hoegg.ch
Issued by R3
About this certificate
This digital certificate with serial number 03:f7:64:ce:c9:3c:48:f5:58:4f:83:6d:d2:07:ad:c7:2d:6e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hoegg.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f7:64:ce:c9:3c:48:f5:58:4f:83:6d:d2:07:ad:c7:2d:6eSerial Number (int): 345520598919024489786516656160496406703470
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 15:b1:ab:50:dc:65:df:20:52:cb:9f:0e:b3:8e:ff:6e:fb:d2:a9:ee
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 28:e1:ee:bf:38:ca:5b:89:63:e3:4e:74:ac:09:69:e7:8d:d2:75:4f
Fingerprint (sha256): 4d:21:ef:6d:12:52:74:23:0c:28:9b:7d:f2:ef:92:ab:0c:4a:54:28:d8:e4:39:e3:29:5d:5b:c9:33:e4:12:13
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate hoegg.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hoegg.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hoegg.ch
Other certificates including the domain name hoegg.ch
(limited to 100 certificates)
abacus.hoegg.ch
ssl.hoegg.ch
ssl.hoegg.ch
ssl.hoegg.ch
remotedesktop.hoegg.ch
hoegg.ch
www.hoegg.ch
hoegg.ch
hoegg.ch
www.hoegg.ch
hoegg.ch
remotedesktop.hoegg.ch
hoegg.ch
hoegg.ch
remotedesktop.hoegg.ch
hoegg.ch
www.hoegg.ch
hoegg.ch
www.hoegg.ch
ssl.hoegg.ch
ssl.hoegg.ch
hoegg.ch
remotedesktop.hoegg.ch
abacus.hoegg.ch
*.hoegg.ch
hoegg.ch
ssl.hoegg.ch
ssl.hoegg.ch
remotedesktop.hoegg.ch
hoegg.ch
hoegg.ch
hoegg.ch
ssl.hoegg.ch
ssl.hoegg.ch
ssl.hoegg.ch
remotedesktop.hoegg.ch
hoegg.ch
www.hoegg.ch
hoegg.ch
hoegg.ch
www.hoegg.ch
hoegg.ch
remotedesktop.hoegg.ch
hoegg.ch
hoegg.ch
remotedesktop.hoegg.ch
hoegg.ch
www.hoegg.ch
hoegg.ch
www.hoegg.ch
ssl.hoegg.ch
ssl.hoegg.ch
hoegg.ch
remotedesktop.hoegg.ch
abacus.hoegg.ch
*.hoegg.ch
hoegg.ch
ssl.hoegg.ch
ssl.hoegg.ch
remotedesktop.hoegg.ch
hoegg.ch
hoegg.ch
hoegg.ch
Certificate
The complete raw certificate details for hoegg.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgISA/dkzsk8SPVYT4Nt0getxy1uMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MDcxMzI2MzJaFw0yMzEyMDYxMzI2MzFaMBMxETAPBgNVBAMT CGhvZWdnLmNoMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDXNIR0v gD4t9e6M1LuiNKAOuXrxh4h6i1VyZUPbMhK0ZDBubP2dZx/wBK/PgBBvTDsaPrJm C7jtkbvNOclUGWycOo9hzdVwqqqcGrEyW/lYoMDIciDA1hFCHCMB3yioSPjeuZgJ G1PB5tiyRfQb2ppfN5uZUGD3CJGx/W90oPOVlrDcvLL3atuY/Uwi0xTyCWqJRsHm EMsCjTSYNDkGP6RGqjehHqgpz3hSrakjOtF5BR1UbnTX9AhrUOcvA2drmTpDVPCw M42X/8YU6Q3gJljRxswAoCX5J9MjlcQN8GM8KmUDxwVh7zhS6uU7cHqBLCS8cBgW IZNfatY1l0ASJwIDAQABo4ICCTCCAgUwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQV satQ3GXfIFLLnw6zjv9u+9Kp7jAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+d ixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxl bmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzATBgNV HREEDDAKgghob2VnZy5jaDATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB 1nkCBAIEgfQEgfEA7wB1AHoyjFTYty22IOo44FIe6YQWcDIThU070ivBOlejUutS AAABinAJnIoAAAQDAEYwRAIgDEM/Wl1m8DFPuh9M8D0x6UjycRF4Klse0DSDAp/W ODACIBWk4LvPVVSbZsILs1sy/IWx8uJdz72vtX7y2VcZutcIAHYA6D7Q2j71BjUy 51covIlryQPTy9ERa+zraeF3fW0GvW4AAAGKcAmciwAABAMARzBFAiArAZC2nroe 49anRWdp96o1y0vwtc5Zj1OPczQz+95LNgIhAOYxixf7rGa8Lh7LpZGPkqxpzECq D1Fx/P8q5xAg+2GoMA0GCSqGSIb3DQEBCwUAA4IBAQBFN9puZp8fU1r9LbDlNDaB hPvepVkRsNP9nxotKdYxg7OEP+FsMvOZ7Cks4bIoKq3J1HLokubYAVbqR8qM5YHq AxjnHoaKwMcrRZf/jREcYY5xwEyEpWkrXMOaXfGTiqxTqcNJiEy7HTipgP8e6JPC XsLlxmRyvRrigy+JTBMfhZX67wSlXvZiJv0i72R/DDgg4cM6JzCx5zR0NkU2px/w jDc2tZI70GCNWBl5v1FtVW0HftC/mVKeA2OXdJn/Nb2du4Tdgnkd6zDvkwuUos2T 9NHJQmfwPXbOueOXhRAsnbQhQ5Ccg7NlbEO8S9eAdfOpQnaQ4IEUSn0aQruy4TnH -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDXNIR0vgD4t9e6M1Lui NKAOuXrxh4h6i1VyZUPbMhK0ZDBubP2dZx/wBK/PgBBvTDsaPrJmC7jtkbvNOclU GWycOo9hzdVwqqqcGrEyW/lYoMDIciDA1hFCHCMB3yioSPjeuZgJG1PB5tiyRfQb 2ppfN5uZUGD3CJGx/W90oPOVlrDcvLL3atuY/Uwi0xTyCWqJRsHmEMsCjTSYNDkG P6RGqjehHqgpz3hSrakjOtF5BR1UbnTX9AhrUOcvA2drmTpDVPCwM42X/8YU6Q3g JljRxswAoCX5J9MjlcQN8GM8KmUDxwVh7zhS6uU7cHqBLCS8cBgWIZNfatY1l0AS JwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 345520598919024489786516656160496406703470 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-07 13:26:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-06 13:26:31 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hoegg.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20224659197758809905245547293233545511538903528068803844756904894472991867586487214802713097355970603805054850360610713263561886221414793213426306223856913039753450166382037075169542846378678148056889206759966514729136542277791411858074607871535912454943837412244800366323094939168876535105168335207683119530171803086172210876948824726283677007759889509702335099833046801917523125047029047217024603861900668205786128365036539593836446654338325804392803079464846529766129246486733134155727956880105703464799783561039224236039573869396618203426205578114387811515413307628418671100601425159580372871343500886183658918439 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 15b1ab50dc65df2052cb9f0eb38eff6efbd2a9ee . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hoegg.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018a70099c8a000004030046304402200c433f5a5d66f0314fba1f4cf03d31e948f27111782a5b1ed03483029fd63830022015a4e0bbcf55549b66c20bb35b32fc85b1f2e25dcfbdafb57ef2d95719bad708007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018a70099c8b000004030047304502202b0190b69eba1ee3d6a7456769f7aa35cb4bf0b5ce598f538f733433fbde4b36022100e6318b17fbac66bc2e1ecba5918f92ac69cc40aa0f5171fcff2ae71020fb61a8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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