vitalis-shop.ch
Issued by R3
About this certificate
This digital certificate with serial number 03:91:d6:ce:11:d7:31:dd:9a:bb:bd:e2:cb:1b:92:12:70:c7 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=vitalis-shop.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:91:d6:ce:11:d7:31:dd:9a:bb:bd:e2:cb:1b:92:12:70:c7Serial Number (int): 310963325764918098184794181335124764946631
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 83:62:f1:94:1a:3b:e1:93:21:13:32:91:34:2c:b8:f5:f8:6e:34:69
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ca:c9:60:a4:5a:41:63:09:24:a8:e0:0e:45:5d:57:a5:14:be:0d:df
Fingerprint (sha256): 7b:5c:54:26:c1:40:bb:af:34:ba:49:13:13:3c:12:db:18:59:24:5f:2b:b1:9a:b7:ff:d1:65:4d:ea:e3:43:56
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate vitalis-shop.ch
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vitalis-shop.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vitalis-shop.ch
vitalisshop.ch
www.vitalis-shop.ch
www.vitalisshop.ch
vitalisshop.ch
www.vitalis-shop.ch
www.vitalisshop.ch
Other certificates including the domain name vitalis-shop.ch
(limited to 100 certificates)
vitalis-shop.ch
vitalis-shop.ch
mail.vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalisshop.ch
vitalisshop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalisshop.ch
vitalis-shop.ch
vitalisshop.ch
vitalisshop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
big.vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
mail.vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalisshop.ch
vitalisshop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalisshop.ch
vitalis-shop.ch
vitalisshop.ch
vitalisshop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
big.vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
vitalis-shop.ch
Certificate
The complete raw certificate details for vitalis-shop.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgISA5HWzhHXMd2au73iyxuSEnDHMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzAzMjMyMjMwNDFaFw0yMzA2MjEyMjMwNDBaMBoxGDAWBgNVBAMT D3ZpdGFsaXMtc2hvcC5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AKuupDsBunLkc4AmhtFauTH4wt7zRX5TpBftToVwo2B6J5iLUC268SEG97k796/L X7m40cD8SRlOgycpG+BsznEEjZCRwrMyArd5BKfGu+ruYghVu6DkMP/N4xBJXRaI TWkpi93JqpiGlzemJ5Tb40v2BDIWkIXZcWjKa9G2TZlZUoO2DsMbzznygNeBaFrV XTx9KbHMaDxmvd/OdPW3si1UHi8H0RtAAfIIoWUKIxI8oy8idm6MJyBj4fpKg7df NBXmpKvJBnta5ei914RSOktHu3zgBTYPmvd1DTol+7riP0uzb6f/s0qu+AaQDTnH BQFolm52sRrROCyToz+s54UCAwEAAaOCAoMwggJ/MA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUg2LxlBo74ZMhEzKRNCy49fhuNGkwHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wUwYDVR0RBEwwSoIPdml0YWxpcy1zaG9wLmNogg52aXRhbGlzc2hvcC5jaIIT d3d3LnZpdGFsaXMtc2hvcC5jaIISd3d3LnZpdGFsaXNzaG9wLmNoMEwGA1UdIARF MEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6 Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcA tz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGHEM9qRQAABAMASDBG AiEA45dj/BDqtH1+vaQDPNYlCF7dAkvWBFr0NniXb25SJMsCIQDB/4OZe+Wwsl+b Jyg0xnoyQsSN1glkGk4GfPvMzLbt9QB1AOg+0No+9QY1MudXKLyJa8kD08vREWvs 62nhd31tBr1uAAABhxDPajsAAAQDAEYwRAIgQN8OmnvmwT8eCjwCQUG93uCzRz9X cKl9MAe4NnetZAICIF+3g7Z8Z4Z6zMRIlbKntib6Fb0BiRmttHxKPLf1iin1MA0G CSqGSIb3DQEBCwUAA4IBAQBh8HbZBxs9VCSl44UMkTYaHdvIcVtBY46t7l1VoIGT nK/qA/guAc9jGqsAt2eDYkBLi+0SY7cxhJjeclzdNAOu25syctCZJYo5fgEbKqdM N5Q3Ktq8NbWfZAuFJgQfLMwTDkgGqqlJIhWIDai/jiIoN4tcjHXijjJwnkS4osqw h1Q1nIHOaPecIFfTcn0frxc3JSG+c0rxlh8hrAgy7czuSEa3cIG/JrzLat8x9Oj1 oUd8E+o2MS1lcOav62p2PjEpq7osQsxmenSC0hVb7avSfcIbA3sDgfqzMTRBFhXC kY362w3OK1kturYzxZF89xP1cen5F/MdvVaKkWhIXe/t -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq66kOwG6cuRzgCaG0Vq5 MfjC3vNFflOkF+1OhXCjYHonmItQLbrxIQb3uTv3r8tfubjRwPxJGU6DJykb4GzO cQSNkJHCszICt3kEp8a76u5iCFW7oOQw/83jEEldFohNaSmL3cmqmIaXN6YnlNvj S/YEMhaQhdlxaMpr0bZNmVlSg7YOwxvPOfKA14FoWtVdPH0pscxoPGa938509bey LVQeLwfRG0AB8gihZQojEjyjLyJ2bownIGPh+kqDt180Feakq8kGe1rl6L3XhFI6 S0e7fOAFNg+a93UNOiX7uuI/S7Nvp/+zSq74BpANOccFAWiWbnaxGtE4LJOjP6zn hQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 310963325764918098184794181335124764946631 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-23 22:30:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-21 22:30:40 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vitalis-shop.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21672869095053813310883276346887598270827203965157429126792630718611942528249166906269234624325100250800731888668332635268125322386643095088085656009023427488368719085409068393828690358736660914828353874742022316173132539891958656687056638480958349134231588133011582971105314191834607995205847524051860112784869318954490492606607876967227046528997758067749205227853803767467074889891014237398065902572302343818687950282596531544849222247509704682813686400736962825737514744619820941449173341445338221675624773796864239416448803460486288294627798902532752094754338293545406307126438804679414659933834811573632257288069 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8362f1941a3be19321133291342cb8f5f86e3469 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (76 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vitalis-shop.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vitalisshop.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.vitalis-shop.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.vitalisshop.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018710cf6a450000040300483046022100e39763fc10eab47d7ebda4033cd625085edd024bd6045af43678976f6e5224cb022100c1ff83997be5b0b25f9b272834c67a3242c48dd609641a4e067cfbccccb6edf5007500e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018710cf6a3b0000040300463044022040df0e9a7be6c13f1e0a3c024141bddee0b3473f5770a97d3007b83677ad640202205fb783b67c67867accc44895b2a7b626fa15bd018919adb47c4a3cb7f58a29f5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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