buchsargans.ch

Issued by R3

About this certificate

This digital certificate with serial number 04:a4:ab:2c:17:38:66:9e:08:10:17:01:9d:92:cb:25:bd:65 was issued on by Let's Encrypt.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=buchsargans.ch

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:a4:ab:2c:17:38:66:9e:08:10:17:01:9d:92:cb:25:bd:65
Serial Number (int): 404482978821379847245315476490059994479973
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 46:2e:8e:f9:4d:d5:59:e3:af:54:85:38:0e:e3:e2:48:55:2f:ae:d5
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 50:0c:d7:10:91:01:2d:11:37:c9:2e:fd:85:76:13:4d:cf:51:2f:f2
Fingerprint (sha256): 1d:73:54:d4:3b:9c:21:25:0f:dc:f5:83:4f:ad:4e:ba:ad:89:18:ab:3b:b7:d6:1e:84:e8:9d:87:2d:e0:0a:6e

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate buchsargans.ch

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for buchsargans.ch

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

backend.buchsargans.ch
buchsargans.ch
www.buchsargans.ch

Other certificates including the domain name buchsargans.ch

(limited to 100 certificates)
www.buchsargans.ch
buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
buchsargans.ch
buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch
www.buchsargans.ch

Certificate

The complete raw certificate details for buchsargans.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 404482978821379847245315476490059994479973
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-19 21:30:24 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-18 21:30:23 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'buchsargans.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 767789843255934630319036682951867188931836679514466603523195629280610051498541453930284880103282100997396962604876180032858224618989119241358518561526291115365697365384776139629163663935579004185128396912103501616075125996022841400079365046398807839989119191470261604139505822260760254484805052828861969813860940261749561929101249161075930854238533547458374008290697841811504032246164211817430654569579943279335576560435727611937302174089050111943404338330066945423410848790371405641344056480727530695508926513070665078399785706662676990276557184550657455190138328518073304313418186902959768380651262431291274660752997526290700283838750796085426887133752127774008306512172755835952538698163683781735111291023386268928883025452034127955087437276226032028841921933275683275386053176086134897997005881998678928742123844741192560313520441760454295035218598974899293764713205830993788038165564314106634564087789584780550254667777667521437883147623312721814456773332483054414221436486626185821724628893533351916464978654342549163650810886717556954522703461295797515595196789397308795115859502560769654083228009061756588096766827889251477631303888506890744428263231992958590097643313226529838522065468285109162709043613539264184538061015233
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							462e8ef94dd559e3af5485380ee3e248552faed5
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'backend.buchsargans.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'buchsargans.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.buchsargans.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018aaf90e941000004030046304402204c292cefd418c67dfcd76757a687ba297ba4e203c53ae611f3471e2dcd83177c02202e3c4bd91fa1a98fe6c73d9d5338797fd74877c794ca65585bf8aea79e16c4c1007500adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a0000018aaf90e992000004030046304402206798e2828ff0620d5ec6dfc2eff8eae8f414ff201c66eae81ad2fc62e015086a02203edc2060b96a452aaae370fef72757fba6765c8a16c70405188cd6ebcc3f1fda
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		003451e26ac6194e551c2abe857771f09208a56247bf4f0b4f7b94351fbb9dbbefeb34a9e144cc90977fa26b1a7b1a2ad2d4fe5b43f0e578fcee191cf14686a03ac5e7335d8390f16c0d0cfbcdfb3ebafb303317102b47e878f84f0deace3d8675c534b11cb95af3328de67dc2f254b18a85b3774d69f5009b34fb892a4721318593adbc790707040dd3cebc0f5913812d37c2cf9588811ec6dba495abe487f314be55cffa5c663ad2fb3c228718310a49009af3ff302a096132e429817aee9942b2eade4c4da460bc8207544a3a475ed58583d9c3ab5b11afb5a587db775d5545a5fc54dfbcc8c97bc8ace123cf637a111710965aafc22f5e9f487dff63b5bab5