DV SSL/TLS Certificate for jan-wilhelm.ch

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the jan-wilhelm.ch DV SSL/TLS Certificate

This certificate with serial number 05:2c:f7:e9:0b:a4:23:72:98:34:40:d0:e4:83:69:fa:21:a1 for jan-wilhelm.ch was issued on by Let's Encrypt.

With 4 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for jan-wilhelm.ch provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:2c:f7:e9:0b:a4:23:72:98:34:40:d0:e4:83:69:fa:21:a1
Serial Number (int): 450863383159560333265111183935172943421857
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 92:d8:ed:18:34:e4:e7:00:38:7a:0e:77:9b:74:e4:57:b3:a8:29:6f
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): 69:98:e9:82:4a:70:e8:36:76:89:ef:34:43:25:94:2d:d4:ff:8e:5d
Fingerprint (SHA-256): 51:24:18:d2:ae:dc:d4:54:c5:d6:87:f6:03:0d:ff:4e:07:35:4d:d5:85:75:be:c5:ef:a4:07:e7:37:28:06:50

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/34.crl

Check the revocation status for certificate jan-wilhelm.ch
4
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for jan-wilhelm.ch

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for jan-wilhelm.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGLjCCBRagAwIBAgISBSz36QukI3KYNEDQ5INp+iGhMA0GCSqGSIb3DQEBCwUA
MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD
EwNSMTEwHhcNMjUwNjE1MDIzMzU4WhcNMjUwOTEzMDIzMzU3WjAZMRcwFQYDVQQD
Ew5qYW4td2lsaGVsbS5jaDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB
AMoiUDTrStnVlYNsKMSPbAYemtdYKMHVXaDBuWEHGJIohIF+61b4npDhLPo4IQ/5
VXmqGLJL8zKV7Ujcza/RcH2sjaC3/PGQ2ER8HCUkpm1EKqcTa5qKGpJqRGhB27JG
MclSFBrQ2oo7a9gcQyv3v90khFDP3qcLpF3KBuu8cQpElPGGJAv9ivRlwgifVkdX
8/QtaASuFqqg277dVyDIt/dOvbK1vKTB/ZxZeccDkSj92wFCvkQkYx8tCg9Ko0qK
hRdLa5oUZiXEttY7cos6ZaDYtp+JWl1JXnI/ucOYRS+USPAEAdNF2GJMjuKwe5W0
cM/RmENdKroHZxmKPY48qUogXLJcWFiBxWy2Xx47dGralppDduL6EDQIfRlLk/BG
FzyVdSlKy/aJFOkpHc3u2PNo0LalJRrZQIDFqqC3RA0c6v0INxLC2wdB3c/ej1GB
ZtvJFR+ytngX0YxnmJipDF4f5Uw1k2XI5NV520NhKnXchuD8c5DD5GphDpwz84c9
PqdnEddl6PsF/M6T+5VpaDz2FASzCygPyR1wqF7IhjmXXAmdht447VSLPwpUsYDA
CkP4RgLdBiCpVc0bLTz6ZCmoZqNacvmCSdc1iE16UHWEMTJcpdvxnqYm15vWUlt7
aSlj3FLk2NJjdwa/1eoX2mA6vwSWWY7ewMlKmCeKLvPPAgMBAAGjggJUMIICUDAO
BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG
A1UdEwEB/wQCMAAwHQYDVR0OBBYEFJLY7Rg05OcAOHoOd5t05FezqClvMB8GA1Ud
IwQYMBaAFMXPRqTq9MPAemyVxC2wXpIvJuO5MDMGCCsGAQUFBwEBBCcwJTAjBggr
BgEFBQcwAoYXaHR0cDovL3IxMS5pLmxlbmNyLm9yZy8wTQYDVR0RBEYwRIIMYmVl
LWxvY2FsLmNogg5qYW4td2lsaGVsbS5jaIIQd3d3LmJlZS1sb2NhbC5jaIISd3d3
Lmphbi13aWxoZWxtLmNoMBMGA1UdIAQMMAowCAYGZ4EMAQIBMC4GA1UdHwQnMCUw
I6AhoB+GHWh0dHA6Ly9yMTEuYy5sZW5jci5vcmcvMzQuY3JsMIIBBgYKKwYBBAHW
eQIEAgSB9wSB9ADyAHcAEvFONL1TckyEBhnDjz96E/jntWKHiJxtMAWE6+WGJjoA
AAGXcaVXgQAABAMASDBGAiEAtA0atbPp4VtRD+JCdbSaYmmvnuVQc/ZfC9wj/Rud
r74CIQDqTvAlF7dg81A/P1iUOgpQbC/XovkBEghYVip41rrrCQB3ABoE/0nQVB1A
r/agw7/x2MRnL07s7iNAaJhrF0Au3Il9AAABl3GlUMEAAAQDAEgwRgIhAPubnwUl
hF0EGWFRc8ObT+d5HJL44Klb3xZn6SReMGGtAiEA3OgkqpC9aQcAp0M8HRH3rJxb
4WfSj+pC56RvXYT4iP4wDQYJKoZIhvcNAQELBQADggEBAIHcQKSRZWBTn34+H5RJ
Pmte9pJPuVzbTVgIVcpnq8NFp6g0f98LFRFOVgiOU3JtuzbHMOvhSbuP/wsVc0oC
hCjwN/yKYfs+fOVKP3Vo1zfCPl3Hitf9ST7lXa57n5oK95c8xnnAM3f7yQe9b/Lj
u2W8V3Gx0R66eXmy4kJ6ZHStVaOwjArEuVgUuxswpXkh6SWoYcJfalPgWj6dxbBq
ZwNcuO4YMIbf3GwrhLOYv86t+TnKv1k7htS0bAzRkwcMCdyzhxbELf8pRsTmweWm
ZZYv0Bo7D/xTm7+0YDdfKQYTWiSZSiOSDRUnvKPXaH6dR5CZSLvV/f9CEOeVAReU
f/w=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 450863383159560333265111183935172943421857
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-15 02:33:58 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-13 02:33:57 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'jan-wilhelm.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 824634922370226812173833859264863863463787077438003208720516202490592110850863160833605089639857314218622748294688593699665100699636924176521538988602828024640552631960754425106108696595623361330232987627441670063481993626820325310419692287956490160797589235002068973302834871676641766941258645423928862319038508636701765252681229386246630004116126652178316414362984997121877821277249227877267201794611234125858111332079849600964712112954916572469040690498257468088747573486083131443471412468565889124932198939031006936681473142366187309227555800437689136001806112978933451009890502425676549989310913168902702318383764551601539862391777646970544542813269777363535238890070483890482182839015402197579486829786203204822257032369882635677262762030389858679666854982391220775699888304755420839828317381939585774410001873450604613865526748379419399892651473808823764323147596234781756128848833067354724465104441254792182865660472453555746048105322680958034847269710220073621585862923997469028504317763536445861268479869396064874714843396883678841209841408495764867314659935644321665043303233075788890039726228217419035285283020129235675646494710130992004801869610387452759343620033302705956272951938119774259977988539206019866824763438031
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							92d8ed1834e4e700387a0e779b74e457b3a8296f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (70 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bee-local.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jan-wilhelm.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bee-local.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jan-wilhelm.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/34.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f200770012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a0000019771a557810000040300483046022100b40d1ab5b3e9e15b510fe24275b49a6269af9ee55073f65f0bdc23fd1b9dafbe022100ea4ef02517b760f3503f3f58943a0a506c2fd7a2f901120858562a78d6baeb090077001a04ff49d0541d40aff6a0c3bff1d8c4672f4eecee234068986b17402edc897d0000019771a550c10000040300483046022100fb9b9f0525845d0419615173c39b4fe7791c92f8e0a95bdf1667e9245e3061ad022100dce824aa90bd690700a7433c1d11f7ac9c5be167d28fea42e7a46f5d84f888fe
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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