hoegg.ch
Issued by R3
About this certificate
This digital certificate with serial number 03:13:ae:85:d0:4a:cc:83:fe:d4:d4:90:08:40:42:2b:61:94 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hoegg.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:13:ae:85:d0:4a:cc:83:fe:d4:d4:90:08:40:42:2b:61:94Serial Number (int): 268034203238194707339931719250615487652244
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 1c:e7:d5:b1:80:87:76:8a:1d:b6:88:36:31:f6:81:b9:2d:9e:27:36
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 36:57:9a:97:da:85:3a:fb:2d:89:b3:42:9f:5d:2e:03:66:39:f9:16
Fingerprint (sha256): b8:28:cd:ef:a8:53:ae:24:96:7e:37:86:d9:2b:aa:1f:4d:75:89:5d:37:60:de:27:28:b4:a2:9f:8d:25:7c:3d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate hoegg.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hoegg.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hoegg.ch
Other certificates including the domain name hoegg.ch
(limited to 100 certificates)
abacus.hoegg.ch
ssl.hoegg.ch
ssl.hoegg.ch
ssl.hoegg.ch
remotedesktop.hoegg.ch
hoegg.ch
www.hoegg.ch
hoegg.ch
hoegg.ch
www.hoegg.ch
hoegg.ch
remotedesktop.hoegg.ch
hoegg.ch
hoegg.ch
remotedesktop.hoegg.ch
hoegg.ch
www.hoegg.ch
hoegg.ch
www.hoegg.ch
ssl.hoegg.ch
ssl.hoegg.ch
hoegg.ch
remotedesktop.hoegg.ch
abacus.hoegg.ch
*.hoegg.ch
hoegg.ch
ssl.hoegg.ch
ssl.hoegg.ch
remotedesktop.hoegg.ch
hoegg.ch
hoegg.ch
hoegg.ch
ssl.hoegg.ch
ssl.hoegg.ch
ssl.hoegg.ch
remotedesktop.hoegg.ch
hoegg.ch
www.hoegg.ch
hoegg.ch
hoegg.ch
www.hoegg.ch
hoegg.ch
remotedesktop.hoegg.ch
hoegg.ch
hoegg.ch
remotedesktop.hoegg.ch
hoegg.ch
www.hoegg.ch
hoegg.ch
www.hoegg.ch
ssl.hoegg.ch
ssl.hoegg.ch
hoegg.ch
remotedesktop.hoegg.ch
abacus.hoegg.ch
*.hoegg.ch
hoegg.ch
ssl.hoegg.ch
ssl.hoegg.ch
remotedesktop.hoegg.ch
hoegg.ch
hoegg.ch
hoegg.ch
Certificate
The complete raw certificate details for hoegg.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAxOuhdBKzIP+1NSQCEBCK2GUMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzAxMDIxNzAwMDlaFw0yMzA0MDIxNzAwMDhaMBMxETAPBgNVBAMT CGhvZWdnLmNoMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0pq22692 sg0FVMm1wzHg0q6GDjn93WT/COA/vfuZdeZ0dKD3dZML1ygwEhpcQ4Rs0TzpNRqC HwqenW7PgYUopP5GoEQg7qLZibkro4b1OI6tO18IFW8MRK9J8LblR0/5f/6PY083 IWCbX5jfZmw0UxlHLZzIXd7KPl37E78jfK8SGGB4+0tVuoxlTZXW2z/Ms7oqNmTP zAeLkMT59NljNP4QHM+oOXTKWq3Y4Nf4h/Y/nvAkWQZp/PposRDtnN9PxaAfHnlk Wr1+g3HwNIAXs5dDF12/z/p1XoQWL8IR9cAgD9+93o7srgTzbmrfbJAeYoCOFNVC AWf6FfsYLGmbtwIDAQABo4ICRDCCAkAwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQc 59WxgId2ih22iDYx9oG5LZ4nNjAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+d ixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxl bmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzATBgNV HREEDDAKgghob2VnZy5jaDBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLf EwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCC AQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2AHoyjFTYty22IOo44FIe6YQWcDIThU07 0ivBOlejUutSAAABhXOkD6kAAAQDAEcwRQIgKt4sWB3nM0Av/CWuUA6kr12ykoA1 frwdxx7X/vFPzbYCIQCQbLg18uA9MHgFY0+3CkVdorZOb288LuYhmf4vGmSqOQB3 AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABhXOkETwAAAQDAEgw RgIhANt67E9PHkrUm0UnAGPqeMVR68sEn7NanlQE8OMeEJ9zAiEAyIGpbRxQFOLS VX5ntKRcRg0WseR+s2mUO9nG29rYUsgwDQYJKoZIhvcNAQELBQADggEBAJlIZZ1y sAxDkuz4tFzodWW7TzB2dDQ3T1R+1rrOr7MMle0xnmE8qbXD+C+gV8O1TsY0ufOr ZqzaZkVqeBxhU/vwwU/8YxGHl+LINv4pnC+PncrvCa+6nn7ObeTwl2G13maNAuc/ OFdTrpVCLR6nUOrESUOO062G+dhWc2d1lRCAjBixDFN75yt7syu0TFElV32qmDC8 hCmPYbYX+I4LRK+uDlD7yxBIBZdfTwh4mWzmMFMOXg7vtKLHbWfsa71Nf4XF+C97 lnjuyhzcGj8o7ziYP2DBEwZQfmGBgKBzAgGvm/DphAamY3RP5riizaPOAU8rZhj6 nuc004rYuT2thQo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0pq22692sg0FVMm1wzHg 0q6GDjn93WT/COA/vfuZdeZ0dKD3dZML1ygwEhpcQ4Rs0TzpNRqCHwqenW7PgYUo pP5GoEQg7qLZibkro4b1OI6tO18IFW8MRK9J8LblR0/5f/6PY083IWCbX5jfZmw0 UxlHLZzIXd7KPl37E78jfK8SGGB4+0tVuoxlTZXW2z/Ms7oqNmTPzAeLkMT59Nlj NP4QHM+oOXTKWq3Y4Nf4h/Y/nvAkWQZp/PposRDtnN9PxaAfHnlkWr1+g3HwNIAX s5dDF12/z/p1XoQWL8IR9cAgD9+93o7srgTzbmrfbJAeYoCOFNVCAWf6FfsYLGmb twIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 268034203238194707339931719250615487652244 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-02 17:00:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-02 17:00:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hoegg.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26586336502549380106963771799886925887507647150859329374800926345619802274835668279430929808512805213090905988210299860367278322865452010960363696819118214876000620137403530695829463739212210755073241683392669057183636906696391090837693983959278946815978319380989496480677002290555042053905350865500926502722950587183187084100184867842143415447582435853543393711782942721513054727512007379252955657349193515295702096661987449713988227325614485340191344105854788601017736947305099192824804926215341986177122347950650884651468746873630953618472208689396669913358811513215052641649354340737455443702528675149850486610871 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1ce7d5b18087768a1db6883631f681b92d9e2736 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hoegg.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018573a40fa9000004030047304502202ade2c581de733402ffc25ae500ea4af5db29280357ebc1dc71ed7fef14fcdb6022100906cb835f2e03d307805634fb70a455da2b64e6f6f3c2ee62199fe2f1a64aa39007700e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018573a4113c0000040300483046022100db7aec4f4f1e4ad49b45270063ea78c551ebcb049fb35a9e5404f0e31e109f73022100c881a96d1c5014e2d2557e67b4a45c460d16b1e47eb369943bd9c6dbdad852c8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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