www.bund-fuer-gestaltung.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:59:0e:35:59:bd:ad:c8:19:4c:ed:d6:6b:59:34:47:42:10 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.bund-fuer-gestaltung.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:59:0e:35:59:bd:ad:c8:19:4c:ed:d6:6b:59:34:47:42:10Serial Number (int): 291640874655081114607732899768190164746768
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 44:75:2d:06:49:c3:07:02:31:5d:c2:76:3d:46:e5:fe:9c:70:4f:94
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 2a:22:69:1c:28:71:58:e7:a8:2b:ee:1a:0f:ae:e1:0f:0f:31:db:64
Fingerprint (sha256): f7:bf:08:ea:b4:48:8b:c1:8a:aa:32:6f:e6:ba:93:c6:9d:35:27:c2:76:4f:cd:6f:ac:d0:3a:d8:51:c0:39:94
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.bund-fuer-gestaltung.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.bund-fuer-gestaltung.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.bund-fuer-gestaltung.de
Other certificates including the domain name bund-fuer-gestaltung.de
(limited to 100 certificates)
bund-fuer-gestaltung.de
bund-fuer-gestaltung.de
crrozckzrhbphvf.immo-look.eu
bund-fuer-gestaltung.de
der-discounter.lima-city.de
www.bund-fuer-gestaltung.de
relay2.enjoi-sailing.com
*.bund-fuer-gestaltung.de
bund-fuer-gestaltung.de
bund-fuer-gestaltung.de
www.bund-fuer-gestaltung.de
bund-fuer-gestaltung.de
www.bund-fuer-gestaltung.de
code-mi.com
bund-fuer-gestaltung.de
bund-fuer-gestaltung.de
rentenversicherung.drjustusadam.de
bund-fuer-gestaltung.de
error.22chan.org
www.bund-fuer-gestaltung.de
bund-fuer-gestaltung.de
bund-fuer-gestaltung.de
crrozckzrhbphvf.immo-look.eu
bund-fuer-gestaltung.de
der-discounter.lima-city.de
www.bund-fuer-gestaltung.de
relay2.enjoi-sailing.com
*.bund-fuer-gestaltung.de
bund-fuer-gestaltung.de
bund-fuer-gestaltung.de
www.bund-fuer-gestaltung.de
bund-fuer-gestaltung.de
www.bund-fuer-gestaltung.de
code-mi.com
bund-fuer-gestaltung.de
bund-fuer-gestaltung.de
rentenversicherung.drjustusadam.de
bund-fuer-gestaltung.de
error.22chan.org
www.bund-fuer-gestaltung.de
bund-fuer-gestaltung.de
Certificate
The complete raw certificate details for www.bund-fuer-gestaltung.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgISA1kONVm9rcgZTO3Wa1k0R0IQMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMjMwMTAxMzZaFw0y MDAxMjEwMTAxMzZaMCYxJDAiBgNVBAMTG3d3dy5idW5kLWZ1ZXItZ2VzdGFsdHVu Zy5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKLhuT6/KnvNh7EX 9xUcpOkUW6p8doYrywHqF58Ny3JFGiT89A5rtfNB+xkpMksFmNONVfS/mzMpIB9P kF4R3goJ8oIqPjFQ1SzIjZDD/X/U9QwY0rNDFjeyKOeYrdUy1vDrKeoFuDtnvdfM aseMOQUBoTQWCbirDDdNXr98ZCjEgFGRqQtw9ig5pTgCXVSHRWhDJtDitqiz6vWf MYHmTbY7fKb4hHQGZtvLjQKWO4CW7feb1AeWL2Kg0BzqbrU2+UzVBDXZUrEqqWoz F5f24YjAptqqxQLQne9SfSagCnH7HEzkhjYSt3YFZVbx7nDuGbDA+4DIOxWp0JWZ 7YNOs0MCAwEAAaOCAnEwggJtMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQURHUtBknD BwIxXcJ2PUbl/pxwT5QwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAmBgNVHREEHzAdght3d3cuYnVuZC1mdWVyLWdlc3Rh bHR1bmcuZGUwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAm BggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEE AdZ5AgQCBIH2BIHzAPEAdwAHt1wb5X1o//Gwxh0jFce65ld8V5S3au68YToaadOi HAAAAW32WRTpAAAEAwBIMEYCIQCFkrpt9baDCERD4ieb76CvoccWZ50yp5l5Sntc ABRb0QIhAJpHSA5tjYMW3ODDew5SDKLqa4H7AL7s4s6FYQ0KQqIHAHYAb1N2rDHw MRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFt9lkVhwAABAMARzBFAiEA3uJm vtZOimR3OnXnR1u/wEJSTDJq1vM8G4uEhRBaVTACIEQ+w6iAFnawoZxUbZwt8MCN eZhgkMP4LEjj4JgJFknGMA0GCSqGSIb3DQEBCwUAA4IBAQCASKaQdjEx98CpLACl pSVDjo2JxfFcWFO3vu7bi9q0NxzV1VFQ8wa88wp7+Mi3qH5A89DzcojDns2Dvpa+ kj5fl74001w5BYKqU7SCbmsTVW1jl2j9WfRQxiQhOcf+myjh9p1cU1dLzjnuyXUi wFRVJk7FnE/JDaU6T5kevfkk5f0oNp0ayRFikxXWX6LPuA4ZRoUiANFpsb5QvHKW fEJxDKGcb7Mq4+Ll5mp4qL6yOCnEFdkltpjGs2yrDW3py0P08cKuWD8oJrMtJ+yf JUTEuYLrJWemDi87nGtjAcn5matDqAm2ZBBgVS71pz8+yjyUAHZvOOL3D41w0Qdd jxyE -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouG5Pr8qe82HsRf3FRyk 6RRbqnx2hivLAeoXnw3LckUaJPz0Dmu180H7GSkySwWY041V9L+bMykgH0+QXhHe Cgnygio+MVDVLMiNkMP9f9T1DBjSs0MWN7Io55it1TLW8Osp6gW4O2e918xqx4w5 BQGhNBYJuKsMN01ev3xkKMSAUZGpC3D2KDmlOAJdVIdFaEMm0OK2qLPq9Z8xgeZN tjt8pviEdAZm28uNApY7gJbt95vUB5YvYqDQHOputTb5TNUENdlSsSqpajMXl/bh iMCm2qrFAtCd71J9JqAKcfscTOSGNhK3dgVlVvHucO4ZsMD7gMg7FanQlZntg06z QwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 291640874655081114607732899768190164746768 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-23 01:01:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-21 01:01:36 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.bund-fuer-gestaltung.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20561913866934898068643424962610242101554554273107194817147565491063918660880115745757996561302201521584833964448595488121445493288352897580052057506247127597058054705299162457346850846973744293968660512293210647726905621930826087468347934857439869196639980846426373497545976507663322744753815162327302414493305468053377039877387556975816898918155874770301418473357283787768404048460112371608644120046877863390001859776380864776984462146655996975375976800973823624079884041540593899598313100499682820289527199152902300769690192330630586112192191101237375550386883802079967628105390834442142186196427141001855185630019 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 44752d0649c30702315dc2763d46e5fe9c704f94 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bund-fuer-gestaltung.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016df65914e900000403004830460221008592ba6df5b683084443e2279befa0afa1c716679d32a799794a7b5c00145bd10221009a47480e6d8d8316dce0c37b0e520ca2ea6b81fb00beece2ce85610d0a42a2070076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016df65915870000040300473045022100dee266bed64e8a64773a75e7475bbfc042524c326ad6f33c1b8b8485105a55300220443ec3a8801676b0a19c546d9c2df0c08d79986090c3f82c48e3e098091649c6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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