vitawahlen.ch
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:03:f9:64:1c:45:ee:23:8c:84:c7:4b:6f:b7:b3:ea:46:e8 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=vitawahlen.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:03:f9:64:1c:45:ee:23:8c:84:c7:4b:6f:b7:b3:ea:46:e8Serial Number (int): 262689202470127765389430539654542779893480
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 7e:5e:77:2d:a2:79:ed:7c:ca:47:1d:a3:67:b6:91:07:82:61:85:7a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 11:7a:4e:f0:82:a7:d5:e4:15:b9:c5:13:79:a9:74:34:d8:05:cf:3d
Fingerprint (sha256): 29:83:d5:4e:fd:0e:8b:22:f0:8b:7b:ee:cd:3a:41:71:3b:7b:60:6a:f1:7c:f1:28:18:18:82:ce:6d:f3:bf:0e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate vitawahlen.ch
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vitawahlen.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vita.cust.vshn.net
vitawahlen.ch
www.vitawahlen.ch
vitawahlen.ch
www.vitawahlen.ch
Other certificates including the domain name vitawahlen.ch
(limited to 100 certificates)
Certificate
The complete raw certificate details for vitawahlen.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGLDCCBRSgAwIBAgISAwP5ZBxF7iOMhMdLb7ez6kboMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA1MzEyMDE3MTlaFw0x ODA4MjkyMDE3MTlaMBgxFjAUBgNVBAMTDXZpdGF3YWhsZW4uY2gwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB4RMR+Hr9dUqj2OIdFTO86oHkkmmFiIDg WZii8T9Ini3+npVQ9Ws1oZPSkwmpYfHoi3rwYiIOF0drl+4PjEvwl22LncQ/Cq1P TgahzIxFo1T4ShvOmzPobu1tyNqOzqGtXkeF+coSpc7qLZFFVcsPLth2Tr24t/tn Aj3KKhCgcP/z5nGnTSnXsbWUTtllZpFHucZkSrFf0cHoGeL+FgZS7fsRBjlx9PTZ 5ktAp48/PKHpBUdzoLe6AknLRCWf3TCbXV3Gt0i4AiF8ditDPmPtz272KuNs3aWQ PBleigPlYpWM7vlaYklD0p4lgrL6oYEMorAC+1kz4ZC4HmB2P3FbAgMBAAGjggM8 MIIDODAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFH5edy2iee18ykcdo2e2kQeCYYV6 MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMw YTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9y ZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9y Zy8wPwYDVR0RBDgwNoISdml0YS5jdXN0LnZzaG4ubmV0gg12aXRhd2FobGVuLmNo ghF3d3cudml0YXdhaGxlbi5jaDCB/gYDVR0gBIH2MIHzMAgGBmeBDAECATCB5gYL KwYBBAGC3xMBAQEwgdYwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5 cHQub3JnMIGrBggrBgEFBQcCAjCBngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5IG9u bHkgYmUgcmVsaWVkIHVwb24gYnkgUmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5IGlu IGFjY29yZGFuY2Ugd2l0aCB0aGUgQ2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0 IGh0dHBzOi8vbGV0c2VuY3J5cHQub3JnL3JlcG9zaXRvcnkvMIIBBAYKKwYBBAHW eQIEAgSB9QSB8gDwAHYA23Sv7ssp7LH+yj5xbSzluaq7NveEcYPHXZ1PN7Yfv2QA AAFjuA/msgAABAMARzBFAiBfC7OrLQsPVJjC3GP37violkVmX6kYQ7w63qJ40X6L dQIhAMGwlDofla6DjagFahhB7wiz2SlmmcSirTFQkb7i2rq4AHYAKTxRllTIOWW6 qlD8WAfUt2+/WHopctykwwz05UVH9HgAAAFjuA/moAAABAMARzBFAiAf2rjMHkOI c10RPNzYsrGSKvIry9VRSxET4FsiW1AgdAIhAKvytCu0jQyV1vCHp+9f96WTs/Yq ysO+WXR8rD4G3c29MA0GCSqGSIb3DQEBCwUAA4IBAQBjVmfwj0Ece4Qfhtw7pgqI Ln1XFLNaxozw1Eu5H+n0KKJR6sWfRS4jVt3/xfkLEo6FVWwh+3FDa2bMm3fBDriu bji4qHEQ3eV8fE4LEH2LZNDk4YxzVH6Vxc7IkXbw7cHfo2ZHtiYN99CiD8SeLcmC p/aZKgZEa6cZ+GuA5XmbIWfmJoHGhM7HVPqywOwLWmSghhxtmlYz0zJy5vZ1kGFL vV36JZOAmbFleSVt8qNXebsEDZBRKw6lTc7Ki3q8QuY6Tpok/7qCEzuFssHP8w+s LApol42uGjwoCItV2inRIr7mbviqryknj7whaqD/DPW2mg/XglIs6wIzEAOvI4g5 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAweETEfh6/XVKo9jiHRUz vOqB5JJphYiA4FmYovE/SJ4t/p6VUPVrNaGT0pMJqWHx6It68GIiDhdHa5fuD4xL 8Jdti53EPwqtT04GocyMRaNU+Eobzpsz6G7tbcjajs6hrV5HhfnKEqXO6i2RRVXL Dy7Ydk69uLf7ZwI9yioQoHD/8+Zxp00p17G1lE7ZZWaRR7nGZEqxX9HB6Bni/hYG Uu37EQY5cfT02eZLQKePPzyh6QVHc6C3ugJJy0Qln90wm11dxrdIuAIhfHYrQz5j 7c9u9irjbN2lkDwZXooD5WKVjO75WmJJQ9KeJYKy+qGBDKKwAvtZM+GQuB5gdj9x WwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 262689202470127765389430539654542779893480 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-31 20:17:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-29 20:17:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vitawahlen.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24474981227521055209909223654130354703456312584601563473345484874737404436612165285500934377892990264591193799574512975156072587476074907116662167350840082588926213822649688106507647469194547119202029106594067942518261525551523637104318138090942432312358508072859790275925732223758867526741868216549436757869820534351979558606681953182223576232238408600495508046037306632881538070504555212104805053077040214014742319262195066658547240359947242996000440405390873438618177328605774009831994689050613691724161272089667239880688934914045535710346657759922985066544642640116317145143896668222355767813482068474924298629467 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7e5e772da279ed7cca471da367b691078261857a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vita.cust.vshn.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vitawahlen.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.vitawahlen.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600db74afeecb29ecb1feca3e716d2ce5b9aabb36f7847183c75d9d4f37b61fbf6400000163b80fe6b2000004030047304502205f0bb3ab2d0b0f5498c2dc63f7eef8a89645665fa91843bc3adea278d17e8b75022100c1b0943a1f95ae838da8056a1841ef08b3d9296699c4a2ad315091bee2dabab8007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000163b80fe6a0000004030047304502201fdab8cc1e4388735d113cdcd8b2b1922af22bcbd5514b1113e05b225b502074022100abf2b42bb48d0c95d6f087a7ef5ff7a593b3f62acac3be59747cac3e06ddcdbd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00635667f08f411c7b841f86dc3ba60a882e7d5714b35ac68cf0d44bb91fe9f428a251eac59f452e2356ddffc5f90b128e85556c21fb71436b66cc9b77c10eb8ae6e38b8a87110dde57c7c4e0b107d8b64d0e4e18c73547e95c5cec89176f0edc1dfa36647b6260df7d0a20fc49e2dc982a7f6992a06446ba719f86b80e5799b2167e62681c684cec754fab2c0ec0b5a64a0861c6d9a5633d33272e6f67590614bbd5dfa25938099b16579256df2a35779bb040d90512b0ea54dceca8b7abc42e63a4e9a24ffba82133b85b2c1cff30fac2c0a68978dae1a3c28088b55da29d122bee66ef8aaaf29278fbc216aa0ff0cf5b69a0fd782522ceb02331003af238839