DV SSL/TLS Certificate for maler-stehle.de

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the maler-stehle.de DV SSL/TLS Certificate

This certificate with serial number 05:f6:54:1c:ba:a6:72:22:5b:a3:3d:0b:77:e9:4d:ca:2b:a9 for maler-stehle.de was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for maler-stehle.de provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:f6:54:1c:ba:a6:72:22:5b:a3:3d:0b:77:e9:4d:ca:2b:a9
Serial Number (int): 519382696243025451237529816684240002755497
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 6d:c3:f6:0e:48:a6:09:87:5e:ca:47:57:cb:e3:d6:a3:14:21:b0:3d
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 80:ca:a0:c9:74:78:92:56:92:6e:e1:f0:30:cf:f9:2e:d1:62:96:d1
Fingerprint (SHA-256): 0e:e1:63:12:98:36:57:25:60:80:34:c8:28:7b:10:a4:3a:bd:67:e4:78:af:c8:8d:54:38:5f:88:0f:b8:2d:d7

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/42.crl

Check the revocation status for certificate maler-stehle.de
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for maler-stehle.de

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for maler-stehle.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1UhIgG6a1AYH2D7k8iOk
gez3R3CSJ0ZMOxlyrjzP24Q3xnynq4e2FfvgnO8p4NC8ORcwngB3YeAykvBxKwrQ
XSquSaVowktnoD1Ijl2+vDUfNTRWYhRMznIEMQdRaMIp9tSW1jNbT6IlIbqWxqNw
9+78awpiuwKfOc8icsAwDB8c4UW3P8cQDDbg1JOLH7zC2HpQXjiGoQjeYkC0vy2J
dZhAT3IVJ+LJpmhlmAbuGOwZMaOP3OoP/ZkxFYXfOJe0VjtM/ZvcHAs2FNKgXPNx
atHG06C9oIKIwsNe0whcOhQ7+RrkSIyfwjYJPP2Sk4GaoM3I6UqP8TwtfZFq5JrM
fqIQroPkj5tPGg9ZyvwzcDqucRC21/kFDssE/Q3HJIBbzGuKGnZW3CnM5vD50UlJ
8rafjM9mtmhgZeClIYhUv5kIGF484jhml7Na3EkEDfePKUdC5J5dCdGkiImfqcIB
k5xuzuh++wAfwh/IOAqBNOp4xhoJjFd7+1nRmDlAmbMsx8ZLzxIHbnDPvlhMISWl
Rf8PiEmXsaD00RoOL4J5yye4rfXvGvwkRhHqSMvnYX2smro+xxeOsQwJUX3tFxtr
6oPWeuY3IBeS99IhsGUpOButSn14mvwFvmOdr0PxWoufhG2MUgNIeUjd6s0lrYtd
ThwUOCy81/4UBshyvJTfbpkCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 519382696243025451237529816684240002755497
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-10 21:48:39 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-08 21:48:38 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'maler-stehle.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 870116099643528051041885534666301484736316052373755655559616309595165934004944565597912328843637249396520849114193575237686308959830243369121021538148818213680554175416565515511435048754185844239550199112825845604510355841833002376872031444442889686212632210734463122735157390570953744654031316283264341470644739178811904787201886632049161051228859349146991838553695897330719254340652666202140209412251859563474092334661980773857846594144841089117056260548917685817543155607125186317023076555555266336007899813061166759505789132179937656824735754498422560118499657516541941701675737929606517577563494106264279041774681395521912597338088612691381947831450497035445044558719351030701661991993763619392203422877356695553028310379168032267222680008662577338280685119249116441704610848419071188836940498029946740030489660040706508979454315722098582895395417154569957382115897370840862268503403770846714666176930875352925900936043690358095471490983925128111663196504128522543926443375775269975613643240717611034689739353144623287139701500618437148410146352289592353492237511602038731924878613461187078180561141201412398405793122710001945605167257843155884888911179378479797618961159490948501876567667727662286235379108113188756184583073433
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6dc3f60e48a609875eca4757cbe3d6a31421b03d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maler-stehle.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.maler-stehle.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/42.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db0000001975c06a9ef000004030047304502202d8ae5be9fbe7032fba1569903a6c679108629cc2341c1366cc7906104a7d858022100f1011360538c1756a160107797b4b08067830d0ddcf95dd37e8601e6c285c4e200770012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a000001975c06a9dd0000040300483046022100844c330e873894dea3b829d5bcd2cb304b7e87df8bec0a75e1c3402424e724af022100d2ccdf1ceb03c350c9c7bb074fd501c8e26819ec01006115fcbd7e6be84c990e
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		004cef9ea0aa9777ce88550edee4d549f1d55f544af5661e73395e44919b7c277fd20609482fd9adfcc686a1a443c3ac865cec4c6ac6abdb3b1fdca84b5bfd8d2af82ffce86d82975e6830132584f9413d06c9f264bd570eba94e183c5d126670a79fe60f2b3d9c76440e7daf97bf76a619bbf1f6a380a2a6ff962b1183bc3a64cfd89044eab3431984cf4c9ef5b059606c94e89a851e771ff9d934183ea3bda9a2c4f1324a74d016d3d9c939cc93d6272a8596f93385b7a8840cb6b04810e50f56aad4bf0db891af451fdb14509ab18dfd168da3d240266b32be1bf2a4c3fdf7c2494f9cff953f2943e45ce3c18f96d34d88846ab35cc7704cf08aa4b6968af2d