zGwEIpZoj7fOhmPp8B0A/ur83fwt 8h2CnEqfnFd/UNnxHl5wJ9514QBOoVQd44prfyM89iH4TPh/EDH7CGFfuiY52lVY zFNXUHXSByjDaYyM8l5W/Blyg+3NraDIJcBDtQVNkKDXixk31xR1510AAJvrYpRw lm+VzOT41z9xvUc/AgMBAAGjggIMMIICCDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FCCTmyR4F/O6l7fXXirDy87zbbyVMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMBUG A1UdEQQOMAyCCmtoYWZmZWUuZGUwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgor BgEEAdZ5AgQCBIH1BIHyAPAAdgB6MoxU2LcttiDqOOBSHumEFnAyE4VNO9IrwTpX o1LrUgAAAYj9Tf3xAAAEAwBHMEUCIDHn9Mc3C0dfCAMaGFK+xbxVcuYFf4Kt65Uz JLfqos5oAiEAqAeOaCuXGgcphClwDjsVhmQ6h+qYqIpKmKR8soLZHL8AdgDoPtDa PvUGNTLnVyi8iWvJA9PL0RFr7Otp4Xd9bQa9bgAAAYj9Tf3yAAAEAwBHMEUCIGO2 DGGNeQq5wmo1+khS+ajpLGLYNryQ7P7zJQ2yC90TAiEA7/GxyxVuhYyHAYzcrefC bh0SorGcSBdhhJZujuFSFhUwDQYJKoZIhvcNAQELBQADggEBAHK9S7KfjpzcbaSA AUdgViZrk7gSIsEJ3H5UvWtZF4WxXi8o2YgKOtuzLX3yIf/qcjXaoZlzX1iOQuCG 8yrnKiG2rXRkFcIPVAVy+bKNhnkvJJsOE7d+s3OBFRxBIUi+b7FT8GXJ2Kz5yYk5 wMHjOM8E9pjQdzQQ7FtEp86t5kEemvHnRzy/dytysx0IDvBZQGMjw9I8xqJNMQ1j GaS8SDsyqtfGIi6G96yN35gSlrRGMhiWlOHrTXPBRXIplBHjSwq7Ju59Bfx3LQW8 b9hjud0Bth1Akj1vFBpFYplEFZUb4HRxoi4fK/nDRxOFpXRDOA4BdgxyD/TQL341 p2J6M4E= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA42QaPJrS0KFhy1X17fiV X0QfbWuZOpdsvmykf2d76WehTye7Dc/7SuBLth1JdiSw4Q6a5OO+ak8QALzunlY5 2eVwZnomTopJZH3GrFyp1BG2ZY/OqW9XzAoqm4mW38vtdUpQZNmZrXwhIQUgDtm+ iZjk+L7uVYPl1yYYF5kN9sxsBCKWaI+3zoZj6fAdAP7q/N38LfIdgpxKn5xXf1DZ 8R5ecCfedeEATqFUHeOKa38jPPYh+Ez4fxAx+whhX7omOdpVWMxTV1B10gcow2mM jPJeVvwZcoPtza2gyCXAQ7UFTZCg14sZN9cUdeddAACb62KUcJZvlczk+Nc/cb1H PwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 383809477772021026145251393159661481165420 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-27 13:42:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-25 13:42:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'khaffee.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28705457603521972343714326395399994784639929577742697104711740315459672750478671040869101260465583291062164320963246370094697212595866793304812474353542754712508966967024280367280521955609530365044975593635918906905524751038406536699133002906977128437682003006098656367442790914896494235106563568699191638766865756492164716780314155233370580219582035365192078514293007634625409049290051041427848827594903206606489113504462687239185257866194934437004802690160154896176452177538934816723284618589669835424488315452462690370595715354578206449169126156052103022480840926224013749139424252456904321839428398020197797939007 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 20939b247817f3ba97b7d75e2ac3cbcef36dbc95 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'khaffee.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000188fd4dfdf10000040300473045022031e7f4c7370b475f08031a1852bec5bc5572e6057f82adeb953324b7eaa2ce68022100a8078e682b971a07298429700e3b1586643a87ea98a88a4a98a47cb282d91cbf007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e00000188fd4dfdf20000040300473045022063b60c618d790ab9c26a35fa4852f9a8e92c62d836bc90ecfef3250db20bdd13022100eff1b1cb156e858c87018cdcade7c26e1d12a2b19c48176184966e8ee1521615 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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