www.saechsische-staatsbaeder.de

- Sächsische Staatsbäder GmbH -

Issued by GeoTrust SHA256 SSL CA

About this certificate

This digital certificate with serial number 6b:64:08:b3:86:ce:9a:4d:82:b9:a0:dd:18:dc:f7:31 was issued on by GeoTrust Inc..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

Sächsische Staatsbäder GmbH

Organization: Sächsische Staatsbäder GmbH
Organization unit: IT-Abteilung
State / Province: Sachsen
Locality: Bad Elster
Country: DE

GeoTrust Inc.

Organization: GeoTrust Inc.
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 6b:64:08:b3:86:ce:9a:4d:82:b9:a0:dd:18:dc:f7:31
Serial Number (int): 142746801717678159139398471292492248881
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId:
AuthorityKeyId: 14:67:8e:ed:83:4f:d6:1e:9d:40:04:0c:04:46:a1:70:34:b2:0f:72

Fingerprint (sha1): ef:9b:2e:c7:b9:cb:57:7e:da:73:ba:de:a4:00:63:bd:a2:b7:e8:09
Fingerprint (sha256): ee:ef:a3:c4:83:43:fc:3c:3f:f0:f4:99:6d:f9:77:53:e3:f7:ee:04:2c:8b:62:06:88:08:2a:a4:72:1f:88:aa

Issuing Certificate URL: http://gj.symcb.com/gj.crt

Revocation information

OCSP Server: http://gj.symcd.com
CRL Distribution Point: http://gj.symcb.com/gj.crl

Check the revocation status for certificate www.saechsische-staatsbaeder.de

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.saechsische-staatsbaeder.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.saechsische-staatsbaeder.de
saechsische-staatsbaeder.de

Other certificates including the domain name saechsische-staatsbaeder.de

(limited to 100 certificates)
saechsische-staatsbaeder.web.mageprofis.de
2021.saechsische-staatsbaeder.de
saechsische-staatsbaeder.web.mageprofis.de
2021.saechsische-staatsbaeder.de
www.saechsische-staatsbaeder.de
2021.saechsische-staatsbaeder.de
saechsische-staatsbaeder.web.mageprofis.de
saechsische-staatsbaeder.web.mageprofis.de
soletherme.saechsische-staatsbaeder.de
saechsische-staatsbaeder.web.mageprofis.de
saechsische-staatsbaeder.web.mageprofis.de
soletherme.saechsische-staatsbaeder.de
2021.saechsische-staatsbaeder.de
2021.saechsische-staatsbaeder.de
soletherme.saechsische-staatsbaeder.de
www.saechsische-staatsbaeder.de
saechsische-staatsbaeder.web.mageprofis.de
2021.saechsische-staatsbaeder.de
www.saechsische-staatsbaeder.de
saechsische-staatsbaeder.web.mageprofis.de
saechsische-staatsbaeder.web.mageprofis.de

Certificate

The complete raw certificate details for www.saechsische-staatsbaeder.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCTKZfOHHQ/8GHbHZUQq
oERT7hLPiCB66L7yaJhvmEKVktOaLPtVhpmOoMz9G6VxE6hbz9Fuzu4TgMw5yQbS
O+xkY1WUi2WAvu1V/VNse7E2+c7ogyHX7Th8PFPkqb5zAsL/bm/aIPfnrmFzYQVa
KHadZdlNQytGJyXqu4Tannd2Kcs7bfW4jtq2T/SGpdoz8wzLQmfjYpL3C9FG8HmJ
I5chbWwe5YzioHjjxycAKL2Nh6ZfqO1CNdmefdeZHEhoq+dVLJskRhNfXuZEDiPp
4CDjhFdZXUEV6NdtKnUeygevSzM/nyLj5p9Ds3j84qryZwh/uD32OEII0hzqnZJm
0QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 142746801717678159139398471292492248881
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SHA256 SSL CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-03 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-03 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Sachsen'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bad Elster'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Sächsische Staatsbäder GmbH'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT-Abteilung'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.saechsische-staatsbaeder.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22236083804004046616420224758574674652117481994138447755012363870915596232471435969492377628412843973687276823817735481701694070556121813633389044708689732057740010850042663418720470535744969400270191100660690400634852777325371929729468627303653625676815745234599688690957376350837559722154057822744101026065497108784298289587260671749544356732067599965038880561646380382248753265353049247000088721489418200302529521878202370733731968077313612457335160543053411191460253349528517753212415282799421601680705179555545474552881024281201536725602603817201947362185186583816080765196558306870361483954334792090389327275729
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (64 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.saechsische-staatsbaeder.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saechsische-staatsbaeder.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gj.symcb.com/gj.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 14678eed834fd61e9d40040c0446a17034b20f72
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gj.symcd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gj.symcb.com/gj.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc0000015bce8a07290000040300473045022100c353287599353bdec4406b14c3a45a3efda0e077fb43f8fe1d96a7bc56d8539102204a080bfa7f7ce17451f7b1cb5584773ebd51864d7af034067c9899b1541f01ae007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015bce8a075e000004030047304502200d515b9925cbeffa2b61caff2c300ddf994b4f77ba65de4868ac1bc6802d2176022100eee91ac94488ee82969fc704e9da9dd185f7ea818507ae6b73dd73a859962073
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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