www.sbgraphic.ch
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:88:07:cc:3a:e5:38:3b:36:40:66:e7:2e:7b:9d:3b:a8:38 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.sbgraphic.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:88:07:cc:3a:e5:38:3b:36:40:66:e7:2e:7b:9d:3b:a8:38Serial Number (int): 307625624715598415457769759115921816528952
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 70:11:74:a8:df:21:91:ed:39:70:e4:b4:f5:24:0c:3c:c0:f4:a1:cb
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ff:39:a7:ff:b3:9e:a3:40:58:b6:ce:2a:75:d2:9b:2d:16:d7:15:56
Fingerprint (sha256): 29:d5:c4:ee:b4:c9:00:d7:11:c4:3f:4f:32:7a:95:8d:e8:d0:f9:08:47:70:71:49:ee:f5:c2:b0:dd:90:ca:45
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.sbgraphic.ch
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.sbgraphic.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sb-graphicdesign.ch
sbgraphic.ch
www.sb-graphicdesign.ch
www.sbgraphic.ch
sbgraphic.ch
www.sb-graphicdesign.ch
www.sbgraphic.ch
Other certificates including the domain name sbgraphic.ch
(limited to 100 certificates)
sb-graphicdesign.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
www.sbgraphic.ch
Certificate
The complete raw certificate details for www.sbgraphic.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISA4gHzDrlODs2QGbnLnudO6g4MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMDkwMDAyNDBaFw0y MDA2MDcwMDAyNDBaMBsxGTAXBgNVBAMTEHd3dy5zYmdyYXBoaWMuY2gwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Yo9ui4tmZ6nIESMWT4pFh2ppO1tO fnuLqoDrKNWKTc7MVcM0+6KgNgCXtN3LGGaptdOUVilsmv15bfImNEs9um9oz04W GqWBul7iuVWPvSNxuHwiAr0fq4zy8fOE6BAVNHRtOaqeZMl9d2XQ9H41oGihItJ4 uSulzkRmlEhzWj4of1R84t+D1981WjVNr3Il9uEilLhfSiHPMPQjy0gPx0l7lb5K pwhLpdmDSz/LVMpxUZOzAoR+XyL93Fz3VUGZRQfUP16EDPfCDJKljoZHMQA6dOLR +M3d5f9gbSmOX0EDivfqC52cVbC9Ptn4VN3JF++o5G4Eby/n6s6noXf7AgMBAAGj ggKgMIICnDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFHARdKjfIZHtOXDktPUkDDzA 9KHLMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEB BGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZy8wVwYDVR0RBFAwToITc2ItZ3JhcGhpY2Rlc2lnbi5jaIIMc2JncmFwaGlj LmNoghd3d3cuc2ItZ3JhcGhpY2Rlc2lnbi5jaIIQd3d3LnNiZ3JhcGhpYy5jaDBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQE gfEA7wB2AOcS8rA3fhpi+47JDGGE8ep7N8tWHREmW/Pg80vyQVRuAAABcLzQuJEA AAQDAEcwRQIgKcvBTk2KgH7DFilrZcg5QQ1Et3Bg7hqH1/FZv3zNdWICIQCsp8IC nR4uYWCb5HOXxL/bH47lErszpbBBdnUgAtMVOwB1ALIeBcyLos2KIE6HZvkruYol IGdr2vpw57JJUy3vi5BeAAABcLzQuIcAAAQDAEYwRAIgfQN+HsxjYeG5DHRUM1oD WtzBdC6BUYy858ybPTCjMLoCIDpeI4T6XgdfFb1zJNhXEs3nc77K6wZLQpzirbdB VBj8MA0GCSqGSIb3DQEBCwUAA4IBAQB/VLCIDqtPYff5sEmgKVol5JJsVUBpvwTE ERbex0Jm2FSoASUCfSmDEk1Futp8qKNhICp2viHYY062Rgr6CppxzUUEvK/YLfCW yTbWcLw6KeCdleaEq6k9cuCzYzzpfOK6UuN+dp67FgIbsp3YhTpCHGgHhrEaJl7Y Q55KMYmNboPnfGu4DsjaXAy1x3vs8eGwIrYA8O34+Oa9JgPRB1FsoFhuut8EIysh h8eNV0l1QPb917RvBGi+EbcPy3Mhw7DXrdZeKulPpNkNnQ/MC8DoULbfaDqDEQrv 9bS1x2TDySUdZ+RGIjNrEcrmInys5rUi9+EXc9ZWbd459w8eo9cK -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2KPbouLZmepyBEjFk+K RYdqaTtbTn57i6qA6yjVik3OzFXDNPuioDYAl7TdyxhmqbXTlFYpbJr9eW3yJjRL PbpvaM9OFhqlgbpe4rlVj70jcbh8IgK9H6uM8vHzhOgQFTR0bTmqnmTJfXdl0PR+ NaBooSLSeLkrpc5EZpRIc1o+KH9UfOLfg9ffNVo1Ta9yJfbhIpS4X0ohzzD0I8tI D8dJe5W+SqcIS6XZg0s/y1TKcVGTswKEfl8i/dxc91VBmUUH1D9ehAz3wgySpY6G RzEAOnTi0fjN3eX/YG0pjl9BA4r36gudnFWwvT7Z+FTdyRfvqORuBG8v5+rOp6F3 +wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 307625624715598415457769759115921816528952 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-09 00:02:40 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-07 00:02:40 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.sbgraphic.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23655164914401513693896951130379499165736420479748335985563530290645250406847647103050790718025029913710741802371996898425490270341232841499851660777925509458080928247034085917618442008741560921039501916641595233307133766123664764935274331551732683264009891075379968786983773596273679358068948107309548526429693043266941718197714406684988207911370869015624781451073533053159237914171739222345582387125913756146898333982055286672946379443389681469721846725078945386704996798402654428985111295664155898328355296882431228625189538198547753935182379311799825989074708546727829869153904584545843216716311142455550798821371 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 701174a8df2191ed3970e4b4f5240c3cc0f4a1cb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sb-graphicdesign.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sbgraphic.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sb-graphicdesign.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sbgraphic.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e00000170bcd0b8910000040300473045022029cbc14e4d8a807ec316296b65c839410d44b77060ee1a87d7f159bf7ccd7562022100aca7c2029d1e2e61609be47397c4bfdb1f8ee512bb33a5b04176752002d3153b007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170bcd0b887000004030046304402207d037e1ecc6361e1b90c7454335a035adcc1742e81518cbce7cc9b3d30a330ba02203a5e2384fa5e075f15bd7324d85712cde773becaeb064b429ce2adb7415418fc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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