la-clef-des-champs-donneloye.ch

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:c0:53:7b:07:e1:1b:6b:f7:b4:68:77:8f:09:56:33:ca:78 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=la-clef-des-champs-donneloye.ch

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:c0:53:7b:07:e1:1b:6b:f7:b4:68:77:8f:09:56:33:ca:78
Serial Number (int): 413894322911836609784064354727079842138744
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 7b:a6:24:97:59:2e:31:0f:4a:15:bf:45:47:71:98:7b:d7:98:b0:9e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): c2:17:04:68:b0:01:78:29:0f:74:fa:e5:84:e9:23:30:92:c1:3d:2c
Fingerprint (sha256): 0d:f4:32:8d:c8:6d:ad:70:e7:87:7a:30:51:64:a3:d3:8f:83:75:5f:af:41:42:0d:3e:5e:f4:fa:b6:4c:9f:62

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate la-clef-des-champs-donneloye.ch

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for la-clef-des-champs-donneloye.ch

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

la-clef-des-champs-donneloye.ch
www.la-clef-des-champs-donneloye.ch

Other certificates including the domain name la-clef-des-champs-donneloye.ch

(limited to 100 certificates)

Certificate

The complete raw certificate details for la-clef-des-champs-donneloye.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyrbLipLjsYyYE1HitM7F
iHWeo4zFKSPSQWKIH9lcmcx6iNfoYGtAE9CbI3u/v9U5kQZ11dFUw7BvP7XaiKup
RmZcg+zbjWP6jFpDBKyMxERo+DEIDGcPVGxnug5alU77uk1HKC8/C3XWdQ9ffG4R
qDJmoQNp6yO8zo3ScAWvbxf6CaanjTlc+My30+NKk5dt8w9FrlOveOHm1Vn4aC3w
LIV2f5lVl+Uarns2cHq4OBYk6Abg1fP6u55TIldrjAHQZqtv0EfHhfK9pIPLiEwQ
gCeI51GiNckGKQAArWeycsqHzKW/e+XmlBw8l5M+plqBoirO+GsjzVREW5H9j9v7
ZwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 413894322911836609784064354727079842138744
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-12 22:27:53 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-10 22:27:53 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'la-clef-des-champs-donneloye.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25590277218228189450873779431041915513782297339912021944901219955449818260253636595633201683580814815398408156535071802958092624393187107005332494190038036854544175307229582761010320451719997059622344534134720837310673477437441337781953742014883335826712600763102723871604812712649507935448613274918931760528265247156039440854370515535837925538299868771890953276468618307493818090761668053984441063706291903702279615328414793750573539511604440802191647380812036905973662544823815938609619765735585045011916190695604191580195397038805051072805256948310406657052187770713335504021781917730278778859964908686013892393831
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							7ba62497592e310f4a15bf454771987bd798b09e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'la-clef-des-champs-donneloye.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.la-clef-des-champs-donneloye.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f2007700db74afeecb29ecb1feca3e716d2ce5b9aabb36f7847183c75d9d4f37b61fbf640000016356ae9b880000040300483046022100a19b845e8f6cab2be35c8d6f367c5d1854a749415674f35edc898629889db00c022100dc4c6ede75156e87a060d28ff6e648e36d2ec1227f0f48bc2b2346f3e54490cc007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016356ae9b6b0000040300483046022100af46f2c75dd6cecf7f31660547e5ac43f082cc95441e06ceea68b9392d4de72b022100c0bb2b2dbe0ce76b02e27bf139396220cba73e62924afddfa191391bd5ce56af
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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