www.reittherapie-mit-herz.ch

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:d9:7d:39:14:ea:35:13:1c:f1:8e:ee:02:94:1f:15:bf:6c was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.reittherapie-mit-herz.ch

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:d9:7d:39:14:ea:35:13:1c:f1:8e:ee:02:94:1f:15:bf:6c
Serial Number (int): 335344581301722445393876383897895650574188
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 32:0a:ac:c4:50:29:40:2b:64:05:fc:86:35:1a:99:ce:b8:cd:90:31
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): e0:b4:7c:1b:79:7c:e3:40:84:3b:46:0f:9b:42:4a:8c:76:41:46:60
Fingerprint (sha256): 27:04:9a:1b:23:11:40:c7:20:31:b3:ae:8d:d6:61:af:11:65:d7:b1:86:51:31:56:28:b9:ec:ee:ae:46:fe:08

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.reittherapie-mit-herz.ch

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.reittherapie-mit-herz.ch

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.reittherapie-mit-herz.ch

Other certificates including the domain name reittherapie-mit-herz.ch

(limited to 100 certificates)
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
reittherapie-mit-herz.ch
reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch
www.reittherapie-mit-herz.ch

Certificate

The complete raw certificate details for www.reittherapie-mit-herz.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtFF9kzRW6Z9qIJV/wb7C
V9iLBo/91iDKr6uU9EgukO2aEFgTJIRpO9NaQVyfBkojMgWpNMxGlxf6RmWUFazh
+3yqsGCQjaTcuYnLAV3CGtFCje+m7GOxVAOportww6h35CkNwz0nqNAGCmTE9Uw7
fAKkl1Sx6ldRWXfLJkZnRJqL98nHjwuP10+uJfCsvMsAeVWqmbIXixr/ZQp19TAj
Fa4JqILr58IHoqyKcNWVtu6L/AwaWO75d6Sq7zOYnNP1stnCk0CCRaGIjPw8BYEe
FkItn6pX4EcS5Dk4otVrtbOYCYqAzRCW8/Ax2dZA5gJHkx3BhI4iF3iLZNFQcWoI
XQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 335344581301722445393876383897895650574188
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-11 03:12:24 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-11 03:12:24 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.reittherapie-mit-herz.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22763079370653205565005734697123262507883475606133868887021535669393990008322016475043878505341379382014786006380098423940313670065516164164983592975501997299577512819747554939465828426119193669123409402138253719403168167508011026139523635149022059876738754440035268369966281429343333055980239765977664735796516864061541307150519084462065260616672570797082404863546965290438494872860924341964520579646743818775692927471597464985514445483995483506086024534774466683516701953580919599540322533303789090495175899213057595561616450330509907369034785347656646350127371798315109353149363899999787155478809423096005683447901
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							320aacc45029402b6405fc86351a99ceb8cd9031
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.reittherapie-mit-herz.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001703272b9380000040300473045022100a7f4da8521861c53a8ac19d4068f07cbbbc5287c35278d5d389bc2cd41e8611802203ac8a965db43d01625844004d3455633148c649dc0a4661e80bb39ba17573d5c007500e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e000001703272b939000004030046304402206020506f70423341596f5f3d8680dfa21228e87bd8b779e6eaeb248699b52b7d02204b5af8b303dd6ee214b13ca7503d27f4d378fd50343f4d0e624da7c2a6da7a70
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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