www.matisa.ch

Issued by R3

About this certificate

This digital certificate with serial number 04:2c:e7:dd:35:1f:3b:12:24:78:41:e0:d1:40:26:37:ae:04 was issued on by Let's Encrypt.

With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=www.matisa.ch

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:2c:e7:dd:35:1f:3b:12:24:78:41:e0:d1:40:26:37:ae:04
Serial Number (int): 363729768113636394322379254460959126171140
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 81:af:c0:16:76:ff:e9:e8:ff:0e:77:32:69:72:77:00:68:76:5d:eb
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): f6:de:d3:57:31:72:4b:22:76:c1:60:4c:3a:36:5e:84:0f:69:92:bf
Fingerprint (sha256): 22:50:ad:0b:69:48:d3:19:32:c7:99:0b:65:da:4e:d8:bd:24:88:2f:67:9f:0f:bf:41:ac:cf:31:a3:eb:dc:e9

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate www.matisa.ch

7

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.matisa.ch

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

matisa.ch
www.matisa.ch
www.matisa.com
www.matisa.com.au
www.matisa.eu
www.matisa.swiss
www.matisadobrasil.com.br

Other certificates including the domain name matisa.ch

(limited to 100 certificates)
customerportal.uk.rlb.com
service.littlegarth.org
helpdesk.matisa.ch
customerportal.uk.rlb.com
support.homeinstead.ie
service.littlegarth.org
*.matisa.ch
www.matisa.ch
itservicedesk.poundland.co.uk
www.matisa.ch
support.sodra.com
connect19.ca
connect19.ca
customerportal.uk.rlb.com
customerportal.uk.rlb.com
helpdesk.matisa.ch
servicedesk.am-labor.de
support.homeinstead.ie
servicedesk.christs.cam.ac.uk
customerportal.uk.rlb.com
customerportal.uk.rlb.com
itservicedesk.poundland.co.uk
helpdesk.acrotec.ch
servicedesk.christs.cam.ac.uk
remote.matisa.ch
www.matisa.ch
customerportal.uk.rlb.com
support.homeinstead.ie
itservicedesk.poundland.co.uk
servicedesk.christs.cam.ac.uk
service.littlegarth.org
vpn.matisa.ch
customerportal.uk.rlb.com
customerportal.uk.rlb.com
helpdesk.acrotec.ch
customerportal.uk.rlb.com
servicedesk.synergyretailsupport.co.uk
connect19.ca
servicedesk.christs.cam.ac.uk
customerportal.uk.rlb.com
helpdesk.matisa.ch
mail.matisa.ch
servicedesk.ecm.software
helpdesk.acrotec.ch
customerportal.uk.rlb.com
servicedesk.am-labor.de
helpdesk.matisa.ch
servicedesk.synergyretailsupport.co.uk
helpdesk.acrotec.ch
helpdesk.acrotec.ch
connect19.ca
support.homeinstead.ie
customerportal.uk.rlb.com
ftp-doc.matisa.ch
*.matisa.ch
helpdesk.acrotec.ch
support.sodra.com
www.matisa.ch
vpn.matisa.ch
servicedesk.ecm.software
support.sodra.com
servicedesk.tpos.co.uk
www.matisa.ch
itservicedesk.poundland.co.uk
customerportal.uk.rlb.com
support.homeinstead.ie
customerportal.uk.rlb.com
connect19.ca
cattsupport.matisa.ch
connect19.ca
customerportal.uk.rlb.com
*.matisa.ch
www.matisa.ch
*.matisa.ch
servicedesk.synergyretailsupport.co.uk
customerportal.uk.rlb.com
connect19.ca
*.matisa.ch
support.homeinstead.ie
connect19.ca
www.matisa.ch
soporte.klz.rf.gd
customerportal.uk.rlb.com
helpdesk.acrotec.ch
connect19.ca
connect19.ca
servicedesk.tpos.co.uk
servicedesk.tpos.co.uk
servicedesk.tpos.co.uk
servicedesk.am-labor.de
connect19.ca
support.sodra.com
servicedesk.am-labor.de
webmail.matisa.ch
helpdesk.acrotec.ch
customerportal.uk.rlb.com
customerportal.uk.rlb.com

Certificate

The complete raw certificate details for www.matisa.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAywp7+TDKBvzSerGZbA4L
UIL1QvQLAHRMNvUiW/if+97sBmgO4KzsisA7hzYmGx1jyyEY9RQRsWWirvAu0QVj
vtdq9UYRwpZzT5TnFx4cQ7+11kGFaErzIyLOq1k2FMxG76e/rdlz9dng92YQD1aX
9jVyn1EI1lkqImxygE01jmL7sZS9VA8JISvWhx+jt5wOoGYc/KrQieMPCmrB4RQ3
DkvItMU6fqN5g2ULk7IZC1cu6Q4b+xYQsdXAize7AdtBJn/ZBpOPahg/cXNO7M4O
Cx5UQb/fLZydLZcHkXK68de1ZujDFu4WFLwqq1AKCgXSsDd3ObIoUdznoHoPxum9
+QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 363729768113636394322379254460959126171140
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-08 02:15:12 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-08 02:15:11 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.matisa.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25631545894875648580533462342251397859224162782353892293070072399258810898821064604644713290628851523825307856314147665314447194501971778744259848815461426921591373417973565848819413396648761826021569413151594513800567167699066832592934989169158600958778027465893299851365502166357568150105304780507449211486986105736464177377154092388312594344218584968588972596039193725662956095951696803071825760127245868091722276866017124345665278461923324771036195045134275374594980652700572164632790510650139897091651293774465256646919313385972513188290888427750692506949975102358883809583186535828047503152113215819305328426489
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							81afc01676ffe9e8ff0e77326972770068765deb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'matisa.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.matisa.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.matisa.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.matisa.com.au'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.matisa.eu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.matisa.swiss'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.matisadobrasil.com.br'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018d86b654df00000403004730450221009dbbde44551ed6484dcb62bd5bb581cdb6bd567f6418a3a303ca7525905d8eda022039ffecaa81a2d98fa7b903f12013cd25b8e0dbcef50c9951a66d73080ba71c1f00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d86b656ca000004030046304402200b2f614e98fadd6052568b61154bfb64b673299e54aaa949416d9c1dc5af446602200d01d91089116aa82fb347a0cdc831d3a3bb23e3b5a86e058c4ee85ef3f1085a
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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