confluences.ch
Issued by R3
About this certificate
This digital certificate with serial number 04:25:65:7e:22:8b:cd:a9:0c:97:9d:c0:3c:a8:b5:d2:b9:be was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=confluences.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:25:65:7e:22:8b:cd:a9:0c:97:9d:c0:3c:a8:b5:d2:b9:beSerial Number (int): 361174498260772451534666589093580797819326
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: af:e5:19:69:3f:1e:b8:79:f8:ab:17:fa:f2:ab:81:84:fd:b9:95:98
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): db:1c:97:41:8f:37:b9:2e:f1:3f:46:f0:63:53:71:c1:3a:4b:e8:1b
Fingerprint (sha256): 9a:97:6d:9d:d5:6a:99:ad:3a:b0:aa:d9:9e:e4:fa:1e:a8:3e:73:c2:29:ad:9b:9a:74:a0:47:f8:55:c9:4c:d6
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate confluences.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for confluences.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
confluences.ch
www.confluences.ch
www.confluences.ch
Other certificates including the domain name confluences.ch
(limited to 100 certificates)
Certificate
The complete raw certificate details for confluences.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgISBCVlfiKLzakMl53APKi10rm+MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzAyMTIwMjA1MzNaFw0yMzA1MTMwMjA1MzJaMBkxFzAVBgNVBAMT DmNvbmZsdWVuY2VzLmNoMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA r9T3889SRPlHeilQuVSV8naQx+9revQTXJk0zE0dGDWSkLY88kh7W5X5FdBQVzwy p6F6TrpyGQ1S/eEe4Ud29pzqao4lh3LKQRNSte5nG/3puAv/v2RjYOldt5QMWf2s naMIY+SAJLCKlrrMjo5WJRdsUABUtKm83M1dbaXL9V1sRsoakRywfk8Y8QGo1EHp xIahrz/W6ntMwzWBsw99ZJhl18jFJBiVGC1qJTfW0IN+ipY0b1Ypfk21OFnYgzTg G2b0fAE5684iwp1aZBOcENM4YjTtaTdIGZxLPwb/qPFA2EqRhGMSXLEH3LjEOVlo wn/6wj+B5LG8dprzKlsnHQIDAQABo4ICXDCCAlgwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBSv5RlpPx64efirF/ryq4GE/bmVmDAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzAtBgNVHREEJjAkgg5jb25mbHVlbmNlcy5jaIISd3d3LmNvbmZsdWVuY2VzLmNo MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB 9ASB8QDvAHYAtz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGGQ5XC mwAABAMARzBFAiAsHE2FbuEhA+ycRZ8ZL6Q8sgDQ7QY2SODzobxk+7plBgIhAIrq uAzaGSN7ARDpl20Eoxf/RP4KTNCm3V9C2Yj2o1OkAHUAejKMVNi3LbYg6jjgUh7p hBZwMhOFTTvSK8E6V6NS61IAAAGGQ5XEngAABAMARjBEAiBM+yI6kujV0IrgLuew GsYbmgTm80VaiCIYmr8tJPpKLgIge2H64GChAYZ5/E66IV6emfUPeJS+4IvIRhFH Y3NB31cwDQYJKoZIhvcNAQELBQADggEBAGWYXYuPTC3h/JwKIVaJyEhDNV8TSzqU fwIs+8xoJ7wLWiJ2aA9UhCuQHk/pOrFbPtBxqA9ve2+hPeD/gEIgd5NINOv0xA1j J8O1X20ePmlSQ2DNU9/tsEN476wB6HUSecJz/vKQ6iIM6YtNZEUd0llPtwyZe5kA sfvAs/wMw1HnNneNNfK7sRFtBpf8Keu5XJFYloyQM1tEVllmOqHENnuuHtQd1+lU iPSpH6b8ZS6VMJr38dmzFEfYEcuLsvtM9vPyhlGOJfoMiZr1vQjyi2yb6vSpVdwy XvUktqqwfpEq2MjkFHuZexo2S0F7VE2aHSnqLfMmCb+rS6ZkCP3zHjE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr9T3889SRPlHeilQuVSV 8naQx+9revQTXJk0zE0dGDWSkLY88kh7W5X5FdBQVzwyp6F6TrpyGQ1S/eEe4Ud2 9pzqao4lh3LKQRNSte5nG/3puAv/v2RjYOldt5QMWf2snaMIY+SAJLCKlrrMjo5W JRdsUABUtKm83M1dbaXL9V1sRsoakRywfk8Y8QGo1EHpxIahrz/W6ntMwzWBsw99 ZJhl18jFJBiVGC1qJTfW0IN+ipY0b1Ypfk21OFnYgzTgG2b0fAE5684iwp1aZBOc ENM4YjTtaTdIGZxLPwb/qPFA2EqRhGMSXLEH3LjEOVlown/6wj+B5LG8dprzKlsn HQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 361174498260772451534666589093580797819326 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-12 02:05:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-13 02:05:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'confluences.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22196722082066271749847320123672467005651658060150492116065267135840107362883195930702786389119730764326759051513513321992715386726636886562529372447576626812185661577000812224843081640432567367261072733543617622891396557931604461755605277985188970203342345672445330321602185591441462279761939419907163996807326357361938632270804651547168103128566864895383968038476218933245185151402064911598264638823582179606416778445672682114543854303272682973470625257378076066023950889493706699871718927913481194500699893940487750975438971328836591879654417914306346496996300797572455704848377356449974905927846139384692834248477 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) afe519693f1eb879f8ab17faf2ab8184fdb99598 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'confluences.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.confluences.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb499000001864395c29b000004030047304502202c1c4d856ee12103ec9c459f192fa43cb200d0ed063648e0f3a1bc64fbba65060221008aeab80cda19237b0110e9976d04a317ff44fe0a4cd0a6dd5f42d988f6a353a40075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb52000001864395c49e000004030046304402204cfb223a92e8d5d08ae02ee7b01ac61b9a04e6f3455a8822189abf2d24fa4a2e02207b61fae060a1018679fc4eba215e9e99f50f7894bee08bc8461147637341df57 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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