www.maxintime.de
Issued by Symantec Basic DV SSL CA - G2
About this certificate
This digital certificate with serial number 0d:a4:5c:af:7e:e5:ef:67:0d:a8:22:2b:dd:c3:70:35 was issued on by Symantec Corporation.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.maxintime.de
Symantec Corporation
Organization:
Symantec Corporation
Organization unit: Symantec Trust Network
Organization unit: Domain Validated SSL
Organization unit: Symantec Trust Network
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:a4:5c:af:7e:e5:ef:67:0d:a8:22:2b:dd:c3:70:35Serial Number (int): 18133380515888679825535923466946179125
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: ca:ac:5d:e1:90:2f:f1:ef:8c:d4:9f:35:01:e1:01:3b:a0:ce:c1:77
Fingerprint (sha1): 43:6b:c2:25:54:37:ed:31:2c:e7:34:4c:0f:b8:a7:4a:88:68:ac:39
Fingerprint (sha256): fc:44:75:7f:4a:f3:73:cf:a0:65:aa:73:49:5d:76:a3:1e:f5:dc:e5:50:9f:a8:37:f6:ab:16:c8:63:a3:9d:0f
Issuing Certificate URL: http://hd.symcb.com/hd.crt
Revocation information
OCSP Server: http://hd.symcd.comCheck the revocation status for certificate www.maxintime.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.maxintime.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.maxintime.de
maxintime.de
maxintime.de
Other certificates including the domain name maxintime.de
(limited to 100 certificates)
sni.cloudflaressl.com
www.maxintime.de
en.maxintime.de
*.maxintime.de
plans.omegabikes.com
en.maxintime.de
sni.cloudflaressl.com
en.maxintime.de
factura.faeburgos.org
billing.greymatterlearning.co.uk
www.maxintime.de
www.maxintime.de
*.maxintime.de
factura.faeburgos.org
*.maxintime.de
subscription.maxintime.de
*.maxintime.de
en.maxintime.de
*.maxintime.de
subscriptions.viasatconnect.fr
subscribe.batchmore.com
*.maxintime.de
*.maxintime.de
en.maxintime.de
qms.maxintime.de
www.maxintime.de
*.maxintime.de
subscriptions.etharrelief.org
en.maxintime.de
www.maxintime.de
www.maxintime.de
abo.amicoo.family
www.maxintime.de
www.maxintime.de
en.maxintime.de
*.maxintime.de
plans.omegabikes.com
en.maxintime.de
sni.cloudflaressl.com
en.maxintime.de
factura.faeburgos.org
billing.greymatterlearning.co.uk
www.maxintime.de
www.maxintime.de
*.maxintime.de
factura.faeburgos.org
*.maxintime.de
subscription.maxintime.de
*.maxintime.de
en.maxintime.de
*.maxintime.de
subscriptions.viasatconnect.fr
subscribe.batchmore.com
*.maxintime.de
*.maxintime.de
en.maxintime.de
qms.maxintime.de
www.maxintime.de
*.maxintime.de
subscriptions.etharrelief.org
en.maxintime.de
www.maxintime.de
www.maxintime.de
abo.amicoo.family
www.maxintime.de
Certificate
The complete raw certificate details for www.maxintime.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIQDaRcr37l72cNqCIr3cNwNTANBgkqhkiG9w0BAQsFADCB lDELMAkGA1UEBhMCVVMxHTAbBgNVBAoTFFN5bWFudGVjIENvcnBvcmF0aW9uMR8w HQYDVQQLExZTeW1hbnRlYyBUcnVzdCBOZXR3b3JrMR0wGwYDVQQLExREb21haW4g VmFsaWRhdGVkIFNTTDEmMCQGA1UEAxMdU3ltYW50ZWMgQmFzaWMgRFYgU1NMIENB IC0gRzIwHhcNMTcwNjAxMDAwMDAwWhcNMTgwNjAxMjM1OTU5WjAbMRkwFwYDVQQD DBB3d3cubWF4aW50aW1lLmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxLxvKUSKJoF3MBf5WywiSv9UlQzQdND2NLG1EE+CEzzxCQa6asvgzQjgsVZ 8gXsgrprP5u2quMkvaGV4VSwTmR97DHOR3UEPVocfQpB3H86jurIp5lNoi8J33WE 8jefehMfv0Jnq36zIE1+JygblkMPWH3zonniip/LOVZDMiuW10f9ke+JotYHrClc +MXUD/GiUbECHTHUz6qBApWJMRWJRm4xJLaPFnnT+TlMlrsJd5gBbOv+PlRNFaPQ T360lfaWFqJJXL3gQU6CfMRH8u1XJgbT7U+1gkKVewgUlULf7QmlPWmZMbY/fAOS NJCizbSTfPBmR94spsYgJfo19wIDAQABo4ICTjCCAkowKQYDVR0RBCIwIIIQd3d3 Lm1heGludGltZS5kZYIMbWF4aW50aW1lLmRlMAkGA1UdEwQCMAAwYQYDVR0gBFow WDBWBgZngQwBAgEwTDAjBggrBgEFBQcCARYXaHR0cHM6Ly9kLnN5bWNiLmNvbS9j cHMwJQYIKwYBBQUHAgIwGQwXaHR0cHM6Ly9kLnN5bWNiLmNvbS9ycGEwHwYDVR0j BBgwFoAUyqxd4ZAv8e+M1J81AeEBO6DOwXcwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBXBggrBgEFBQcBAQRLMEkwHwYIKwYB BQUHMAGGE2h0dHA6Ly9oZC5zeW1jZC5jb20wJgYIKwYBBQUHMAKGGmh0dHA6Ly9o ZC5zeW1jYi5jb20vaGQuY3J0MIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYA3esd K3oNT6Ygi4GtgWhwfi6OnQHVXIiNPRHEzbbsvswAAAFcYoWIpAAABAMARzBFAiEA z6PN6InqrpFoqOuALVBUHjSOr2usKVcfMyMrIhnphG8CIDcMR4Ve5OESeBugsCwn QP1QExSPMF051cTXPZtvD5zGAHYApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fN DsgN3BAAAAFcYoWI/gAABAMARzBFAiEAjaUsRSqZCRgn1qC2Xz60jxce0oUg59PG PutsP5of2+wCIB3nwCxQqBvdhlMTpHIW7xbpymERx+1HIZvSwlYPZROEMA0GCSqG SIb3DQEBCwUAA4IBAQAXcgvhJy43CcLaLGuYBbzQgGOlIdySOvyXy4ri1g2ndchy M4RPl6KOoTwdA882J0ImW6YXxutA43+59X2+CfHY+8Y3GLGXPFTVtGPY5MfIyGpw D65CAqzUpwhdurdyIQIzE2bbXpFGmFpKa3woVY+dubtz0ERFlg6umPzTvtuaTccO clmN4Cib1k8oLNZePMJu8yPM3p7y0JNR2r+IALZigqoY/VfO0E4VsvKnN61BvQ/Z LZMX1QmSY4CE6rFJPYUdnloTuMzWg/yD/E3R3J0+TwTHlkKmPjSgIofidx6sXKEA rQesu9j6g/0tTYyu/9LlmGd6HimkLlwl/m02g+4l -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxLxvKUSKJoF3MBf5Wyw iSv9UlQzQdND2NLG1EE+CEzzxCQa6asvgzQjgsVZ8gXsgrprP5u2quMkvaGV4VSw TmR97DHOR3UEPVocfQpB3H86jurIp5lNoi8J33WE8jefehMfv0Jnq36zIE1+Jygb lkMPWH3zonniip/LOVZDMiuW10f9ke+JotYHrClc+MXUD/GiUbECHTHUz6qBApWJ MRWJRm4xJLaPFnnT+TlMlrsJd5gBbOv+PlRNFaPQT360lfaWFqJJXL3gQU6CfMRH 8u1XJgbT7U+1gkKVewgUlULf7QmlPWmZMbY/fAOSNJCizbSTfPBmR94spsYgJfo1 9wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18133380515888679825535923466946179125 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Trust Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Basic DV SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-06-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.maxintime.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22605998363903168696641834437002024083088403652821845804206479743108198101068174489514371013857250323298045275384610562379292112592543854394432814517584491609201075242071465550977830912457708848942649595521946184513593614591239577005785616587901965664506317199674045628894467894334147133867519331417295716024042208821268722591674437572356286395879162850419471481956588075927354014203662450834553789217056226592645890694280566276915947053739228054217850371597668506590558433051939578192315505256870336844167676362455271311212823531072724357496930607317566274409418472434427588207397315411191559085129634076121431160311 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.maxintime.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maxintime.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://d.symcb.com/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName caac5de1902ff1ef8cd49f3501e1013ba0cec177 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://hd.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://hd.symcb.com/hd.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc0000015c628588a40000040300473045022100cfa3cde889eaae9168a8eb802d50541e348eaf6bac29571f33232b2219e9846f0220370c47855ee4e112781ba0b02c2740fd5013148f305d39d5c4d73d9b6f0f9cc6007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015c628588fe00000403004730450221008da52c452a99091827d6a0b65f3eb48f171ed28520e7d3c63eeb6c3f9a1fdbec02201de7c02c50a81bdd865313a47216ef16e9ca6111c7ed47219bd2c2560f651384 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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