immokiss.ch

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:84:8f:9d:d0:92:cb:a5:4f:a8:33:3d:df:43:1d:a6:dc:24 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=immokiss.ch

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:84:8f:9d:d0:92:cb:a5:4f:a8:33:3d:df:43:1d:a6:dc:24
Serial Number (int): 306445029253220184647353778822419851959332
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 8c:29:0e:7b:81:f1:a2:34:28:92:60:3c:a3:f9:f9:9e:09:ed:95:47
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 12:68:f2:b5:e9:60:18:05:ee:3b:f2:af:b2:a8:6b:12:89:97:4a:57
Fingerprint (sha256): 89:cf:e3:8b:6f:e7:1f:22:90:6d:38:33:e4:ec:b7:c4:41:74:da:41:2d:9b:2a:b8:92:8d:cb:10:6d:fd:75:f8

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org/

Check the revocation status for certificate immokiss.ch

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for immokiss.ch

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

immokiss.ch

Other certificates including the domain name immokiss.ch

(limited to 100 certificates)
immokiss.ch
immokiss.ch
immokiss.ch
www.immokiss.ch
immokiss.ch
immokiss.ch
app.immokiss.ch
app.immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
www.immokiss.ch
app.immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
www.immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
app.immokiss.ch
app.immokiss.ch
immokiss.ch
app.immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
app.immokiss.ch
immokiss.ch
app.immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
www.immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
app.immokiss.ch
immokiss.ch
www.immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
app.immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
www.immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
app.immokiss.ch
immokiss.ch
immokiss.ch
app.immokiss.ch
immokiss.ch
immokiss.ch
app.immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
immokiss.ch
app.immokiss.ch

Certificate

The complete raw certificate details for immokiss.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 306445029253220184647353778822419851959332
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-01 01:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-03-01 01:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'immokiss.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 864461704185189436249625402058690676705004817107461181318644268010362943209176086490846966026501292901774329154871497282453685721866546465692452324644936802693452173105898614693702597618854819883765102843506552804060206358041232615050240943138961338419154871961074811568417190159621689121063316698134277983897934144973844340803208350459209296676296521340132105789297062663064394746657134833300529252104573548281478931360034205044792667653828940537421798000185913955256349654329495641019076488912348707076153017012646786108817003039808293960451205571449953665435593204414304774303867741620902090362878018548005675093786404416949570743477129882884589151031471340619365600602284398894677379107690234654023571235320239936396265882694951361996046018502470639901065535490891231608022792811659826546859115612453289717854516074408500166736300975659193743677996182247329498006715487942802589392939472717494578883200128242733173936626745686009594444415396895133734254974856811039505397705135575774422928604394924155357995957307877252657166934917438140704644433765307121885352792529525374191839664501948866411662604679236359025705030984343058485606338096559128300195381914251098755244606977635056337399778784877724578080907718969089016728458631
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							8c290e7b81f1a2342892603ca3f9f99e09ed9547
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'immokiss.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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