www.rwkeramik.ch
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:1c:5b:3a:72:63:6b:c1:66:d6:53:6f:16:65:6f:b2:67:bb was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.rwkeramik.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:1c:5b:3a:72:63:6b:c1:66:d6:53:6f:16:65:6f:b2:67:bbSerial Number (int): 270986027289972870890854552557622010210235
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 2e:d8:31:eb:f9:d3:9f:c8:c8:67:c7:ab:cb:e6:4c:e3:0f:45:61:c4
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 68:21:b3:08:35:79:cc:8b:84:b5:c6:8b:b4:49:d7:17:36:cc:6e:36
Fingerprint (sha256): 79:63:0f:26:5c:e1:8e:87:58:1a:eb:21:7f:8c:69:ff:05:ad:ac:9a:80:26:1f:f5:0f:af:1b:9e:22:91:6f:6c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.rwkeramik.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.rwkeramik.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
Other certificates including the domain name rwkeramik.ch
(limited to 100 certificates)
rwkeramik.ch
rwkeramik.ch
rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
rwkeramik.ch
www.rwkeramik.ch
rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
rwkeramik.ch
rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
rwkeramik.ch
www.rwkeramik.ch
rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
www.rwkeramik.ch
Certificate
The complete raw certificate details for www.rwkeramik.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgISAxxbOnJja8Fm1lNvFmVvsme7MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzA2MTEwNzIyMDBaFw0x NzA5MDkwNzIyMDBaMBsxGTAXBgNVBAMTEHd3dy5yd2tlcmFtaWsuY2gwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAotVhrXsjlFPXKQZUwe1wy+NPYm8f 5wAg9sdBgz81xd+Yr1/05uvBekAfoWetvgyxl246XfqesAeGBScGLS9F4f/nuzPE 30MTyMrVwY98a9CQ6mGNeY2XBeeddhg7NKkOiT9sUkvEGOhuNFObUttFS8Nowww1 Gz15+S8/MITPGCGAJdexwCLSbPqDpTjf/MOM8hxtbrh0hYwutekqQdnZ10gKtCVc 4sqRwQ81/K2sBpDVmpcx0IKFy1tb5b8mObPWBoer0D6QdbCWg2Ozd7H593QUAB9a utTG3RvNVd8PFAnU+Z7fcHE3BA0HU4L3+srvSa6NWJ3zR1YsBvOaWjnLAgMBAAGj ggIeMIICGjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFC7YMev505/IyGfHq8vmTOMP RWHEMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEB BGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZy8wKQYDVR0RBCIwIIIMcndrZXJhbWlrLmNoghB3d3cucndrZXJhbWlrLmNo MIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggr BgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwIC MIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBi eSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRo ZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlw dC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEBAARQTgG5v4tSH1aR M+9ksFadyD4+yZ1nOxbtvrIJIjOpwXVbSAQb9UeRlJau3Cib5+ft7gyTsy1Xa1ZQ UupoeFE3Z/XpoSKRv5zM7yk84DyO8ta52pLCQUenJZPZMxZCMlEgO8X6NqSLlNIL zkTOKt5KSnBl1WtsnMStyy6oX+MsCNyvY1Zn+Ve0DYggqbvtuwWo0zBsvIYpH39d AzSVsuzzp68BYQwLWojn+BIZgz4R2LKGNZ0n0O4xV2Ja7rINFnx6FgIgzDMo8HTk YyKJZvQRQMvMhkpRYJyyOvdwl5F5LO48Dd20T1/OuhAoLLDd4fFu1egcpJAS7Loa V5IdYiQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwKLVYa17I5RT1ykGVMHt cMvjT2JvH+cAIPbHQYM/NcXfmK9f9ObrwXpAH6Fnrb4MsZduOl36nrAHhgUnBi0v ReH/57szxN9DE8jK1cGPfGvQkOphjXmNlwXnnXYYOzSpDok/bFJLxBjobjRTm1Lb RUvDaMMMNRs9efkvPzCEzxghgCXXscAi0mz6g6U43/zDjPIcbW64dIWMLrXpKkHZ 2ddICrQlXOLKkcEPNfytrAaQ1ZqXMdCChctbW+W/Jjmz1gaHq9A+kHWwloNjs3ex +fd0FAAfWrrUxt0bzVXfDxQJ1Pme33BxNwQNB1OC9/rK70mujVid80dWLAbzmlo5 ywIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 270986027289972870890854552557622010210235 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-06-11 07:22:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-09-09 07:22:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.rwkeramik.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24318050755710422143665261429673985109114808627508116612154021914930915497132300861454360727383995766293003557863763548627041909366318121632259888329046705787010005561214725290018917584785845273995534079730903434920994105441439681480703829585343302109128447630806553022257127572472010940286222082572912187755442097089597563586589794426716769501093538924341440690649729447444711476237742415566767808257571779706496481479943258414805640003563999927127345279762923157113802123120159167040805981899517837587922387762646668665116828092553985746435720152215823329453166909846241680160003066060969223837656480302350359738827 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2ed831ebf9d39fc8c867c7abcbe64ce30f4561c4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rwkeramik.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rwkeramik.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0004504e01b9bf8b521f569133ef64b0569dc83e3ec99d673b16edbeb2092233a9c1755b48041bf547919496aedc289be7e7edee0c93b32d576b565052ea6878513767f5e9a12291bf9cccef293ce03c8ef2d6b9da92c24147a72593d93316423251203bc5fa36a48b94d20bce44ce2ade4a4a7065d56b6c9cc4adcb2ea85fe32c08dcaf635667f957b40d8820a9bbedbb05a8d3306cbc86291f7f5d033495b2ecf3a7af01610c0b5a88e7f81219833e11d8b286359d27d0ee3157625aeeb20d167c7a160220cc3328f074e463228966f41140cbcc864a51609cb23af7709791792cee3c0dddb44f5fceba10282cb0dde1f16ed5e81ca49012ecba1a57921d6224