kaffeemaschinen-gs.ch
Issued by R3
About this certificate
This digital certificate with serial number 03:8e:19:73:82:e8:56:c4:4b:c5:09:19:f5:02:61:f8:81:dc was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=kaffeemaschinen-gs.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:8e:19:73:82:e8:56:c4:4b:c5:09:19:f5:02:61:f8:81:dcSerial Number (int): 309690784367208391349814681146922892820956
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a2:e8:2b:d5:24:f4:6e:9f:4b:71:61:b4:10:10:27:30:21:22:0d:dc
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 8c:01:45:10:70:d2:36:08:7d:77:a2:54:c7:90:a9:55:ac:dc:4c:6e
Fingerprint (sha256): 76:8c:d2:a6:04:ec:6b:3d:55:d4:79:82:e6:e3:fe:64:03:bd:de:4f:7e:cf:18:9d:ad:21:ee:6c:71:79:77:71
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate kaffeemaschinen-gs.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kaffeemaschinen-gs.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kaffeemaschinen-gs.ch
Other certificates including the domain name kaffeemaschinen-gs.ch
(limited to 100 certificates)
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
addon-kaffeemaschinengschcms.stbr.ch
kaffeemaschinen-gs.ch
kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
kaffeemaschinen-gs.ch
kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
addon-kaffeemaschinengschcms.stbr.ch
kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
addon-kaffeemaschinengschcms.stbr.ch
kaffeemaschinen-gs.ch
kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
kaffeemaschinen-gs.ch
kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
addon-kaffeemaschinengschcms.stbr.ch
kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
www.kaffeemaschinen-gs.ch
Certificate
The complete raw certificate details for kaffeemaschinen-gs.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISA44Zc4LoVsRLxQkZ9QJh+IHcMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzAxMDIxNzA3NDhaFw0yMzA0MDIxNzA3NDdaMCAxHjAcBgNVBAMT FWthZmZlZW1hc2NoaW5lbi1ncy5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBALrbMmySWiSC0SJxUwltIx2x4wM0kVedBdBCcFzqUlVe/xWOoiE1F+pv k9Te2KEZVR3lv9ISSSdirQspVk8tP8vMjka7hlw52WiCjIau2ryMlHsHd5MRsIk2 VGg1zPGvGb9njhghq6Xw7G65zljyNpFPd1a+RZAIkv7LyOGx8hq240qpwToboy3/ mrg6gjnhkNoWzS5LSJt5JpPqAciFCSjI6ZrExTgZITG9aN5tAyH1PLvMTSTp74IK geuy6z9hu6xM2QF8yBBzrVJTdvS2dSPkvgn0guz5lldJboLZ6dKSONqqHNxitLx0 fWOEE85zftiOEScaCGZJuiqBwRnoRPMCAwEAAaOCAlAwggJMMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIw ADAdBgNVHQ4EFgQUougr1ST0bp9LcWG0EBAnMCEiDdwwHwYDVR0jBBgwFoAUFC6z F7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVo dHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxl bmNyLm9yZy8wIAYDVR0RBBkwF4IVa2FmZmVlbWFzY2hpbmVuLWdzLmNoMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHYAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGFc6sOgwAABAMA RzBFAiEAhq0JW9DKdXrGWREn9pHrmubSULH3UXDC6S8DeFdiWpkCIHo7X0eBLp9g OAV0m0VsMi5HTQ4jv/XAqPkqJF1+HabtAHYAtz77JN+cTbp18jnFulj0bF38Qs96 nzXEnh0JgSXttJkAAAGFc6sQIQAABAMARzBFAiEAj7phyM9JGqTaXq2kUhqchPyD UQK/UyEAO8Mif3GXovwCID9HAdJL09mymfr57davcLh1bU76pibu1A6kMYZjBh2w MA0GCSqGSIb3DQEBCwUAA4IBAQCyr62mcAsWbVBLeOLheaPj7zojIWpjaR6gxwJP K9ojM1JI18OKlbNkLkzL2+QokLNRImWkK39ei3fOHkxp/rsJBqP7K9M61o63aU+p ogMkHF6YCVFoPyMMtw2QUvNGVpd49Vy/xmIKdOiWkY2/h3XLM+TBvALiFYuBZZk8 2mrrlndZuLkFVGdCAjgHVWSY9qUs9kpccBcJlKB5RjSllNZJNJh796l4d6tx9NLO yNZRwzaysIoMuPbuiIp7w3Fzl0lmUve0aQpEzdEL+F3edu4AtDTBTvAj/YBZAiF/ ZGgJLKy2Ey6gplSb98bZtkUNcXsvX/HoAk7cnEyLjBEmETS4 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutsybJJaJILRInFTCW0j HbHjAzSRV50F0EJwXOpSVV7/FY6iITUX6m+T1N7YoRlVHeW/0hJJJ2KtCylWTy0/ y8yORruGXDnZaIKMhq7avIyUewd3kxGwiTZUaDXM8a8Zv2eOGCGrpfDsbrnOWPI2 kU93Vr5FkAiS/svI4bHyGrbjSqnBOhujLf+auDqCOeGQ2hbNLktIm3kmk+oByIUJ KMjpmsTFOBkhMb1o3m0DIfU8u8xNJOnvggqB67LrP2G7rEzZAXzIEHOtUlN29LZ1 I+S+CfSC7PmWV0lugtnp0pI42qoc3GK0vHR9Y4QTznN+2I4RJxoIZkm6KoHBGehE 8wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 309690784367208391349814681146922892820956 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-02 17:07:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-02 17:07:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kaffeemaschinen-gs.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23588414777757340824693285856030388077444597588280505544271570021152417421936449741162699527563976509721604010153968648644584493008170113886877313534485099430339291631473636377699962277401938224657854807817864376627962213944637668655951784662886120381504821477682566897984403171268234405715335144235117446310649727499747703106234929590740166915613858661726054511924850925202583367676241690716484878251896375303274994796640627241214444824613501473960434641060160528950571861295460678952897894858732435398822091552303738187698748519434256086087361308690698866725213900105032291819001364788656509554476183063332225828083 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a2e82bd524f46e9f4b7161b41010273021220ddc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kaffeemaschinen-gs.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018573ab0e83000004030047304502210086ad095bd0ca757ac6591127f691eb9ae6d250b1f75170c2e92f037857625a9902207a3b5f47812e9f603805749b456c322e474d0e23bff5c0a8f92a245d7e1da6ed007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018573ab102100000403004730450221008fba61c8cf491aa4da5eada4521a9c84fc835102bf5321003bc3227f7197a2fc02203f4701d24bd3d9b299faf9edd6af70b8756d4efaa626eed40ea4318663061db0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00b2afada6700b166d504b78e2e179a3e3ef3a23216a63691ea0c7024f2bda23335248d7c38a95b3642e4ccbdbe42890b3512265a42b7f5e8b77ce1e4c69febb0906a3fb2bd33ad68eb7694fa9a203241c5e980951683f230cb70d9052f346569778f55cbfc6620a74e896918dbf8775cb33e4c1bc02e2158b8165993cda6aeb967759b8b905546742023807556498f6a52cf64a5c70170994a0794634a594d64934987bf7a97877ab71f4d2cec8d651c336b2b08a0cb8f6ee888a7bc3717397496652f7b4690a44cdd10bf85dde76ee00b434c14ef023fd805902217f6468092cacb6132ea0a6549bf7c6d9b6450d717b2f5ff1e8024edc9c4c8b8c11261134b8