DV SSL/TLS Certificate for blitzhelicopters.ch

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the blitzhelicopters.ch DV SSL/TLS Certificate

This certificate with serial number 06:72:ce:e5:be:d8:89:8d:21:c2:1d:8a:ab:63:23:98:f8:a5 for blitzhelicopters.ch was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for blitzhelicopters.ch provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:72:ce:e5:be:d8:89:8d:21:c2:1d:8a:ab:63:23:98:f8:a5
Serial Number (int): 561740919293474439721116678395020975863973
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 68:12:f4:02:17:7b:ea:8b:f2:38:14:c2:24:c6:96:8d:88:06:c6:2c
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): 98:02:44:25:6c:8f:f7:5f:93:8a:d0:25:85:4b:21:c6:a8:17:72:45
Fingerprint (SHA-256): 4d:6f:f6:46:0b:43:89:c7:50:7b:a2:a1:f9:83:0d:17:17:26:50:3e:04:8b:cc:e4:e2:42:39:d2:81:7a:e2:5b

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/38.crl

Check the revocation status for certificate blitzhelicopters.ch
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for blitzhelicopters.ch

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for blitzhelicopters.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 561740919293474439721116678395020975863973
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-05 02:37:55 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-03 02:37:54 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'blitzhelicopters.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 701842230641209958087966738088554658293375225850378898351919911613835659860696259117822169387025661532703527620691865771259146433675174180289637540805601901836367675059070753185870612620376041600846164945537144782497759919590821396025625325902764954979028313580779077661889245769033014214377275285318428236983244493275827172135676652132795477011591338735807861161217799193506026042904901370811101247963378732854586967925845260351546010526497743069523308711053745932930743098675388167616571588177165187622395052817756678411781005756670545014705025278752167579665187971897866127428454370713332561780644672296894469530885489789623322511430919762007809406512611249908249924559728464751128693152414705281813937312417776010997167663131993584772128276808011116294009626541031823584429703601864266859365608918343532783785626393545637579204590956757915599694599949582531959578455631481863796315965569233615194238577076340148055826743992161357020209536002971624193041777341228013812726872038232070092867749750361939854028424742517042428959563102404983972328051659011214793198445848142443483817560740358653614650082150157941248357236700111726482088751098815628900810310379551024193160347793743911962429879342558681928275895309579020053898421109
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6812f402177bea8bf23814c224c6968d8806c62c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blitzhelicopters.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.blitzhelicopters.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/38.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0076000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa34000001973e2954ef000004030047304502202cba45b06562d82617bf49961f1f97f77ec53536b10e03a8206b607c89ada923022100a76d694d794c3ad74b23517fa15e1072894c80c14f64440d61f4473bfb9a5b6f00750012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a000001973e2954f7000004030046304402201f02b7030b45139842ea97be2262f249374f40874020e3fe40adc3b35ce200c202200e36e9f123325ddf9fb9e0d52092ba75c6d8c52ac0fd87912e7be697cda68ef2
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00878fa33d738901ade13adcfbfb686f5f1d724071dd77a102e00ed27fc4f6aa270c39d086bc20fcd387d3fe5b2b8ed4dfb1c111cbbf570fb8277b2bef7777e945122e897fbb34e4ac6ec48c620bb160faefb124bda1799adeb63827dd2996097a1543fbc672681f644af5ea2983ab33d8e5908d934b190f4910ecc19b398807a78c20c1325e3b71577be9f4d252d0efcef0dd96c117522275c95f353ac0d4b256565c8aedc8a7343434cdfbe2fb17c98bf6baf7d4f22384baebb0bd1b8c632b102357edab72560eb6927fb8c08ec12ba4dc04573a38b6f2222824f19c662cc0a3621fc36e930316063ef99bfcf200a290ad86a539768e893ca153b976aeb56708