DV SSL/TLS Certificate for abacus.hoegg.ch

Certificate is witin its validity period

Issued by DigiCert Inc (GeoTrust TLS RSA CA G1)

About the abacus.hoegg.ch DV SSL/TLS Certificate

This certificate with serial number 0e:53:70:80:16:96:f4:da:83:ae:93:ff:fc:25:1e:67 for abacus.hoegg.ch was issued on by DigiCert Inc.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for abacus.hoegg.ch provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

DigiCert Inc

Organization: DigiCert Inc
Organizational unit: www.digicert.com
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 0e:53:70:80:16:96:f4:da:83:ae:93:ff:fc:25:1e:67
Serial Number (int): 19042434358318789104056522447857720935
Serial Number Length: 124 bits, 16 octets

Subject Key Identifier: a1:10:1e:5a:f6:8b:2a:d0:29:16:b6:a4:03:e7:b9:c3:21:6a:4c:ae
Authority Key Identifier: 94:4f:d4:5d:8b:e4:a4:e2:a6:80:fe:fd:d8:f9:00:ef:a3:be:02:57

Fingerprint (SHA-1): 1a:03:96:01:b3:7b:a3:59:4d:af:6e:ba:e3:25:2b:a1:33:b4:b1:37
Fingerprint (SHA-256): 5a:bc:e3:a6:80:b7:01:ea:42:7f:27:5f:7b:04:fe:1d:9a:ae:c4:c3:cd:8f:96:1a:a2:d9:5b:96:57:cf:a0:28

Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt

Revocation Information

OCSP Server: http://status.geotrust.com
CRL Distribution Point: http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl

Check the revocation status for certificate abacus.hoegg.ch
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for abacus.hoegg.ch

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

abacus.hoegg.ch

X.509 Certificate

The complete raw X.509 certificate details for abacus.hoegg.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArAUXqkUc9U73RgtxqKpf
NmaLXZaAsy0TxfxDylRwpNviuS4SJcs7Jd6bfYOEHZfqmtpXYiwjob2qcv8AnPNb
nqrUyMakcitPnAFh26BVL5wyAbJL3eae0YK5YmvxqCh18kU4cLcqHG9Q92oHyD+i
CKKo9tU+bKhrBsl6yDeXFHHeKVmsIaq3VYmcsu3fi2EAM1HNMt7yi/sSXblC5asb
wGzY1W8t9Hc0AFWwB1I4BsBracZnlaqgVt8EcH3eYMQ4sLxJB9WmM+f5Ks8UrYZ/
Or792+3khxtZI8VLWQog+mrLxtSv5TibVTh0o1BQXdS8olGWDRmqBht1jmWLHaku
9QIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 19042434358318789104056522447857720935
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust TLS RSA CA G1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-09 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-08 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'abacus.hoegg.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21715499630837862326738949510368193521966175068688783286776433158718011783360168015482400806961197172252074550919688108674636776806882310745133657466127064222188040667369270170819278445880170359899875753160309045972824733257371346030520186395564901244307752011659709166405694931505468020626543318370171303119113607189746001474874602506384563650205777952929875660279592912890685727579619795002123898510666760218570404761713648367397534380382382906364176811551463271176458025768050964806476492820039412685794407343536854802272494973602385244721882947340312482578146288533622157431460400452915815493249601495608997785333
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 944fd45d8be4a4e2a680fefdd8f900efa3be0257
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a1101e5af68b2ad02916b6a403e7b9c3216a4cae
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'abacus.hoegg.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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