DV SSL/TLS Certificate for www.cura-domicil.ch

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the www.cura-domicil.ch DV SSL/TLS Certificate

This certificate with serial number 05:6f:af:7c:78:de:bc:36:2b:65:f5:b4:e0:bb:22:bf:f2:54 for www.cura-domicil.ch was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.cura-domicil.ch provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:6f:af:7c:78:de:bc:36:2b:65:f5:b4:e0:bb:22:bf:f2:54
Serial Number (int): 473566033582634274459088573774984925672020
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 8b:19:6e:39:67:81:68:2b:d7:db:78:8d:41:e7:e3:02:34:54:22:3e
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): ed:9c:33:7a:33:0f:85:52:48:bb:65:c9:d5:71:d4:7b:d0:a2:29:f9
Fingerprint (SHA-256): fe:d8:65:d4:85:20:ab:cd:40:3b:0a:b3:82:00:4d:75:38:f3:6c:29:31:f1:cc:f0:c2:38:c4:ea:79:1f:df:a9

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/85.crl

Check the revocation status for certificate www.cura-domicil.ch
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.cura-domicil.ch

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

www.cura-domicil.ch

X.509 Certificate

The complete raw X.509 certificate details for www.cura-domicil.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGAzCCBOugAwIBAgISBW+vfHjevDYrZfW04Lsiv/JUMA0GCSqGSIb3DQEBCwUA
MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD
EwNSMTAwHhcNMjUwNjI2MjMwMTA5WhcNMjUwOTI0MjMwMTA4WjAeMRwwGgYDVQQD
ExN3d3cuY3VyYS1kb21pY2lsLmNoMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC
CgKCAgEA3EkJRhYdlyUmklx6x5y3V2yhPtY+PkJ/dTOP6fDBUxSbdl6qRedP6iGc
UlgGz+uJGtpMPRDgDBK5of0bHrYsi44Xl59fFlbFHmWSyGJBQH+INwS/puk1cmjg
bbOcnD90oyCWV0Yk/BmYc6btYTHQkkRzQBU3XebSZ3wyPnmVKxqExkVSZ1rgqF0F
ygla+q3i6g9lfnQYHvj2P3Y9Iyh1R53cNK/p/142C4fWHw4sDq2is3VJ/LiAAEGe
j3+rlCbjd31tvdewr7V/Xo9Sdf+p7ysBiMx/P9q6x/QcM/+d8lvQxLcxz9OMBXwL
IiREwO5BMwoa4AuLPCpejCxfuzp/Ol54dQIsyLDqmi7LYD8kfTneDiySQvnC5dns
ydBAKRD/EruUxoXi68ZgtKLq0XLWLc8ekP14E7TWKA1K4dmXEctnDZbNAChF4VCT
uzpoIIx2CX+mGHdXH1KxRM/a8Q6Z2Dun7KrYRsbGpI6DLnxWp3AvCYapqoFbpXdq
uUwjO9E7c6T9kHHLGkX+ZsBKawK6Bg11dxPsSv4VBxKrDMeV00fgXprxjg47Zy7p
e0aNho96ejDYVNRz2vGcADhEa0iMcYBNuTvPeyNQAnyi+LLP5PDBqjnHqUZ3gfCn
2/bDAPSOmjtBJAOf84uOdd74KZwShy7TBJURGpYGQzSm99V7CjkCAwEAAaOCAiQw
ggIgMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH
AwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUixluOWeBaCvX23iNQefjAjRUIj4w
HwYDVR0jBBgwFoAUu7zDR6XkvKnGw6RyDBCNojXhyOgwMwYIKwYBBQUHAQEEJzAl
MCMGCCsGAQUFBzAChhdodHRwOi8vcjEwLmkubGVuY3Iub3JnLzAeBgNVHREEFzAV
ghN3d3cuY3VyYS1kb21pY2lsLmNoMBMGA1UdIAQMMAowCAYGZ4EMAQIBMC4GA1Ud
HwQnMCUwI6AhoB+GHWh0dHA6Ly9yMTAuYy5sZW5jci5vcmcvODUuY3JsMIIBBQYK
KwYBBAHWeQIEAgSB9gSB8wDxAHYADeHyMCvTDcFAYhIJ6lUu/Ed0fLHX6TDvDkIe
tH5OqjQAAAGXrq7G2wAABAMARzBFAiEA2FMiwBLB7XaFhlqGBitQYZZb1y7pVLIy
TCVFu7B8jOgCIBUy5JrNaoEwflxpRkSoU/KL9Rvt19nPhrHk2FrX0aASAHcAfVke
EuF4KnscYWd8Xv340IdcFKBOlZ65Ay/ZDowuebgAAAGXrq7WfQAABAMASDBGAiEA
212IGI8KsjnsKqjEAMH5TLHd3YSaARkZ3SbIXz/FxIYCIQCk1T0vQ/NID3xyS5u0
91mN6fibrcXW5bo2X9dJG58mLjANBgkqhkiG9w0BAQsFAAOCAQEAyAzAOVXl1d5E
ISFyvsHv/6yADU1qii6s9GbPnO03JAnYUUA+OVfnYLFszhGqJxWEMEl/sItiG75+
DVcXH8WJjJKMs6ZlzaSdBvpyyKPpeqNSixWylvIEFZxvu1EFg0MTS8bryf35LtND
GGjlM4IQ288QFwVmOxEpo4JRc1NK4FJR98ybPvqAPaWTKfOoOCYAulqtflbGceia
OufrEMMpeQcaPgpeoX7ZuqunhQJeu0zRFz7KebRSmo3K6A4jrcjuZ/73cfaGjZ8O
tZa0964nSECbpNv6I8PHEgwmWAFbRL5DkXj5K+qg9ckTZeCMJyp3qhiW3izYyaAj
utRTQfRqcA==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3EkJRhYdlyUmklx6x5y3
V2yhPtY+PkJ/dTOP6fDBUxSbdl6qRedP6iGcUlgGz+uJGtpMPRDgDBK5of0bHrYs
i44Xl59fFlbFHmWSyGJBQH+INwS/puk1cmjgbbOcnD90oyCWV0Yk/BmYc6btYTHQ
kkRzQBU3XebSZ3wyPnmVKxqExkVSZ1rgqF0Fygla+q3i6g9lfnQYHvj2P3Y9Iyh1
R53cNK/p/142C4fWHw4sDq2is3VJ/LiAAEGej3+rlCbjd31tvdewr7V/Xo9Sdf+p
7ysBiMx/P9q6x/QcM/+d8lvQxLcxz9OMBXwLIiREwO5BMwoa4AuLPCpejCxfuzp/
Ol54dQIsyLDqmi7LYD8kfTneDiySQvnC5dnsydBAKRD/EruUxoXi68ZgtKLq0XLW
Lc8ekP14E7TWKA1K4dmXEctnDZbNAChF4VCTuzpoIIx2CX+mGHdXH1KxRM/a8Q6Z
2Dun7KrYRsbGpI6DLnxWp3AvCYapqoFbpXdquUwjO9E7c6T9kHHLGkX+ZsBKawK6
Bg11dxPsSv4VBxKrDMeV00fgXprxjg47Zy7pe0aNho96ejDYVNRz2vGcADhEa0iM
cYBNuTvPeyNQAnyi+LLP5PDBqjnHqUZ3gfCn2/bDAPSOmjtBJAOf84uOdd74KZwS
hy7TBJURGpYGQzSm99V7CjkCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 473566033582634274459088573774984925672020
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-26 23:01:09 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-24 23:01:08 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.cura-domicil.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 898685608264662187751388433377621985360743759489804658712597873644544108288675597518370576779111469426138397128138145532312153365439410489575734507039563056447272174969659316548468514449602070024511204870518225134187103575151279023056872491700671712448981523381362515039193648444800784456795686543789476689691723679615825008419609004502968375364685215042386838175825953040917979515044706570913156731123902724893637605925701897339889682096691939101995680291740575206503095173188729220800602919991998091982113019040186731042869967095498819062692887341710821820619407032708826800751036829597668172004714840519479075814749667478519321100048109795028306911908883298764436803119719416018062859064909436104606977328941233750905588607547564839008466676168447991365069970861758288078697778427562721399658170109333057999156254619208636802079611793983903523639002819921315807809421936377249216942660649954678401277863414946568207474335426830058130550659969055978653750691113210874512831661221644240602678843006084081818192408609109464095637763141190086862337150762866988931125780821093327173014000387944412816636372020325561033236766487438450800794792577474176449158106468822990318978574513836807551566476075843382738029830000721318963240962617
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							8b196e396781682bd7db788d41e7e3023454223e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cura-domicil.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/85.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10076000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa3400000197aeaec6db0000040300473045022100d85322c012c1ed7685865a86062b5061965bd72ee954b2324c2545bbb07c8ce802201532e49acd6a81307e5c694644a853f28bf51bedd7d9cf86b1e4d85ad7d1a0120077007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b800000197aeaed67d0000040300483046022100db5d88188f0ab239ec2aa8c400c1f94cb1dddd849a011919dd26c85f3fc5c486022100a4d53d2f43f3480f7c724b9bb4f7598de9f89badc5d6e5ba365fd7491b9f262e
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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