mwiki.gichd.org

Issued by R3

About this certificate

This digital certificate with serial number 04:2e:47:da:f7:4b:2d:55:09:7f:fe:df:a5:cb:53:c7:3b:6a was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=mwiki.gichd.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:2e:47:da:f7:4b:2d:55:09:7f:fe:df:a5:cb:53:c7:3b:6a
Serial Number (int): 364197644729531359444741468130817052457834
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 6a:0a:01:88:bf:e3:82:fc:5f:de:ef:49:55:1c:9e:0b:36:b5:26:66
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): f0:5d:ce:d6:7d:d0:82:39:f2:7b:e7:eb:4a:8c:41:7f:d6:60:5f:25
Fingerprint (sha256): 04:1b:e8:14:ee:73:c5:d2:14:ff:b2:30:12:14:2e:54:03:ea:6d:9b:fb:02:65:05:64:a5:57:67:ab:ae:51:f0

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate mwiki.gichd.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for mwiki.gichd.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

mwiki.gichd.org

Other certificates including the domain name gichd.org

(limited to 100 certificates)
staging.mars.gichd.org
mwiki.gichd.org
owa.gva-centres.ch
owa.gva-centres.ch
owa.gva-centres.ch
amat.gichd.org
*.gichd.org
www.gichd.org
asm.gichd.org
amat.gichd.org
dev.mars.gichd.org
www.gichd.org
www.gichd.org
lsweb01.gva-centres.ch
www.gichd.org
staging.mars.gichd.org
owa.gva-centres.ch
gichd.org
www.gichd.org
staging.mars.gichd.org
amat.gichd.org
training.gichd.org
dev.mars.gichd.org
tableau.gichd.org
staging.mars.gichd.org
staging.mars.gichd.org
www.gichd.org
centralrepository.gichd.org
lsweb01.gva-centres.ch
www.gichd.org
dev.mars.gichd.org
www.gichd.org
training.gichd.org
gichd.org
training.gichd.org
gichd.org
amat.org
gichd.org
amat.gichd.org
owa.gva-centres.ch
staging.mars.gichd.org
lsweb01.gva-centres.ch
*.gichd.org
www.gichd.org
training.gichd.org
training.gichd.org
*.gichd.org
gichd.org
training.gichd.org
gichd.org
www.gichd.org
*.gichd.org
gichd.org
lsweb01.gva-centres.ch
dev.mars.gichd.org
dev.mars.gichd.org
staging.mars.gichd.org
dev.imsma-core.org
sip.gva-centres.ch
training.gichd.org
gichd.org
sip.gva-centres.ch
training.gichd.org
gichd.org
gichd.org
www.gichd.org
training.gichd.org
training.gichd.org
www.gichd.org
staging.mars.gichd.org
training.gichd.org
www.gichd.org
owa.gva-centres.ch
gichd.org
www.gichd.org
dev.mars.gichd.org
sip.gva-centres.ch
training.gichd.org
owa.gva-centres.ch
gichd.org
staging.mars.gichd.org
gichd.org
owa.gva-centres.ch
gichd.org
staging.mars.gichd.org
gichd.org
*.gichd.org
amat.gichd.org
owa.gva-centres.ch
owa.gva-centres.ch
dev.mars.gichd.org
*.gichd.org
lsweb01.gva-centres.ch
gichd.org
www.gichd.org
training.gichd.org
owa.gva-centres.ch
training.gichd.org
staging.mars.gichd.org
gichd.org

Certificate

The complete raw certificate details for mwiki.gichd.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwT0WiApcfGiM4LyZmLsv
+ztSP8ed26iMQBE/akrCyRbaXAMyB2iWlP44Wf1c7cg2Jbu9yw7VrEVPaWsT3eS9
PxjC6w/8lDj315ivCso2mu9jpg37rSjfaIFT69/8YEp5+kdm1PAjKGe1k0nsx1S9
enK5FVyDPQgni6zCOz56nT8gGyfH3HK6g59v3WCTjxZ7OOcpqKpOSPkUdzNgtGQb
T/bFGPyj0sxlv+PnDYZAGTsXCgSMguTDqbNDX+c8gsJ3A43Kf1Q0KPzezNYdp19l
etSlOKLpTeGOn52G5DKTu+aXWiNMhoAVTmNMu2OSmAddGJdI4zQUaK13SA7RIFwN
yQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 364197644729531359444741468130817052457834
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-11 03:19:49 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-11 03:19:48 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mwiki.gichd.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24394116480536671810698280840847635697814386503882423897026270955692350466692660440299632172789320699067977849275822521599661399821995141794958704970966791738326471017448446539421823363126222556761775224762766036543686492887314845788736082552800148194887203220443410963155873399059149868941541493121669146167411309725227295597826517634750502877249653721431719346407783834672835865184422433654686893445227533599221744116993092247728884522660412107764991789216966795729600434411827242631425660140894636954589471911155397750893365068593770695062091728853467963130364344190592002852424643985667976901286426081779854872009
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6a0a0188bfe382fc5fdeef49551c9e0b36b52666
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mwiki.gichd.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d9664924b00000403004630440220011df27a6dcac3d79392d3a26b53e176395934286595c1f8c986f9b5f2340fe80220695655ce15d028d496930122ab523c6ce9c70b5af5672ee8bcb8556b3ece5a3b007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018d966492570000040300483046022100b10f2ab6f90259d40c33cc11f1c6e38ebacbd16282ae64f0d2581492d70146780221009f2d79bd421651c737fe62a2998d3694a464324c3410dc6fc63439e1240e61ea
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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