www.didactis.ch
Issued by R3
About this certificate
This digital certificate with serial number 04:16:53:cd:4c:d0:27:4a:91:dc:df:0c:d6:ec:4a:fd:d0:b2 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.didactis.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:16:53:cd:4c:d0:27:4a:91:dc:df:0c:d6:ec:4a:fd:d0:b2Serial Number (int): 356046747701762528185009818660862936600754
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 20:d8:b0:5c:87:39:82:91:af:da:89:a6:18:2b:1a:9c:5d:cc:07:83
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 5a:8e:b9:e1:81:ed:fc:08:64:a3:85:08:81:63:82:05:a5:d0:1b:c0
Fingerprint (sha256): 23:7f:aa:36:b6:70:53:65:2b:6c:51:cb:38:14:41:62:75:3a:58:49:c5:ce:f8:22:83:2b:c7:95:1a:30:0d:f4
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.didactis.ch
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.didactis.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ocms.odoo.camptocamp.ch
www.didactis.ch
www.frioffice.ch
www.didactis.ch
www.frioffice.ch
Other certificates including the domain name didactis.ch
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.didactis.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISBBZTzUzQJ0qR3N8M1uxK/dCyMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMTgwOTM1MzVaFw0yNDAzMTcwOTM1MzRaMBoxGDAWBgNVBAMT D3d3dy5kaWRhY3Rpcy5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMGb9WcZObKeOI/bXNlAOpqEG2GcpWEMqQn2lfE6gwc4HJBgov5ioTJU3aQpf5Qx eHoMGe1Hw65SC/pcYw7wkkGL9XsDEdRHwpnUTiNWQkmEqg/FoWLk2W0v3lZT2fWp Pc77jAUBbwn47Gkyvwuch7cnGX9qS5Vwt6mm5/R+GpOfQuvXcqm4eLQW8Sa57RRu DBwMI12O2zfrNk7zIQ1oYb5xTNbUHE2EMzrM383ef3ZRCd5SIIhW4ZZ/Grl1031+ ewKlHKXdqZjDhfZ5EhFQ+WtPUiGNGynyNsC27q7rYsbskY+3hj2rBKK1EQaTwdBu 23MXiKI2KmJudT8XNRTd2ecCAwEAAaOCAj0wggI5MA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUINiwXIc5gpGv2ommGCsanF3MB4MwHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wRQYDVR0RBD4wPIIXb2Ntcy5vZG9vLmNhbXB0b2NhbXAuY2iCD3d3dy5kaWRh Y3Rpcy5jaIIQd3d3LmZyaW9mZmljZS5jaDATBgNVHSAEDDAKMAgGBmeBDAECATCC AQUGCisGAQQB1nkCBAIEgfYEgfMA8QB3AHb/iD8KtvuVUcJhzPWHujS0pM27Kdxo Qgqf5mdMWjp0AAABjHx+1ZEAAAQDAEgwRgIhANmM8CfqJYOkZUN+QFuV74Nvr6fD 8sNRJo4TJpQjprw/AiEAl2ltgbpB2v1yl1Mce78XPBFTupwFNVZD51NMXdlKpLcA dgAp0DobtnSqcRzTA1tlV8FPiqeLT+g4lEnspFP5RL0kaAAAAYx8ftXdAAAEAwBH MEUCIQCFrWoLLvqrn3sh7hkl9j0QC+43NknCQcUr9uK0D/P0xAIgNi5515lqW/W2 bpyPL8D/nEjbWcHNlrPIMFxxhgOylI4wDQYJKoZIhvcNAQELBQADggEBADKPdXUp d1YFnwd9Ce2eKGSN6oKmT5aSnWH4/mTVzUeoWtqakYB11UNh80jbG2b2I0GY21CC ZcmJbhyrwSC8NDLhFanid50OMxvfxmC54W6oDVWkFBevtoa567za1lFbC3VthcKF +cD3Y7AKetIZ0GWgT8UgP++KJnn2K93WSKpOoog3Vp2JQkhvDyJA1YU2oFTHnvES d3r2xklXfi8J/S/waHnaYAK2ZHW0jo6I6NrczT9eAvFObbhbIkKWSiurmTsjjJtb UeWGMW+n49YCvqkU9/vI4zgLez0APDmF7zlZLQ4hpUq4Ju8jeBocI2bJON5CvZrH 9xl/Oq/arvRgU9Y= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZv1Zxk5sp44j9tc2UA6 moQbYZylYQypCfaV8TqDBzgckGCi/mKhMlTdpCl/lDF4egwZ7UfDrlIL+lxjDvCS QYv1ewMR1EfCmdROI1ZCSYSqD8WhYuTZbS/eVlPZ9ak9zvuMBQFvCfjsaTK/C5yH tycZf2pLlXC3qabn9H4ak59C69dyqbh4tBbxJrntFG4MHAwjXY7bN+s2TvMhDWhh vnFM1tQcTYQzOszfzd5/dlEJ3lIgiFbhln8auXXTfX57AqUcpd2pmMOF9nkSEVD5 a09SIY0bKfI2wLburutixuyRj7eGPasEorURBpPB0G7bcxeIojYqYm51Pxc1FN3Z 5wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 356046747701762528185009818660862936600754 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-18 09:35:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-17 09:35:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.didactis.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24440898912611196666440365214539492343048129644522866703767384596565853702138448515182371215879301420776999888909689882470463698441010702044791662394393767947501773153123708424975313705904040337010617311570466784271020998172538009404934046907922605053994760793600379614025662091091252645244578973966348370481003846526662148219813095321716436303078828149642846977108193723001791330674885908565584164426675343459518543215725237276025730926313194623076857166095029677190600719935028835105158556523297056641276232947338905972941671055272693004203854278960630028816839032371670904930703331329493253657211826034793384892903 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 20d8b05c87398291afda89a6182b1a9c5dcc0783 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ocms.odoo.camptocamp.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.didactis.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.frioffice.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018c7c7ed5910000040300483046022100d98cf027ea2583a465437e405b95ef836fafa7c3f2c351268e13269423a6bc3f02210097696d81ba41dafd7297531c7bbf173c1153ba9c05355643e7534c5dd94aa4b700760029d03a1bb674aa711cd3035b6557c14f8aa78b4fe8389449eca453f944bd24680000018c7c7ed5dd000004030047304502210085ad6a0b2efaab9f7b21ee1925f63d100bee373649c241c52bf6e2b40ff3f4c40220362e79d7996a5bf5b66e9c8f2fc0ff9c48db59c1cd96b3c8305c718603b2948e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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