DV SSL/TLS Certificate for *.novavista.ch

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the *.novavista.ch DV SSL/TLS Certificate

This certificate with serial number 05:6a:35:36:70:06:c4:05:12:66:c8:1f:61:b1:6b:d9:d1:cf for *.novavista.ch was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for *.novavista.ch provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:6a:35:36:70:06:c4:05:12:66:c8:1f:61:b1:6b:d9:d1:cf
Serial Number (int): 471702092292393581559718388474815213851087
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: d8:97:1e:fd:96:9f:2f:8d:63:d0:a4:20:88:be:25:5b:f1:46:e2:35
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 51:06:00:33:34:2a:c1:2c:13:90:11:c3:0f:33:13:78:e8:3d:96:13
Fingerprint (SHA-256): 34:08:e6:a1:4f:43:fa:f8:ca:50:39:2f:cc:05:7c:15:6f:21:4e:a4:04:11:a2:09:18:b9:e5:b2:84:38:62:ee

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/80.crl

Check the revocation status for certificate *.novavista.ch
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for *.novavista.ch

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for *.novavista.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArapTVMFk8ifBqnYEkAqx
PtrQUfZ7LHNgqDUXhzA6WoDRUuB8AfHUmZyElpw2DnAyxYY9gGKfKD9HkVVDFT9t
lQYaQY2b+ywHajiLhez0j041AIZwg46QWcV7l/xEI7n52McQ0NLy3D/cfQzbVVag
T4P4rqM8edrVrLknFtxQyRVWZMhFMO0DIIjCZhtH7t8cMYUWdBDiO3pY7N6wibXu
vxELI7Wgy2Bd/UO2r+8kXnT9afYcXL+IFP9EuEKCs2TagOe4R0RnbFSavnt5XSeX
OX7px0OwJC9AYZHuhldXwxAnPYyytBhrDImOD+Lvatck0/EjXeSN9lgTeuLCMBHY
RwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 471702092292393581559718388474815213851087
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-20 05:40:50 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-18 05:40:49 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.novavista.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21923217399477010293158800290123237939962794968640963307621254388575392097692223463234770465867141816016493150809142379144783002057469037351369538139414150000821917427603028328038594885331576650220479113652379780560789662159559895184389023157204251161787343524462159099291473755270301077797224176205311553872068518767529628458659777319875731885548357917432084247947546367871359351427311832918744365720878875314907452303100169140579437389344437207729466434826183376426661956142239959511093691943661449035625814453265634975687258984230771359361636145727351289284976189606242161327948802593074404043588997577631031482439
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d8971efd969f2f8d63d0a42088be255bf146e235
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.novavista.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'novavista.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/80.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600ed3c4bd6e806c2a4a20057dbcb24e23801df512fedc486c5700f20ddb73e3fe000000196ec6b0a1f0000040300473045022100de33fb0af3826be6e285a6fa4201b4b1d9d591bf1294d425b4fe060a42ed4325022053756d654d29cd6c11b5aebeaf7fcedbc21dc6f23653908ad4141b355bcea4580077000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa3400000196ec6b0a2b00000403004830460221009b8b339665dabed6cafec1151b95ba42db39c873949d3c256c2748aa3656dd1c022100a3a00e982f0ae98e444a6f3902adcb0f88d17c3b4c76dbe913a86d59e748ca9d
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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