vaudois.ch

Issued by R3

About this certificate

This digital certificate with serial number 04:c7:22:f9:db:12:8c:b0:c4:99:3c:ec:4f:9c:2d:f9:ab:2d was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=vaudois.ch

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:c7:22:f9:db:12:8c:b0:c4:99:3c:ec:4f:9c:2d:f9:ab:2d
Serial Number (int): 416211825821399554853167772285173078010669
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: ef:0f:76:c3:6a:7e:d3:81:06:8c:0f:73:ea:4b:00:24:f5:0e:c8:8f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 40:61:ed:20:75:fa:9c:31:1d:c8:75:81:1b:2a:df:d2:f0:22:7a:37
Fingerprint (sha256): 80:d8:fc:8a:00:16:56:79:e3:20:ad:2a:5e:bd:85:52:48:e2:43:7d:c9:c8:fa:51:5d:25:e1:f9:0d:ff:8c:16

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate vaudois.ch

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for vaudois.ch

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

vaudois.ch
www.vaudois.ch

Other certificates including the domain name vaudois.ch

(limited to 100 certificates)
vaudois.ch
vaudois.ch
vaudois.ch
www.vaudois.ch
vaudois.ch
vaudois.ch
vaudois.ch
vaudois.ch
vaudois.ch
vaudois.ch
vaudois.ch
vaudois.ch
vaudois.ch
vaudois.ch

Certificate

The complete raw certificate details for vaudois.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 416211825821399554853167772285173078010669
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-22 23:22:32 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-20 23:22:31 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vaudois.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 586255545470636492874737786683518859183497104266799121520172302793632704031954597867901343598996055422231317895000613907018355894252142951090533846286220469371925402450763678860946920178111234666259531841262981742900557252258240104436695928299307490044374283187098151562829419545392149915396375146252827071977721479643615516366439417189086771181467874334560655712183910259843153569736068009112470274088497969788657379230912623166267096301848535501844417787174824689032569240445885439876648761476318957190846878051622996418465032693710212869239883788694958337202315020775368429746734079216953734969067016641409995583732101697027919886606717254674791702456595740139780344211358826588222516293850161152945299112055784179336458486272159302426131107263358632115523348569305640639146449244199958068597608945562110790131023262857595453802245804172696735705506890903449850846312454185157043442957461189941689826695568726597615347197906761701377260659622051158137685187463274169916590254921303345669614296523066433585795218139226766350366603851434219696646913403749297668402848252594749330545810177765046707444537625742498680222426946795057853940513122937738925320670098596567266869898329480175611316668858172700807761843450766600563496758797
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ef0f76c36a7ed381068c0f73ea4b0024f50ec88f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vaudois.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.vaudois.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee007500b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018a1fc583aa000004030046304402203dc5b58e871920b4de3e66719e79882b7e5e40af463c1ca2ab5097cac33fa25f02206bc4e8353a7d273c9a43dd12da81af03f86972564958104a221356e3dc5e08210075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018a1fc583b90000040300463044022045c9cec39504ab77815ef76366e12e84b88f037d84e37af6c7e19601d433a3010220228ab48745c85de7bffcc0b0554879b85b653d9b6169eb4066cda8dc31fe983e
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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