DV SSL/TLS Certificate for www.reachpotential.de

Certificate is witin its validity period

Issued by DigiCert Inc (Encryption Everywhere DV TLS CA - G2)

About the www.reachpotential.de DV SSL/TLS Certificate

This certificate with serial number 03:b2:61:be:fa:ef:96:7c:27:84:fa:2d:13:be:e7:d7 for www.reachpotential.de was issued on by DigiCert Inc.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.reachpotential.de provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

DigiCert Inc

Organization: DigiCert Inc
Organizational unit: www.digicert.com
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 03:b2:61:be:fa:ef:96:7c:27:84:fa:2d:13:be:e7:d7
Serial Number (int): 4913895352917275230285650260800759767
Serial Number Length: 122 bits, 16 octets

Subject Key Identifier: dc:bc:41:01:4c:af:12:a9:19:e5:06:5d:c5:3d:09:0f:80:f3:1e:e8
Authority Key Identifier: 78:df:91:90:5f:ee:de:ac:f6:c5:75:eb:d5:4c:55:53:ef:24:4a:b6

Fingerprint (SHA-1): 78:21:d8:9f:b7:10:6c:8f:e3:4f:33:04:63:9a:6a:93:47:f0:9f:90
Fingerprint (SHA-256): af:03:d1:42:72:f7:bd:95:77:95:c7:06:3d:6a:53:fe:49:48:f1:bf:37:41:69:07:72:33:04:07:38:d2:4b:c1

Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt

Revocation Information

OCSP Server: http://ocsp.digicert.com

Check the revocation status for certificate www.reachpotential.de
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.reachpotential.de

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9
CA Certificate
This is not a CA certificate

Subject Alternative Names

www.reachpotential.de

X.509 Certificate

The complete raw X.509 certificate details for www.reachpotential.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGAjCCBOqgAwIBAgIQA7JhvvrvlnwnhPotE77n1zANBgkqhkiG9w0BAQsFADBu
MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3
d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg
RFYgVExTIENBIC0gRzIwHhcNMjUwNjI4MDAwMDAwWhcNMjYwNjI3MjM1OTU5WjAg
MR4wHAYDVQQDExV3d3cucmVhY2hwb3RlbnRpYWwuZGUwggEiMA0GCSqGSIb3DQEB
AQUAA4IBDwAwggEKAoIBAQDStudk9cjPMd7zSRNPaEKFfModoIa8QW9l2gzcK+zN
IPYNMipHVa0jZk5DF0LdfJC0Qt85yb2v8+98XlHloMK8aeFk+geqHedsLhmFFJtA
dO4Cb2Gpm43nnn3JKsWvH4ZB77RSVXM9Kh41xPjdIjF48ezMQlewdPZtyIveqERW
/GS/0n4Vl2zqug28sPH2V3IZMlpPoeO4Jbux+ayfA0b/3QUusBOOWG65Ktwl9F6F
6ZjA4+qmL5S+T7AZYJF/Zp6OpddX2ChQUdEiqPlSnTZcq00Mg3oXLqz2Oh6O6ge1
hbXTzuygzLTmLaoXE8yYm76WuL1i7WoagijrgO5r4n1HAgMBAAGjggLoMIIC5DAf
BgNVHSMEGDAWgBR435GQX+7erPbFdevVTFVT7yRKtjAdBgNVHQ4EFgQU3LxBAUyv
EqkZ5QZdxT0JD4DzHugwIAYDVR0RBBkwF4IVd3d3LnJlYWNocG90ZW50aWFsLmRl
MD4GA1UdIAQ3MDUwMwYGZ4EMAQIBMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cu
ZGlnaWNlcnQuY29tL0NQUzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB
BQUHAwEGCCsGAQUFBwMCMIGABggrBgEFBQcBAQR0MHIwJAYIKwYBBQUHMAGGGGh0
dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBKBggrBgEFBQcwAoY+aHR0cDovL2NhY2Vy
dHMuZGlnaWNlcnQuY29tL0VuY3J5cHRpb25FdmVyeXdoZXJlRFZUTFNDQS1HMi5j
cnQwDAYDVR0TAQH/BAIwADCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHYADleU
vPOuqT4zGyyZB7P3kN+bwj1xMiXdIaklrGHFTiEAAAGXtLpk+AAABAMARzBFAiEA
lTYvIJkqlTSRayRUUL2TvsBKZpsF3B8sVQgafhev+3QCIEIu+cXY6E3dPsigT4rJ
DWlVsW4VajD4//MwTeBQf8YkAHUAZBHEbKQS7KeJHKICLgC8q08oB9QeNSer6v7V
A8l9zfAAAAGXtLplMQAABAMARjBEAiBnp9bIhzVHU0I69wWgEC5bXRJqToazCBkq
BUhgekMJtQIgHoZdvNW2/yr/sCQxQFSx5WezSWf8V/vt67a8vgY81TIAdwBJnJtp
3h187Pw23s2HZKa4W68Kh4AZ0VVS++nrKd34wwAAAZe0umVPAAAEAwBIMEYCIQDz
t+rnArKc9Yc9LWt05UgoDGPrLNZw1Knnkopvcfx+MwIhAKQyTgWUaoopP46jsgbK
av/3kxBmOQFslOgccmJ8Jv3fMA0GCSqGSIb3DQEBCwUAA4IBAQDZtXGXYPa/Su+E
YE2zSY1QYePj7aCRs+K+qr+HlaEJJGS/RujBu7LGTnJ+SbiBI2NSGgiuyN/4HBSW
cMDaNbVCXmqv7fQL+CkFn2ewRq5StDT+l/sjDpXTJ7L9PEy1+vnfuuOxV3COyREB
YQEq6LZoAWgnhysUyGpSvrHb+UlwW0Z3EpB9BUxQndoPA2C+Pl9y7Bl4++tfNh/j
6FBW7QVDwVwyCD22rTuJBAyQ8ImhpxkXXFQ9GPRqwOBJYQqHXjz+QTRXkxrtQ71X
wq17g7CQBzVnPJ/1HlMl+1ehQ2+SQ0PCe0sKNsZg/3yLBFuIZKjHPX9jVxC+slU9
w93bPhEV
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0rbnZPXIzzHe80kTT2hC
hXzKHaCGvEFvZdoM3CvszSD2DTIqR1WtI2ZOQxdC3XyQtELfOcm9r/PvfF5R5aDC
vGnhZPoHqh3nbC4ZhRSbQHTuAm9hqZuN5559ySrFrx+GQe+0UlVzPSoeNcT43SIx
ePHszEJXsHT2bciL3qhEVvxkv9J+FZds6roNvLDx9ldyGTJaT6HjuCW7sfmsnwNG
/90FLrATjlhuuSrcJfRehemYwOPqpi+Uvk+wGWCRf2aejqXXV9goUFHRIqj5Up02
XKtNDIN6Fy6s9joejuoHtYW1087soMy05i2qFxPMmJu+lri9Yu1qGoIo64Dua+J9
RwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 4913895352917275230285650260800759767
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G2'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-28 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2026-06-27 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.reachpotential.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26600237309759278242862122575480455997594465328270654061732601719948315788554438858146984619771929929773270299180911010424450641428241944878256840375355852449299139864513898192581115843063136071597911583677330889634298927274493740644216239839734535317443522537566637809393163369737111812392157371869724051431290760763597942911748918865730704338620029142891893773752966165664497278872524817970886851757652488348609398595722073321708991625324982506894221521768992476447251677411895101390953842148110672255794814492631592476069294186722818319632862774307686156098001736762707972601791848237125397325908531852843457609031
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 78df91905feedeacf6c575ebd54c5553ef244ab6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							dcbc41014caf12a919e5065dc53d090f80f31ee8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.reachpotential.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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