www.german.in
Issued by R3
About this certificate
This digital certificate with serial number 04:97:25:28:89:45:75:8c:7c:1e:02:a8:3b:27:62:82:ad:92 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.german.in
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:97:25:28:89:45:75:8c:7c:1e:02:a8:3b:27:62:82:ad:92Serial Number (int): 399881173044014316345521714275336205806994
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 05:8f:24:05:25:6e:3f:7e:22:e8:ef:06:7b:59:28:84:5a:84:38:05
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 61:16:37:6b:11:ab:af:e0:f2:7d:2c:a1:8f:9a:f2:52:80:57:ae:66
Fingerprint (sha256): ef:aa:8d:26:40:c1:7c:1c:b5:03:73:ec:4e:0f:a3:9d:7a:54:dc:1d:d1:fa:a9:11:04:a5:5f:89:3c:e5:fd:98
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.german.in
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.german.in
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
german.in
www.german.in
www.german.in
Other certificates including the domain name german.in
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.german.in in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgISBJclKIlFdYx8HgKoOydigq2SMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMTQyMTQ3NTNaFw0yNDAyMTIyMTQ3NTJaMBgxFjAUBgNVBAMT DXd3dy5nZXJtYW4uaW4wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7 1fYmXRu16OHP9T2qX6AWhER0At9qyUbf34AuAwLmiVIfJFCx+GUR6g7D4mGz+z7Z LdKibqGy1dQ7TYXKZqPm5DORP/tmLmu7x9739aeNagzfQ7Q6GiMufR1dMixH7bQW UxmxDdvvEBJrkal4JGMYsp8IqCnHSUOACNbpbIJmHYyO3Vde7nltcGONb9ZloR04 kGsLzXN9n3ggV2jJBuRubAHaEPr6CeVk9wCkRZeDi95JuY6lthIe5cL0EukANYK4 JFCMqcNvwNTHuyp/Eic+HuOkf+SdZ77QFlhooF5F+hHUZUGjpXeESZPccT1krt7b Q1zIRwsx7lL7LE8bviOxAgMBAAGjggIbMIICFzAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFAWPJAUlbj9+IujvBntZKIRahDgFMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MCMGA1UdEQQcMBqCCWdlcm1hbi5pboINd3d3Lmdlcm1hbi5pbjATBgNVHSAEDDAK MAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2ADtTd3U+LbmATosw Wwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi9AFCqkAAAQDAEcwRQIgepKZ5BtMF8Z1 lwZMQEYyWJWImPQyxRz7wLW/SDpQRy4CIQCOiD+wRgdbK46TIi42msYzHKT5TUPn X17LFGkKB9iawgB3AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAAB i9AFCt4AAAQDAEgwRgIhAMabi8MH2/WG31qOQIreJR5/Z0S/FXKvx1xW0XPg/yxW AiEAvDHI3aQt2ynVL+Au1mvdBJFtRGM1Z/HOj8PM18epOaEwDQYJKoZIhvcNAQEL BQADggEBAIFl+NwAic/V20V3/atNFdULNkc6vun1Rbh6V24f7NuFjobuTOmuuAB/ 3AzYgsZUZd6Mj1UoNB/mYPctgRO3h6RtywuN5P4jneChuNcZz0MEors6mjNG34LF cB4ACfMUBzD96dS3T8zbcRM1ws42FIzviYpUqI/G9OKP7oQYattYIm2fa5DVXmTw 5FQ3qKhFBNQTRsRO0MqDcgMSEaopyacPUkpqyNM61MsOvH2EsjoqWNvh7LcnjZbx MpmbdJ8L6UMKj50SGGBRGKxIOfmD1gRFlY8pLvtBznHrwx5PY4OZLeoVSauDdDX6 OX9XucjozanTxlDA3qHZsAoz10OYvSY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9X2Jl0btejhz/U9ql+g FoREdALfaslG39+ALgMC5olSHyRQsfhlEeoOw+Jhs/s+2S3Som6hstXUO02Fymaj 5uQzkT/7Zi5ru8fe9/WnjWoM30O0OhojLn0dXTIsR+20FlMZsQ3b7xASa5GpeCRj GLKfCKgpx0lDgAjW6WyCZh2Mjt1XXu55bXBjjW/WZaEdOJBrC81zfZ94IFdoyQbk bmwB2hD6+gnlZPcApEWXg4veSbmOpbYSHuXC9BLpADWCuCRQjKnDb8DUx7sqfxIn Ph7jpH/knWe+0BZYaKBeRfoR1GVBo6V3hEmT3HE9ZK7e20NcyEcLMe5S+yxPG74j sQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 399881173044014316345521714275336205806994 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-14 21:47:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-12 21:47:52 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.german.in' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23712071387937301576876975760176021050874472351049015434450803025309934364704542917235605163651736771360523899237374049955855294364605608145096561834312179239358078411758836786127018198037219955019075673111473372977959809557748545776509509301304479564841050915687351675721466025429585906476932031035776740548836241243617685464720755937377293978896138790669466610135767571094629415017114352395341754479570544004130143384839441008990146040549285075418689349639852914533827960125804059665141829631599360331945388611180216145309568694761516000197186847623257276226000372534772839773844952776838245224936681212340785259441 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 058f2405256e3f7e22e8ef067b5928845a843805 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'german.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.german.in' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018bd0050aa9000004030047304502207a9299e41b4c17c67597064c40463258958898f432c51cfbc0b5bf483a50472e0221008e883fb046075b2b8e93222e369ac6331ca4f94d43e75f5ecb14690a07d89ac200770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018bd0050ade0000040300483046022100c69b8bc307dbf586df5a8e408ade251e7f6744bf1572afc75c56d173e0ff2c56022100bc31c8dda42ddb29d52fe02ed66bdd04916d44633567f1ce8fc3ccd7c7a939a1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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