baumuster.ch

Issued by R3

About this certificate

This digital certificate with serial number 04:aa:0f:01:e3:45:5b:4b:35:84:b4:c1:00:38:85:b3:19:fd was issued on by Let's Encrypt.

With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=baumuster.ch

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:aa:0f:01:e3:45:5b:4b:35:84:b4:c1:00:38:85:b3:19:fd
Serial Number (int): 406317094325436134948667524440015362005501
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: cd:c5:c5:57:d1:1f:d4:fb:e9:d8:e8:96:6c:35:0d:b9:a3:24:e1:0c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 8c:c7:8d:b4:8f:53:6e:57:47:23:71:70:04:56:5f:c8:36:73:bd:e8
Fingerprint (sha256): 6d:3e:e4:d1:ca:69:26:51:4c:cd:2a:6e:23:d6:c5:3e:03:6a:f5:0b:55:4c:04:51:74:df:eb:8c:2c:63:80:c8

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate baumuster.ch

6

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for baumuster.ch

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

baumuster.ch
sbcz2.api.itool4.net
sbcz2.b01.itool4.net
sbcz2.cron.itool4.net
sbcz2.f01.itool4.net
www.baumuster.ch

Other certificates including the domain name baumuster.ch

(limited to 100 certificates)
baumuster.ch
baumuster.ch
baumuster.ch
baumuster.ch
baumuster.ch
baumuster.ch
baumuster.ch
baumuster.ch
baumuster.ch
baumuster.ch
baumuster.ch
baumuster.ch
baumuster.ch
baumuster.ch
baumuster.ch
baumuster.ch
baumuster.ch

Certificate

The complete raw certificate details for baumuster.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0iRBUAABixMg5fn8mqNJ
ZV0qNZpjeqr/6PaFf1bD6mvJ2CxLPQgkEvgHfj+WqC+AVnZ0mwoSX7tWreyG1GxV
zfaigJwb6sF1RIH0Z+Yck+/WjeTD3cq10XGjYCvFoYCZyfGPR4f3cZ1wgI6JKHp0
WGWMQwK1CFrHi938nN0XmMQH4im+aMHmIpIzaX1zlBCBBr2FA3k8tGEmV9yh92O5
h/3u3boxDWfRYmqM/SCOSXRYo+6FRyCayQgE84z5JUl8okATJALklW2h39j1tXKg
zc+6CUYIBIChao2+oE9fQCCxA9g74wg2l3Xw4qx8ZKvxFvS+ObYkGkBwhrXazGe3
JQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 406317094325436134948667524440015362005501
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-08 12:51:13 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-06 12:51:12 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'baumuster.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26527922112297846321820341157800800444481984039023122948349888943106878357387573731592416642152973454050205350170558231919550786901698986600924770011873596617216179109343189390354671177572601673841500710486251356119311003838196689174550393918795022097101243215434090178983493587112632497536717970977123997737372065910168744741697879050844428442152860889656567841724724891961755539423067576999166061231320478271916033477712059187544912849588284675210231423645924463307039263139881467091773527551508463424255953315026013203309703907198707580771723259614511782072554135264226063766924482606030431658936998705222669285157
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							cdc5c557d11fd4fbe9d8e8966c350db9a324e10c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'baumuster.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sbcz2.api.itool4.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sbcz2.b01.itool4.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sbcz2.cron.itool4.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sbcz2.f01.itool4.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.baumuster.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000187fba16f18000004030046304402206cd02b360018ea7a0b0915621778d623e6f2e69b1e1649d4dea8845ef37dcf5702200f5c516723853e82da69fbe106406ad2f5caefe9dc2053941b499fd8adb193960076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000187fba16f2b0000040300473045022017c5833b7f1675e731c1c24ea535792e862f9a45b7311d7efdb027501a4f9353022100c2c1fec9e637b6cfdae09e3aa2f2d735811e72502326c0e054e7706939c4ee9f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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