*.oyen.de
Issued by Encryption Everywhere DV TLS CA - G2
About this certificate
This digital certificate with serial number 05:50:95:9b:4c:cd:fa:d2:2a:19:c8:79:2f:0b:24:a6 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.oyen.de
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 05:50:95:9b:4c:cd:fa:d2:2a:19:c8:79:2f:0b:24:a6Serial Number (int): 7064558110773374392580843488517235878
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: d2:a6:87:91:0d:ab:ed:22:15:ea:ed:e7:f0:1a:12:1c:d6:51:52:4d
AuthorityKeyId: 78:df:91:90:5f:ee:de:ac:f6:c5:75:eb:d5:4c:55:53:ef:24:4a:b6
Fingerprint (sha1): 31:e7:cf:d6:00:21:c8:70:48:39:41:6a:08:6a:06:71:4f:1b:d0:85
Fingerprint (sha256): ff:09:13:4c:ca:97:2c:ea:77:1d:7e:93:86:56:ea:b9:36:4a:24:e3:37:cf:cf:9d:90:47:ac:a2:be:b9:db:84
Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCheck the revocation status for certificate *.oyen.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.oyen.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.oyen.de
oyen.de
oyen.de
Other certificates including the domain name oyen.de
(limited to 100 certificates)
blindstream.com
admin.dheoab.dev
account.labolive.com
www.appboxo.com
www.oyen.de
www.oyen.de
www.oyen.de
www.catalogohinode.com.br
routine.oyen.de
www.oyen.de
www.oyen.de
fcbeauty.s-match.jp
jkingcoding.com
www.graphysis.com
www.oyen.de
www.oyen.de
camilafachin.com
www.movementtracker.app
www.sitiospro.com.co
*.oyen.de
www.oyen.de
aimaapacaf21.eventxtra.com
www.oyen.de
21130262.tk
www.teafe.com.br
routine.oyen.de
www.clublines.app
gusurban.com
*.oyen.de
admin.dheoab.dev
account.labolive.com
www.appboxo.com
www.oyen.de
www.oyen.de
www.oyen.de
www.catalogohinode.com.br
routine.oyen.de
www.oyen.de
www.oyen.de
fcbeauty.s-match.jp
jkingcoding.com
www.graphysis.com
www.oyen.de
www.oyen.de
camilafachin.com
www.movementtracker.app
www.sitiospro.com.co
*.oyen.de
www.oyen.de
aimaapacaf21.eventxtra.com
www.oyen.de
21130262.tk
www.teafe.com.br
routine.oyen.de
www.clublines.app
gusurban.com
*.oyen.de
Certificate
The complete raw certificate details for *.oyen.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF8zCCBNugAwIBAgIQBVCVm0zN+tIqGch5LwskpjANBgkqhkiG9w0BAQsFADBu MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg RFYgVExTIENBIC0gRzIwHhcNMjQwNTAzMDAwMDAwWhcNMjUwNTE4MjM1OTU5WjAU MRIwEAYDVQQDDAkqLm95ZW4uZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQCplq+Qm6ZXQeC9rnT/aaoMqHwRLVZpnLId56XSk90pZnAdoSfDyydYvRSy MiVz9B1gLw+AAB6PN31PwtHxLPt0TSP3i6BouPalm0Zx+g9PPfL0uEjnVBrKSLyg 3MjRlSFaqPOvhImwGDHwP8v3jw65ry8wQK3+9uNcjf7BedQNb7NdQWcZT87/q1R7 Q1KyXTlIKMnjpExbqwtpJMq7L4jsOu/6+mJFmy/Wc2PvR9xfm/yXr1hBSxHhSdkM fORklG8t8X+lGtAeroJN3pdUqoCvyd1o5QXygEvqYrT/jI2XdV+b+/INX2ImPr5c DRKB8jTImLerxUr1+wVY4te950ZRAgMBAAGjggLlMIIC4TAfBgNVHSMEGDAWgBR4 35GQX+7erPbFdevVTFVT7yRKtjAdBgNVHQ4EFgQU0qaHkQ2r7SIV6u3n8BoSHNZR Uk0wHQYDVR0RBBYwFIIJKi5veWVuLmRlggdveWVuLmRlMD4GA1UdIAQ3MDUwMwYG Z4EMAQIBMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQ UzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MIGABggrBgEFBQcBAQR0MHIwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2lj ZXJ0LmNvbTBKBggrBgEFBQcwAoY+aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29t L0VuY3J5cHRpb25FdmVyeXdoZXJlRFZUTFNDQS1HMi5jcnQwDAYDVR0TAQH/BAIw ADCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHcATnWjJ1yaEMM4W2zU3z9S6x3w 4I4bjWnAsfpksWKaOd8AAAGPPD3JAgAABAMASDBGAiEAxU3ka/dPfbuTDJd25Wr1 QvWi0P1QkiYwMpFBkZOMDV8CIQCziLGgtb7zmQDr/mjVegqVTIokL0ml4/QYSsVy r4WYdQB2AH1ZHhLheCp7HGFnfF79+NCHXBSgTpWeuQMv2Q6MLnm4AAABjzw9yUEA AAQDAEcwRQIgLCVWvtc6i9MZLR0BNlXAixmWHQB30vf8+qZDroGHcecCIQDSheG3 CSvzYfq1V9SZ2roCp7Yi3tqUfubFfF9qpSc2HQB1AObSMWNAd4zBEEEG13G5zsHS QPaWhIb7uocyHf0eN45QAAABjzw9yWkAAAQDAEYwRAIgSRO+JlbMtsBN4SaSrJYW InLQC/R5yZApAjyZZrT/DxECIF9U5sYWH8bW7GaCmV2qoL5GLyHJ45mJFMcGIARt xjJMMA0GCSqGSIb3DQEBCwUAA4IBAQA1c/vjpXIoAnDW4GYmU0OUSBzVMKEzQjdE oRg/OSoCZqMomVI6NWJxaksJsEe0lmxypzBwWpnScTs95cnbtMY6g7IF1M6IM5oq Pbtcw8q2xQECCsm2zxtffpez4vK6Ast7LNfThqBU2Bly0TctRtRyYRKf1hrhjiey jSPDsJmG5Z7bPNJTQnPB7xbj0iVmZnxDZIS/mJqKwd0CFAWGFr9ipZDMWTg88Q37 B9r1HfbUBuAZ9EqYy88g0OfbfO0a4jVnf7XJ65isGoHyvAOUwb12roT9FWsyaKas 0R/4w9xo0ceB+KQrYe0dGDCyBdWez6DGp+X0GpJaZ6fcKoLDoHPL -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZavkJumV0Hgva50/2mq DKh8ES1WaZyyHeel0pPdKWZwHaEnw8snWL0UsjIlc/QdYC8PgAAejzd9T8LR8Sz7 dE0j94ugaLj2pZtGcfoPTz3y9LhI51Qayki8oNzI0ZUhWqjzr4SJsBgx8D/L948O ua8vMECt/vbjXI3+wXnUDW+zXUFnGU/O/6tUe0NSsl05SCjJ46RMW6sLaSTKuy+I 7Drv+vpiRZsv1nNj70fcX5v8l69YQUsR4UnZDHzkZJRvLfF/pRrQHq6CTd6XVKqA r8ndaOUF8oBL6mK0/4yNl3Vfm/vyDV9iJj6+XA0SgfI0yJi3q8VK9fsFWOLXvedG UQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7064558110773374392580843488517235878 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-18 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.oyen.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21408579476808640385840286369754647111911897495810666640899541386186829408546068965334058243461591967323164281468918541316241066503753321061469370012493627364642519755781559715103776955139563341538211044924209382739396939026469766447424113289840642790442139546259336705296209834511560863314716883335257908295230726399996966542429676904289264969927852786370419058996740187385686509267622712479495358476602722198805645626179038056246491938311817750154145249873482787336157113288918111330226799779485349311585991590244086343066615246436285325202443372203931794849776744969344112898305268273893949507853895444098139506257 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 78df91905feedeacf6c575ebd54c5553ef244ab6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d2a687910dabed2215eaede7f01a121cd651524d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.oyen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oyen.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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