vaudois.ch
Issued by R3
About this certificate
This digital certificate with serial number 04:c7:22:f9:db:12:8c:b0:c4:99:3c:ec:4f:9c:2d:f9:ab:2d was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=vaudois.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:c7:22:f9:db:12:8c:b0:c4:99:3c:ec:4f:9c:2d:f9:ab:2dSerial Number (int): 416211825821399554853167772285173078010669
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: ef:0f:76:c3:6a:7e:d3:81:06:8c:0f:73:ea:4b:00:24:f5:0e:c8:8f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 40:61:ed:20:75:fa:9c:31:1d:c8:75:81:1b:2a:df:d2:f0:22:7a:37
Fingerprint (sha256): 80:d8:fc:8a:00:16:56:79:e3:20:ad:2a:5e:bd:85:52:48:e2:43:7d:c9:c8:fa:51:5d:25:e1:f9:0d:ff:8c:16
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate vaudois.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vaudois.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vaudois.ch
www.vaudois.ch
www.vaudois.ch
Other certificates including the domain name vaudois.ch
(limited to 100 certificates)
Certificate
The complete raw certificate details for vaudois.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF7zCCBNegAwIBAgISBMci+dsSjLDEmTzsT5wt+astMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA4MjIyMzIyMzJaFw0yMzExMjAyMzIyMzFaMBUxEzARBgNVBAMT CnZhdWRvaXMuY2gwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCPs974 5WQl0OKRonCv6AZbsfjsRxgBtUlfsYEUCBR6B9eXPPDgSa2G/fplP7mGYQ5ii1fq eRLxXMQkJY1zRgnUq/O89zKW0W7SjB8/sI81FG/ejNRquScKXQoYy+boI6Pxk/Wg XDEExcuy0cCXo3ENXaQrhgyO255W3pBhoD9xQyz2O/i6vcDgdureY30yLyn9GH2Q WM0uw1fYN2NLPC6V0vPm0Cjk+P9t6/RKz1DBvlFpE3PBwl/oDYJlmgArXDbnBH3Z 015Rojel4QiR8jvAN0OpOMsE7xdPpeqmOVp2mS//4c3TKAkSF5hHUjzkHSwyW0zV 77B1oj36z3Bq6BPWKz50lXNzZtyc3mJBAHPnx0oPGN3oivXbDidvNPQ/B35peWE+ xiR995R855nDbO3Q73K/0SKgmzYsmDYdiLyEL4Y/Mk2uUVhsQE97RFNTyH8zsAsD McBrvVv0BN/nKqpREQuxUaQCjpi1QR9LqPZvNSWArJmI4pRMiyBtpvMFqgM63nmw 0ERtChWTl1L1ZZ652SJ/lwNe5d0i9gTePtzNLccGCHj6tMQ6fbnZB+N5AdUVM7q+ 5pFxL7TCp1fhuMzDhiq0Hnn5GEH3F7Ctw/SVZzdXoLCn6EfmutnxNJrkhXT2QBdd Pw9zp8C4+bw5LVcFkMCPaPqISr9hlCzI536uDQIDAQABo4ICGjCCAhYwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBTvD3bDan7TgQaMD3PqSwAk9Q7IjzAfBgNVHSMEGDAW gBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUH MAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3Iz LmkubGVuY3Iub3JnLzAlBgNVHREEHjAcggp2YXVkb2lzLmNogg53d3cudmF1ZG9p cy5jaDATBgNVHSAEDDAKMAgGBmeBDAECATCCAQIGCisGAQQB1nkCBAIEgfMEgfAA 7gB1ALc++yTfnE26dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAABih/Fg6oAAAQD AEYwRAIgPcW1jocZILTePmZxnnmIK35eQK9GPByiq1CXysM/ol8CIGvE6DU6fSc8 mkPdEtqBrwP4aXJWSVgQSiITVuPcXgghAHUAejKMVNi3LbYg6jjgUh7phBZwMhOF TTvSK8E6V6NS61IAAAGKH8WDuQAABAMARjBEAiBFyc7DlQSrd4Fe92Nm4S6EuI8D fYTjevbH4ZYB1DOjAQIgIoq0h0XIXee//MCwVUh5uFtlPZthaetAZs2o3DH+mD4w DQYJKoZIhvcNAQELBQADggEBAGARsNC2Di7sxM2fP0dK38d+Fhgwuj7xy69L10i1 kpzSs41SAX8Ml7QS8YSpKFclnGe2PfM0xbxnBy63NBp0Hi7vodB+I0PIqwD1ysyx JDtpBwBlsw7+EqrCYVjorAQJllKcvv4np9GTyjCtHWD6DBZb7zJzCCE9nW2Nj5OG HOcG1RDZwTCbG6aPX6z8ldQjqXmYId9GTEInWkIDgRfqxZuHk8JhMChzBHW56N2d wYjxIcNK8EOxThHZKAI4Ifje9Za1smowywXWwyy4q7/42K4zQU4Liu1zGp08HWqn YKJ1dpYyXeyeHpWsqscjet9PeCuqOZrYk1+xeaQvGHKZUvY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAj7Pe+OVkJdDikaJwr+gG W7H47EcYAbVJX7GBFAgUegfXlzzw4Emthv36ZT+5hmEOYotX6nkS8VzEJCWNc0YJ 1KvzvPcyltFu0owfP7CPNRRv3ozUarknCl0KGMvm6COj8ZP1oFwxBMXLstHAl6Nx DV2kK4YMjtueVt6QYaA/cUMs9jv4ur3A4Hbq3mN9Mi8p/Rh9kFjNLsNX2DdjSzwu ldLz5tAo5Pj/bev0Ss9Qwb5RaRNzwcJf6A2CZZoAK1w25wR92dNeUaI3peEIkfI7 wDdDqTjLBO8XT6Xqpjladpkv/+HN0ygJEheYR1I85B0sMltM1e+wdaI9+s9waugT 1is+dJVzc2bcnN5iQQBz58dKDxjd6Ir12w4nbzT0Pwd+aXlhPsYkffeUfOeZw2zt 0O9yv9EioJs2LJg2HYi8hC+GPzJNrlFYbEBPe0RTU8h/M7ALAzHAa71b9ATf5yqq URELsVGkAo6YtUEfS6j2bzUlgKyZiOKUTIsgbabzBaoDOt55sNBEbQoVk5dS9WWe udkif5cDXuXdIvYE3j7czS3HBgh4+rTEOn252QfjeQHVFTO6vuaRcS+0wqdX4bjM w4YqtB55+RhB9xewrcP0lWc3V6Cwp+hH5rrZ8TSa5IV09kAXXT8Pc6fAuPm8OS1X BZDAj2j6iEq/YZQsyOd+rg0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 416211825821399554853167772285173078010669 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-22 23:22:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-20 23:22:31 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vaudois.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 586255545470636492874737786683518859183497104266799121520172302793632704031954597867901343598996055422231317895000613907018355894252142951090533846286220469371925402450763678860946920178111234666259531841262981742900557252258240104436695928299307490044374283187098151562829419545392149915396375146252827071977721479643615516366439417189086771181467874334560655712183910259843153569736068009112470274088497969788657379230912623166267096301848535501844417787174824689032569240445885439876648761476318957190846878051622996418465032693710212869239883788694958337202315020775368429746734079216953734969067016641409995583732101697027919886606717254674791702456595740139780344211358826588222516293850161152945299112055784179336458486272159302426131107263358632115523348569305640639146449244199958068597608945562110790131023262857595453802245804172696735705506890903449850846312454185157043442957461189941689826695568726597615347197906761701377260659622051158137685187463274169916590254921303345669614296523066433585795218139226766350366603851434219696646913403749297668402848252594749330545810177765046707444537625742498680222426946795057853940513122937738925320670098596567266869898329480175611316668858172700807761843450766600563496758797 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ef0f76c36a7ed381068c0f73ea4b0024f50ec88f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vaudois.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.vaudois.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018a1fc583aa000004030046304402203dc5b58e871920b4de3e66719e79882b7e5e40af463c1ca2ab5097cac33fa25f02206bc4e8353a7d273c9a43dd12da81af03f86972564958104a221356e3dc5e08210075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018a1fc583b90000040300463044022045c9cec39504ab77815ef76366e12e84b88f037d84e37af6c7e19601d433a3010220228ab48745c85de7bffcc0b0554879b85b653d9b6169eb4066cda8dc31fe983e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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