bispas.ch
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:90:3f:37:2a:90:6c:9f:ec:9d:e3:38:30:1b:99:fe:85:52 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bispas.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:90:3f:37:2a:90:6c:9f:ec:9d:e3:38:30:1b:99:fe:85:52Serial Number (int): 310421546435261224267191399078733396477266
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: bb:df:92:25:74:28:63:10:f3:ff:46:83:e7:f6:06:af:8d:28:c5:f7
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ae:78:8b:49:e7:90:42:55:04:c7:e4:8e:19:e0:dd:35:27:cf:9b:a7
Fingerprint (sha256): 54:de:82:2d:6a:74:ed:1f:9a:f5:7b:f1:b0:a7:08:10:26:3d:c8:fa:09:1a:d7:41:28:44:e3:a2:b1:5d:9d:56
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate bispas.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bispas.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bispas.ch
www.bispas.ch
www.bispas.ch
Other certificates including the domain name bispas.ch
(limited to 100 certificates)
bispas.ch
intranet.bispas.ch
www.bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
intranet.bispas.ch
bispas.ch
bispas.ch
intranet.bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
intranet.bispas.ch
bispas.ch
intranet.bispas.ch
intranet.bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
intranet.bispas.ch
www.bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
intranet.bispas.ch
bispas.ch
bispas.ch
intranet.bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
intranet.bispas.ch
bispas.ch
intranet.bispas.ch
intranet.bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
bispas.ch
Certificate
The complete raw certificate details for bispas.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGDDCCBPSgAwIBAgISA5A/NyqQbJ/sneM4MBuZ/oVSMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA1MDYyMzAwMjNaFw0x ODA4MDQyMzAwMjNaMBQxEjAQBgNVBAMTCWJpc3Bhcy5jaDCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBANiS1cHM7t8BLKwui2U7Le7ycmE9t7R3iSEGcI/y ZsHDdmEVJaPJhqGDTh9KvP8obqgHnW3wr9dbNFvUw9+9dQPDi7Hh93XmNaQM9x0I gUM5t3Wxiir+bi04shdr+2xDkWtgu44/WgmQKIzaB5p0wyZ2gL3oJhBBf618vYKh 4MlfDO3KqYVj682AgPCEvFJWpDSq+dFIyLeztk+41WwUdczNb1Tr/qR+wbULy4wM 1EzGAglva+jHxofrziVqru1byhDgOBvxrhi5MJCW4ngDRPcnEzkorE4ioGexwVJF h7QtKfUXZk5DbUqXsFbsj6p+eBL9Qt/o1m8F4iqqVSzeMjECAwEAAaOCAyAwggMc MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw DAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUu9+SJXQoYxDz/0aD5/YGr40oxfcwHwYD VR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4G CCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQub3JnMC8G CCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzAj BgNVHREEHDAaggliaXNwYXMuY2iCDXd3dy5iaXNwYXMuY2gwgf4GA1UdIASB9jCB 8zAIBgZngQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYGCCsGAQUFBwIBFhpodHRw Oi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUHAgIwgZ4MgZtUaGlzIENl cnRpZmljYXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9uIGJ5IFJlbHlpbmcgUGFy dGllcyBhbmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGggdGhlIENlcnRpZmljYXRl IFBvbGljeSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNyeXB0Lm9yZy9yZXBvc2l0 b3J5LzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2ANt0r+7LKeyx/so+cW0s5bmq uzb3hHGDx12dTze2H79kAAABYzfmNHcAAAQDAEcwRQIhAL26lriDf6MKtKfUXnRJ tXF+4st+x/5b0NOqiD8mUWIUAiBQuEinerMM8Mvz37UZ1wvwecvLBjHZZuBSGIfi QrGnHgB2ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVFR/R4AAABYzfmNJsA AAQDAEcwRQIgfY5qzxg8U0B7NVu/odqeOeTGr81oVpNBSAePmciuBqkCIQCtaex0 vw2tWslSnlxZeaCXn6bBgyPBYTmCoNHuF8WweTANBgkqhkiG9w0BAQsFAAOCAQEA NIU9yPq6zY2NmT8DTnq/SeFWId6+I0rFsa0UMOjkLQ5PBXukfQ8A8FcqO97BxJOX ePjmgVrE5GaToM9jyBFEOYW4XPcVrN5Zl5MKTvU56JmOHh8P0d3FcZrfkrUNkXOe 4gvsNWKrSAEdfzDr8ToyKrrt28AUwUhoIHmXaPR/84Q7EwMblOpedjZQV4m3HaRd kR/MiHPuzKsKfLOdMLeuGgPpyo0sWFZjJciZ99TAeITdA6Tb+dx7yaOlMwibd4U3 LMjQ76j7SVKeNSa0vGJcrSlCdbyFdrqTH3I8O+MIjMJE94S3qJG+7nsePUI7X79H hHlV+tzNYItkElT5IRuNow== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2JLVwczu3wEsrC6LZTst 7vJyYT23tHeJIQZwj/JmwcN2YRUlo8mGoYNOH0q8/yhuqAedbfCv11s0W9TD3711 A8OLseH3deY1pAz3HQiBQzm3dbGKKv5uLTiyF2v7bEORa2C7jj9aCZAojNoHmnTD JnaAvegmEEF/rXy9gqHgyV8M7cqphWPrzYCA8IS8UlakNKr50UjIt7O2T7jVbBR1 zM1vVOv+pH7BtQvLjAzUTMYCCW9r6MfGh+vOJWqu7VvKEOA4G/GuGLkwkJbieANE 9ycTOSisTiKgZ7HBUkWHtC0p9RdmTkNtSpewVuyPqn54Ev1C3+jWbwXiKqpVLN4y MQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 310421546435261224267191399078733396477266 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-06 23:00:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-04 23:00:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bispas.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27339880904101269651768191349626644107066034581953513156203578302636011586663530269399716157991020935288978029856840812193729038171825959660010560673220085580516603996063089402887360653401791881776178412927781479303103806010948430183518651505255579566703615266501296264601930875911413329050005065427006923653263750929341155064736058386034869343107009076452557177509729851201255588337441717559125771552637248567114152214869793047758053571398485568357972232498334872898800917930849702726429754552233558530217686739033814966657365876348943224690183828366519073015081560143058356008719378865747166820844054479936134459953 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bbdf922574286310f3ff4683e7f606af8d28c5f7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bispas.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bispas.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600db74afeecb29ecb1feca3e716d2ce5b9aabb36f7847183c75d9d4f37b61fbf640000016337e634770000040300473045022100bdba96b8837fa30ab4a7d45e7449b5717ee2cb7ec7fe5bd0d3aa883f26516214022050b848a77ab30cf0cbf3dfb519d70bf079cbcb0631d966e0521887e242b1a71e007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016337e6349b000004030047304502207d8e6acf183c53407b355bbfa1da9e39e4c6afcd6856934148078f99c8ae06a9022100ad69ec74bf0dad5ac9529e5c5979a0979fa6c18323c1613982a0d1ee17c5b079 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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