rivet-lentz.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:85:dc:37:57:29:9e:e8:76:10:45:12:bc:51:9a:6c:dc:cc was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=rivet-lentz.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:85:dc:37:57:29:9e:e8:76:10:45:12:bc:51:9a:6c:dc:ccSerial Number (int): 306887130099032626328720385997550507580620
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: e8:5a:fa:32:49:8e:fc:dc:0b:89:5d:d6:ed:28:b3:14:3c:f3:26:56
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a2:db:c5:a7:a9:05:aa:91:0b:1d:a2:f1:6e:12:dd:14:61:40:c5:79
Fingerprint (sha256): ef:68:e3:06:75:04:a7:af:b6:c0:c8:31:fb:12:43:99:bf:54:4d:43:ee:5a:8c:1a:29:0b:55:13:db:78:8c:0a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate rivet-lentz.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rivet-lentz.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rivet-lentz.de
www.rivet-lentz.de
www.rivet-lentz.de
Other certificates including the domain name rivet-lentz.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for rivet-lentz.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgISA4XcN1cpnuh2EEUSvFGabNzMMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAxMjkxMDUyMjVaFw0x OTA0MjkxMDUyMjVaMBkxFzAVBgNVBAMTDnJpdmV0LWxlbnR6LmRlMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0kBlaaDx5hs2Ta4irrGTYpJAYeN1C7d go/nSVwYtw9gW0gKbA6SK0gGXg+Ytsb+sIreTOTBVme6zuu2Et0KOxA0WmQz9cxF U1yNv+/dU8rGthrGSmaApw9BRMScQKt/7Ku6Zwn6/R1K0Iv6xBhmhQZ8zs0idQrh j06GClGE5kebe6j2wQa438BsOh2ZVtm6Q9g+eDBJMpd49LX60KGZCOWrYV2Qlxkj 4xcUfRO6vJRv8wpyoJ9jUQwlT/aJqgjhYxV2ajCOhT2vRcTN4OvHLN/KRFCy+99x W+tDy9yhuNQNLnqpEBQx5AwcbrHfkLj/IRp+AhSHgc1HvxELQpWq7QIDAQABo4IC eDCCAnQwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBToWvoySY783AuJXdbtKLMUPPMm VjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRj MGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5v cmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5v cmcvMC0GA1UdEQQmMCSCDnJpdmV0LWxlbnR6LmRlghJ3d3cucml2ZXQtbGVudHou ZGUwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQC BIH2BIHzAPEAdgB0ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWiZ dAooAAAEAwBHMEUCIQCN7bC2pN5u9Knb8wQcTK8aPeYwsPkwvpfezkA4izUU1gIg Fe+SMLULc5fNakwAiDFo6sKlPBAgPbduLMGxHX2wAnAAdwBj8tvN6DvMLM8LcoQn V2szpI1hd4+9daY4scdoVEvYjQAAAWiZdApSAAAEAwBIMEYCIQDIKfMvmN2H1ecz u72M+htJ0cbM+j7TDi8rVNlvOi8VuQIhAL/ogtDNl4HZlXnawE6alDmmVtksXdLk NYr0PUIeai5sMA0GCSqGSIb3DQEBCwUAA4IBAQBnx9893KCBQChWvurITL24XZTn IDfZDr3s8HPhBy1MHvzMVJEyziuXGCEIfkaVOkw+Bh2cBedQRNRHmv4O4jZHaY4V 2uid11/1r4iDaUcolR8qS6YKEjFojQ7Q8LWvtUYuwLIxnRTF2qDZ7RuHVDT7vxiH Uy60kos1rrkYPs4QrVnIpML7JjMch3PeKRFoj8khtRs0kYxmrqJMb3MFrZi9vXQn hcAXso0iIh9dV30sAoAqWVoFeBlFHuu6M92CoN3Z9xvHWScWEeKkdf3c0lXPUHpH 9NAjEwi8MN1adLngAuoM7HU3kSYCuppGyuO+HhTuMFrMhWXKfxeOhO7V05Jn -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0kBlaaDx5hs2Ta4irrG TYpJAYeN1C7dgo/nSVwYtw9gW0gKbA6SK0gGXg+Ytsb+sIreTOTBVme6zuu2Et0K OxA0WmQz9cxFU1yNv+/dU8rGthrGSmaApw9BRMScQKt/7Ku6Zwn6/R1K0Iv6xBhm hQZ8zs0idQrhj06GClGE5kebe6j2wQa438BsOh2ZVtm6Q9g+eDBJMpd49LX60KGZ COWrYV2Qlxkj4xcUfRO6vJRv8wpyoJ9jUQwlT/aJqgjhYxV2ajCOhT2vRcTN4OvH LN/KRFCy+99xW+tDy9yhuNQNLnqpEBQx5AwcbrHfkLj/IRp+AhSHgc1HvxELQpWq 7QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 306887130099032626328720385997550507580620 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-29 10:52:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-29 10:52:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rivet-lentz.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25157423382168046158912411993223961531369275617960411560944171493047833561272844612498685833608649035502509412380705322439027948811647112039439819958414988798918248196886235232816303683560253805589017159826219029548194515329496512974067569550828441802572807604960309247662113839582240304236131412652407115317566516409301388906502369815569977786374800974448150895794444385968591687837328216074959904226020378797316608589215753068236034545134923905592623352832768597034420014678467085680729707988135394506615706085715107028246368060226306504839128668157542954503952374494681582260739766378218797349173165734027676986093 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e85afa32498efcdc0b895dd6ed28b3143cf32656 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rivet-lentz.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rivet-lentz.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016899740a2800000403004730450221008dedb0b6a4de6ef4a9dbf3041c4caf1a3de630b0f930be97dece40388b3514d6022015ef9230b50b7397cd6a4c00883168eac2a53c10203db76e2cc1b11d7db0027000770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016899740a520000040300483046022100c829f32f98dd87d5e733bbbd8cfa1b49d1c6ccfa3ed30e2f2b54d96f3a2f15b9022100bfe882d0cd9781d99579dac04e9a9439a656d92c5dd2e4358af43d421e6a2e6c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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