DV SSL/TLS Certificate for www.igha.de

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the www.igha.de DV SSL/TLS Certificate

This certificate with serial number 06:84:aa:da:a7:5d:5c:99:89:67:41:7a:57:e3:db:bf:c5:4d for www.igha.de was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.igha.de provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:84:aa:da:a7:5d:5c:99:89:67:41:7a:57:e3:db:bf:c5:4d
Serial Number (int): 567818092098683234506803961997543025395021
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 40:98:81:e9:c9:d8:50:11:43:83:28:f4:fb:9f:62:28:9b:b2:a6:03
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): 49:e6:0b:31:bc:f4:50:0f:8e:ec:09:da:35:2c:38:fa:9a:9e:28:72
Fingerprint (SHA-256): b7:7d:07:66:c6:67:8c:c0:e2:1c:37:4a:25:28:b7:d5:ba:d4:46:2a:6e:bc:41:9e:13:ad:a1:ce:32:60:51:b4

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

OCSP Server: http://r11.o.lencr.org
CRL Distribution Point: http://r11.c.lencr.org/78.crl

Check the revocation status for certificate www.igha.de
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.igha.de

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

www.igha.de

X.509 Certificate

The complete raw X.509 certificate details for www.igha.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 567818092098683234506803961997543025395021
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-19 01:33:06 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-07-18 01:33:05 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.igha.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 738432591969012832343902306908580954674993388029315551021894311015950322829876279191461465721987266798028009528471778278689896310828336763512101969635278434134163478715976967147271260177160376554956511201567576253756193125436792232289421310878732350419740363721681070616073411760961099799152044680427973347226327897695002265235668944437466803387633556981920014226881673072398308905388405449450651652694282950256977880245209364509941017537585789745609863805036111191259818012852132861488853488364355954493899689865269937113863964446548599516968136163626279956813403008185432564264367737485304497196143897682221994309692280391577558709821568965651399886346932347262214917947059289564505784158236808487036632267888304073997844351011213363064002566020805173057171320009883684315918955897174267061523879924724725613393940663420390821524929804986605314072256763932226796910090988787334299917874540881365098922494395892174661491844787156307968402152220409061984946788665396339310690677752828768631402696855226625744099766069537661494840291410329259946252774789275747438520013982043422801646920750178806779427208437087834154551818268929019253318420795628212665627160043281253912246692785327487536614285010387064206349794768319250262032729773
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							409881e9c9d85011438328f4fb9f62289bb2a603
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.igha.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/78.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007500a2e30ae445efbdad9b7e38ed47677753d7825b8494d72b5e1b2cc4b950a447e7000001964be31b640000040300463044022069c180d591903ac0f663f7faf8f48705f46546440d222c52737852b716e8fecf02200bbf2c857e70f53defbd23c839568fca32f12c7a57e29a9cd4f29897349bc67c00770012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a000001964be31b530000040300483046022100a08a357cc7dad1dc42760f0bcfc0fbf43074cf03a9176819ae37775a9aed1e8d022100b39067a8e36c52b696d847e0a91a7551420bf53a6bc564c371c404282a56047c
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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