allenblock.ch
Issued by R3
About this certificate
This digital certificate with serial number 04:03:80:9d:95:a2:8a:5f:07:1a:f3:b8:8b:88:f0:84:69:e3 was issued on by Let's Encrypt.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=allenblock.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:03:80:9d:95:a2:8a:5f:07:1a:f3:b8:8b:88:f0:84:69:e3Serial Number (int): 349640950236827878260826755957786866379235
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e8:c8:67:fb:25:f9:d9:40:54:63:05:4c:d5:23:7f:bd:86:44:6d:03
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 15:49:90:22:e8:89:c6:23:46:87:61:9e:04:fd:4b:f3:31:b9:4e:5c
Fingerprint (sha256): 54:5f:ab:26:39:9c:1e:a3:15:04:7e:30:c1:8d:29:c8:66:28:34:99:fa:21:f0:42:59:a0:28:20:ca:76:55:c1
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate allenblock.ch
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for allenblock.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
allenblock.ch
bettercallgabriel.com
cardiocanna.com
iotiny.com.frugaltravel.com.casashroom.com
legalmag.com
monthlygoodieboxes.com.edgepolka.com
suits.cool
superman.openhelm.tv.rioforvip.com
wheretopenarothira.com
bettercallgabriel.com
cardiocanna.com
iotiny.com.frugaltravel.com.casashroom.com
legalmag.com
monthlygoodieboxes.com.edgepolka.com
suits.cool
superman.openhelm.tv.rioforvip.com
wheretopenarothira.com
Other certificates including the domain name allenblock.ch
(limited to 100 certificates)
timwiens.ca
arbitrage.cloud
purcahse.ogden.gold
ateliernovako.ca
georgiamortgageinc.com.allenblock.ch
34725625397.ca
theovercomers.ca
ukr.bible
lonesome.one
allenblock.ch
allenblock.ch
savefreedominamerica.com.allenblock.ch
allenblock.ch
allenblock.ch
howtoebookstore.com.donatemymoney.com.zau.co.za
christianmuseumtours.org
arbitrage.blog
revivedpro.ca
cochranebikerepair.ca
allenblock.ch
arbitrage.cloud
purcahse.ogden.gold
ateliernovako.ca
georgiamortgageinc.com.allenblock.ch
34725625397.ca
theovercomers.ca
ukr.bible
lonesome.one
allenblock.ch
allenblock.ch
savefreedominamerica.com.allenblock.ch
allenblock.ch
allenblock.ch
howtoebookstore.com.donatemymoney.com.zau.co.za
christianmuseumtours.org
arbitrage.blog
revivedpro.ca
cochranebikerepair.ca
allenblock.ch
Certificate
The complete raw certificate details for allenblock.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9DCCBNygAwIBAgISBAOAnZWiil8HGvO4i4jwhGnjMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzAyMjcwNDExMjZaFw0yMzA1MjgwNDExMjVaMBgxFjAUBgNVBAMT DWFsbGVuYmxvY2suY2gwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI YK0sYrrXnxWNRUZHg53N3EzFpyJmjpsl2L+wTiYZN8BTHIzjPdqkHFcv9YgefCAp YeSyGOyMZluaFVtiJrc+CLiT4ppOkxTea+Zbk0kaeRAxQ5Gw9q6kPL81nyfz0eAm or9Yy2Gx6UsKlL3VujzKzlqyWatiAL4ZPbK5P4smklpcSvKvWmUgYwrZYUvXDJaG auc62DeoPAWclbNp8dSjIHPaWUc5NzrqaoMBb6RGqAGY/t2NcN9PhuzoLOLB/ic0 HXPh6Xgpujb7qIkMnMN2JT5EIOROwuysOWuoytrX07+7vBRVL4REUdvSCAOVQRHq KtsFIR356+2xPopuncqHAgMBAAGjggMcMIIDGDAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFOjIZ/sl+dlAVGMFTNUjf72GRG0DMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MIHqBgNVHREEgeIwgd+CDWFsbGVuYmxvY2suY2iCFWJldHRlcmNhbGxnYWJyaWVs LmNvbYIPY2FyZGlvY2FubmEuY29tgippb3RpbnkuY29tLmZydWdhbHRyYXZlbC5j b20uY2FzYXNocm9vbS5jb22CDGxlZ2FsbWFnLmNvbYIkbW9udGhseWdvb2RpZWJv eGVzLmNvbS5lZGdlcG9sa2EuY29tggpzdWl0cy5jb29sgiJzdXBlcm1hbi5vcGVu aGVsbS50di5yaW9mb3J2aXAuY29tghZ3aGVyZXRvcGVuYXJvdGhpcmEuY29tMEwG A1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEW Gmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB 8wDxAHcAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGGkUhnxAAA BAMASDBGAiEA99AvTClKvHtk21r+XfXHHFEhOYK//pxzGzkiEOAFz6gCIQDPvtVP N0YIQnoeQHAkbJQo0S+BF1ePxZZUVjIAbtcurQB2AOg+0No+9QY1MudXKLyJa8kD 08vREWvs62nhd31tBr1uAAABhpFIZ7MAAAQDAEcwRQIgDfxG4jd0sM8xzEnU51P1 AQiVl91bxVnHxeyOZfH3lNMCIQD2lMcKda2qGiGxooV8NoCLfxBQ5Nyn++FGToD9 D0ckDzANBgkqhkiG9w0BAQsFAAOCAQEAlRiIqH8hjmM/chnGL+FvRtzzbho+S4lW CUEhvadjbVH5hnSrQSkjy9AH7tZjWQeJA7+1RlXTgTKmdH+RfMKgDik6dgj3sdnk vx1bMI7857UG5jvZ6q8dskECGrJDvsxPAeW4pbekEuStC2uKqY1XbChQ0pD1KPHh 8ENDPkrce6n7o2bi0g8pQcnk3FBDsR6UF0Rxd9J7fycASil+WLI3yXomaceQDGVt K2EVtCket5TV+O0eDV+545GIzM2/gmmSyVG4vYTxXGd8uNkNWrhqVdGAJaptbCER fu6yQa7MSD/jFvZJkRJBwkPs5k8/VLhm3IbcqbdXCZw1EtbfSQ1PeA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyGCtLGK6158VjUVGR4Od zdxMxaciZo6bJdi/sE4mGTfAUxyM4z3apBxXL/WIHnwgKWHkshjsjGZbmhVbYia3 Pgi4k+KaTpMU3mvmW5NJGnkQMUORsPaupDy/NZ8n89HgJqK/WMthselLCpS91bo8 ys5aslmrYgC+GT2yuT+LJpJaXEryr1plIGMK2WFL1wyWhmrnOtg3qDwFnJWzafHU oyBz2llHOTc66mqDAW+kRqgBmP7djXDfT4bs6Cziwf4nNB1z4el4Kbo2+6iJDJzD diU+RCDkTsLsrDlrqMra19O/u7wUVS+ERFHb0ggDlUER6irbBSEd+evtsT6Kbp3K hwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 349640950236827878260826755957786866379235 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-27 04:11:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-28 04:11:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'allenblock.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25295333931703414581991568523054174003171190470732458956226652185511845621435685173432080392457588105766268538729757335324594127578201617655437494723957996336109133629486426369249416840031089498634093536753581146403523937009166454063709460246512924707499475372617826872821009068762867170942984225447622103045763244296470844949059899953127829691463880773933135055676749786218966657146690083483002213505618864194863611127868429493363559716523674775515976161372401222836920100634678419191417273678941848719337701236529562315445534786984870008782776115165070363071180477049673177435487165156848287260835005574869059226247 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e8c867fb25f9d9405463054cd5237fbd86446d03 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (226 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'allenblock.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bettercallgabriel.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cardiocanna.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iotiny.com.frugaltravel.com.casashroom.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'legalmag.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'monthlygoodieboxes.com.edgepolka.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'suits.cool' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'superman.openhelm.tv.rioforvip.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wheretopenarothira.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000186914867c40000040300483046022100f7d02f4c294abc7b64db5afe5df5c71c51213982bffe9c731b392210e005cfa8022100cfbed54f374608427a1e4070246c9428d12f8117578fc596545632006ed72ead007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e00000186914867b3000004030047304502200dfc46e23774b0cf31cc49d4e753f501089597dd5bc559c7c5ec8e65f1f794d3022100f694c70a75adaa1a21b1a2857c36808b7f1050e4dca7fbe1464e80fd0f47240f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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