kaffeemaschinen-gs.ch

Issued by R3

About this certificate

This digital certificate with serial number 03:8e:19:73:82:e8:56:c4:4b:c5:09:19:f5:02:61:f8:81:dc was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=kaffeemaschinen-gs.ch

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:8e:19:73:82:e8:56:c4:4b:c5:09:19:f5:02:61:f8:81:dc
Serial Number (int): 309690784367208391349814681146922892820956
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: a2:e8:2b:d5:24:f4:6e:9f:4b:71:61:b4:10:10:27:30:21:22:0d:dc
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 8c:01:45:10:70:d2:36:08:7d:77:a2:54:c7:90:a9:55:ac:dc:4c:6e
Fingerprint (sha256): 76:8c:d2:a6:04:ec:6b:3d:55:d4:79:82:e6:e3:fe:64:03:bd:de:4f:7e:cf:18:9d:ad:21:ee:6c:71:79:77:71

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate kaffeemaschinen-gs.ch

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for kaffeemaschinen-gs.ch

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

kaffeemaschinen-gs.ch

Other certificates including the domain name kaffeemaschinen-gs.ch

(limited to 100 certificates)
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
addon-kaffeemaschinengschcms.stbr.ch
kaffeemaschinen-gs.ch
kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
kaffeemaschinen-gs.ch
kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
addon-kaffeemaschinengschcms.stbr.ch
kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch

Certificate

The complete raw certificate details for kaffeemaschinen-gs.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutsybJJaJILRInFTCW0j
HbHjAzSRV50F0EJwXOpSVV7/FY6iITUX6m+T1N7YoRlVHeW/0hJJJ2KtCylWTy0/
y8yORruGXDnZaIKMhq7avIyUewd3kxGwiTZUaDXM8a8Zv2eOGCGrpfDsbrnOWPI2
kU93Vr5FkAiS/svI4bHyGrbjSqnBOhujLf+auDqCOeGQ2hbNLktIm3kmk+oByIUJ
KMjpmsTFOBkhMb1o3m0DIfU8u8xNJOnvggqB67LrP2G7rEzZAXzIEHOtUlN29LZ1
I+S+CfSC7PmWV0lugtnp0pI42qoc3GK0vHR9Y4QTznN+2I4RJxoIZkm6KoHBGehE
8wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 309690784367208391349814681146922892820956
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-02 17:07:48 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-02 17:07:47 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kaffeemaschinen-gs.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23588414777757340824693285856030388077444597588280505544271570021152417421936449741162699527563976509721604010153968648644584493008170113886877313534485099430339291631473636377699962277401938224657854807817864376627962213944637668655951784662886120381504821477682566897984403171268234405715335144235117446310649727499747703106234929590740166915613858661726054511924850925202583367676241690716484878251896375303274994796640627241214444824613501473960434641060160528950571861295460678952897894858732435398822091552303738187698748519434256086087361308690698866725213900105032291819001364788656509554476183063332225828083
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a2e82bd524f46e9f4b7161b41010273021220ddc
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kaffeemaschinen-gs.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018573ab0e83000004030047304502210086ad095bd0ca757ac6591127f691eb9ae6d250b1f75170c2e92f037857625a9902207a3b5f47812e9f603805749b456c322e474d0e23bff5c0a8f92a245d7e1da6ed007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018573ab102100000403004730450221008fba61c8cf491aa4da5eada4521a9c84fc835102bf5321003bc3227f7197a2fc02203f4701d24bd3d9b299faf9edd6af70b8756d4efaa626eed40ea4318663061db0
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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