DV SSL/TLS Certificate for f-diamante.ch

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the f-diamante.ch DV SSL/TLS Certificate

This certificate with serial number 06:bc:77:62:a2:ee:2d:67:f8:52:68:bc:74:a0:0d:8b:7f:b4 for f-diamante.ch was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for f-diamante.ch provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:bc:77:62:a2:ee:2d:67:f8:52:68:bc:74:a0:0d:8b:7f:b4
Serial Number (int): 586805490852909163400274941903820332695476
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: d0:15:6c:a1:c6:06:b7:42:10:3e:73:79:3a:a2:bd:a0:cb:bd:49:10
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 80:30:26:ad:4c:f5:6c:8c:66:4d:29:86:d2:ef:1b:17:e6:fc:25:6d
Fingerprint (SHA-256): 3f:6b:95:b7:4c:68:0d:3f:4f:75:37:fd:b6:54:d3:1c:50:b0:9e:f5:db:5b:0e:27:3e:f2:2a:07:b2:10:ac:35

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/53.crl

Check the revocation status for certificate f-diamante.ch
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for f-diamante.ch

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for f-diamante.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2s1gx/n7Ui+ofjDx6cJk
s2EKGbPeS+26seGiL8e4vM35vG2QNAmJTgJ+UPyhjtPSouuzXMOaocM+WR/Su2cy
JG3rpSSzdVn96INT4JFGBHSv354WEvOU2ulqnqWqHMdM2q8fZTh5jiNVRAEN4w1V
/mXgV+AQJ6fSCFUHcPUZ7kHe/yNNZJHmkIyIjAU6jrLKUIgGzWXFF9PYrjCQybF4
MkyABUJam4+ccTqogDx6RJIUaVl8rak7PaE2nk3Iu2ytwgN07y7xWd/vo+b9bQwP
TBvczP5PY9U+YFIzC0guNmEqVcNYVu8Dosaq0lq8ltRbk1woyXGyGtkyao3JIWic
IQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 586805490852909163400274941903820332695476
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-23 02:32:08 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-21 02:32:07 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'f-diamante.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27621226174342396239846575741968350947629116085108693675696761621597117382516793355783753297325595433995052773219063755115155995887407660784379680481458052183648605444754440417776707020732181351237741833994685658665971416436733158451118532911852827068637372731818184732347553227387033428070439251006794597795072579751526252833707668989396097780995859529295373307251137458253006758094709700802807991291445833711713553011817309054633886858291808240404891385365631885869571538166583240543244534751040442068718120934070347322078877626218138292987526242173738124749361992238884109107739211895027314171974955259339446197281
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d0156ca1c606b742103e73793aa2bda0cbbd4910
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f-diamante.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.f-diamante.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/53.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600a442c506496061548f0fd4ea9cfb7a2d26454d87a97f2fdf4559f6274f3a845400000196fb3160110000040300473045022024015354f3cabe4050038ea98a53b2ecee6e46a5bbbc19990a822fc0b9e2ca9a022100b27b5197312f9d9a5e2a13beb6850db3fc4fec042358f9227ede0caa3928695a0076000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa3400000196fb316011000004030047304502207b66139506feb1fd38baf273cf9aecf3dc439d19ec9cf61f1c5769c3c5aa1fc20221008dc9e35f87fdbaa6201d4dd0ac1261f0f3caabba86682f2c9ff02b81ff7a221c
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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