DV SSL/TLS Certificate for *.kinderbuch-babat.ch

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the *.kinderbuch-babat.ch DV SSL/TLS Certificate

This certificate with serial number 05:78:fe:71:6a:6e:80:7f:97:1d:d8:ae:36:e2:ab:dd:19:ec for *.kinderbuch-babat.ch was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for *.kinderbuch-babat.ch provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:78:fe:71:6a:6e:80:7f:97:1d:d8:ae:36:e2:ab:dd:19:ec
Serial Number (int): 476733526488478516108074314613031654201836
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: ef:41:6e:57:87:2b:07:ee:c5:cf:01:5a:bf:9d:70:12:43:2d:7a:26
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): cd:e4:c9:c0:44:e7:5f:94:80:8b:b0:f8:f4:2d:a4:6c:c9:41:a1:c8
Fingerprint (SHA-256): 5d:d6:3c:49:95:50:71:f3:bd:28:61:18:fd:41:e5:23:c2:a0:92:9d:1e:b9:74:98:fb:03:53:47:ff:ac:0a:c4

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/109.crl

Check the revocation status for certificate *.kinderbuch-babat.ch
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for *.kinderbuch-babat.ch

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for *.kinderbuch-babat.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvOIEQVgrsOfqBRjJRi5l
Dntjhk4DIuaOtLqrYKMt4SBpYM6oQ6fn0Z/w7rE9SYFJAwN5Mz+5fa4CqypkTa3M
K/MW/hELDLGf4Rk0O7I6f6sqDkgnEpo9lCnrcFiiIQfS8vQW3tHxRogZDYpnYPf+
TBdX757alqt1/xmul9XvzBWDGO9844oxsb6IvuC9EoKjvlcvWOL8oW9P6hn5hLfR
mjcDibE8KH8riLMUDPpKGI+y3IwZ+3u5iUkIfJE+mEsvPEXSKFwtg5aMrUnT1J/n
piWXvfgtit36ErP9lEm7LwimG5p2KyuvNppm8Gz+3CbYfxLm39VbxXhzdy3y7lxS
iQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 476733526488478516108074314613031654201836
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-06 04:01:53 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-04 04:01:52 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.kinderbuch-babat.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23844254283873369180761973567974825303334978660187422582596861803111082119184966431291044109135483270672195839741259654840667082522514243124062848888871701965051404813695977212622828510535855412424030691769022344445968746533993270097085330759985142898004119256587100239758983988703939836553790912920293939472025741551518626004244130925954133055917696348954680538189543360612775371103511035162820323987998510787377436459918048410479337649977837658250408105306792488162461450262740387446964009494808743442359890685093053787201445405946622953044059933663269221768348238919795150706991989709756778151919025312892471497353
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ef416e57872b07eec5cf015abf9d7012432d7a26
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kinderbuch-babat.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kinderbuch-babat.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/109.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f2007700ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db000000197439c90120000040300483046022100bb786b48ebed6b6a9d30ff1e3f783d06b6f4c4fdcb6be0ea331715c5d2bd9c57022100ba10321cf2a5e1a577b028ef4141a3ecf84888e01fad92a434436a23dc52358d007700dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a00000197439c90470000040300483046022100adec85af7fe03465267b2a5bd67699f07592aef6854aada6c2163930eb1b9b59022100e3d51fba57c9ddc3f0214b2208b85020aacde3a2e6de6bd0a77f6f6f9c117cfb
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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