DV SSL/TLS Certificate for urgarten.ch

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the urgarten.ch DV SSL/TLS Certificate

This certificate with serial number 05:7c:a5:fe:47:47:fa:59:27:50:2d:9e:69:9f:f2:1c:d2:62 for urgarten.ch was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for urgarten.ch provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:7c:a5:fe:47:47:fa:59:27:50:2d:9e:69:9f:f2:1c:d2:62
Serial Number (int): 477977086065457942098110693322517290734178
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 61:79:70:42:11:72:60:45:2c:4d:d5:ba:fe:c9:25:51:5e:0a:ca:19
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): aa:42:ef:52:bb:49:aa:ef:0d:93:10:6b:d3:26:c6:91:ba:b5:45:85
Fingerprint (SHA-256): 5e:d9:7f:86:c6:c2:bd:f1:e3:89:bf:e4:2c:61:f5:20:54:47:b3:a6:ca:9e:01:7b:1c:62:a2:eb:b9:73:25:c1

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/99.crl

Check the revocation status for certificate urgarten.ch
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for urgarten.ch

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for urgarten.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsS/6OxPF/+Mhut/YGyDR
kKq/w9qpfWDZzS7ypDSnd+FB0RZ3CKZQ92RTtJtlAlYuRvx5smIsDs99Th7CWGNT
j5f5IfXcv4CHRlkiBcy0HSvB2VSRcFy7XkazFsyPn4mcMrEV+DcijIwcEqJNzoNd
ZigUyxOkC2WvkBOP9WLTsketS81nODnKcE9ZX8bVRm8SXvgu6xfvanbFilFmi+bp
9/pL7WIPTDXNv74gmIKCouW0qJHymIp4VjRqsqXIxAwvzDli/DtXhD6xzK6LvMLj
s85HkLuRsuwd8xpWhfpGKfciFXuXf+cyfpJNJHhmZw0SAJo/6xZWWvWiIZHB7b0D
pQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 477977086065457942098110693322517290734178
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-27 18:32:31 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-25 18:32:30 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'urgarten.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22367838548231663481162012054587831933328365731739935973507154572393060379904327471097886715864236682254407476461506600558983677290802898756294276490614901057376196462727411681680969353207068438081443281116210382440328280901272760385680127042167820906510582095713259363921210447035814201095255071725452190233221685363946565164225870088155090882617695638283853194258765743207843654924111979148466994046464732318416435206696822296591581472417116069576543221791846075784642735270316485715805671091661177135994205417966133295933932001161675233022265050434722103317315098075664920122874483257772115159977251454081426064293
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							61797042117260452c4dd5bafec925515e0aca19
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'urgarten.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.urgarten.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/99.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db000000197133a0f730000040300473045022100c4195800c3d323e9c95c6ba4f02671dcefbb4f72fb7d26e874874eaa869f925b02201ed3cbee07f8aaf53472352a72ad2a743b8ba07804c5607280fad3e8c6602ece007600a442c506496061548f0fd4ea9cfb7a2d26454d87a97f2fdf4559f6274f3a845400000197133a17380000040300473045022045e492f07a57eb5c1059bdea844cdd8b905b2918793ab811981b8476bcc04933022100a6b75f5fdde03ede20cef648dd269baf682f50e5931dfa579448e92bca2fca52
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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