notanumber.ch
Issued by R3
About this certificate
This digital certificate with serial number 04:49:48:72:d5:14:78:0d:7c:38:09:a4:fa:dd:96:37:4c:13 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=notanumber.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:49:48:72:d5:14:78:0d:7c:38:09:a4:fa:dd:96:37:4c:13Serial Number (int): 373386057171582844664433130888668969913363
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: f0:94:bd:fe:fe:3f:65:22:0b:b6:f1:cb:7f:40:c8:41:62:61:03:f2
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 0e:b4:ce:1c:91:96:a0:f1:01:40:fc:db:2f:7f:90:7c:63:d5:b6:59
Fingerprint (sha256): c8:4a:c5:49:f4:fc:6e:0b:fd:27:b5:24:64:dd:64:c1:f0:b2:8d:44:d6:78:0d:62:cd:1d:f8:85:cc:bb:14:47
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate notanumber.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for notanumber.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
notanumber.ch
www.notanumber.ch
www.notanumber.ch
Other certificates including the domain name notanumber.ch
(limited to 100 certificates)
impressia.hu
*.notanumber.ch
www.missiondmatuf.com
bucket-combine-test.bce.dev
*.notanumber.ch
*.notanumber.ch
*.notanumber.ch
notanumber.ch
*.notanumber.ch
shahnatapp.com
www.grupogla.com
*.notanumber.ch
notanumber.ch
*.notanumber.ch
www.johannahaerens.be
*.notanumber.ch
*.notanumber.ch
*.notanumber.ch
www.awsbootstrap.io
freddywerx.com
*.notanumber.ch
platpro.com
*.notanumber.ch
auth.google.propagadordapalavra.com
notanumber.ch
tagpad.matsuchiyo.com
mernaadmin.estore.business
download.digitalshowroom.app
m-asyncinterviewinternal.ur-nl.com
*.notanumber.ch
*.notanumber.ch
www.missiondmatuf.com
bucket-combine-test.bce.dev
*.notanumber.ch
*.notanumber.ch
*.notanumber.ch
notanumber.ch
*.notanumber.ch
shahnatapp.com
www.grupogla.com
*.notanumber.ch
notanumber.ch
*.notanumber.ch
www.johannahaerens.be
*.notanumber.ch
*.notanumber.ch
*.notanumber.ch
www.awsbootstrap.io
freddywerx.com
*.notanumber.ch
platpro.com
*.notanumber.ch
auth.google.propagadordapalavra.com
notanumber.ch
tagpad.matsuchiyo.com
mernaadmin.estore.business
download.digitalshowroom.app
m-asyncinterviewinternal.ur-nl.com
*.notanumber.ch
Certificate
The complete raw certificate details for notanumber.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgISBElIctUUeA18OAmk+t2WN0wTMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMTcwMzUzMzRaFw0yNDAzMTYwMzUzMzNaMBgxFjAUBgNVBAMT DW5vdGFudW1iZXIuY2gwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC7 LYSP5dgzZtb3HsQMdo62O9XkCHDUlYrzPZ8orwiHxC8HW7kyvUnULpGuzRTZEQ0n trx77REuOD1IqA3qiU/5gig8KyE+jajvcef0EXhsSUl8D5eEJduH6S7d29U+cLn3 nm/ssswz1JQKwciYEWWHCI98OIe7UvHOqU8i+43+5TrfHR7Zc5764gsAmes+vtWK WofjSjrPyPaicJdD2n6MNITB6Xmi4NBHuGbfymvYK1r/D+XrJMw6ThO/1eI9tCBM 7vyQ+mjog7SzYlDwYd+JLRTvZfch7AgvxmIyyB3SFWCboQZxv4wtf3+fGOTgVXbL O1RGoU1ay6OA+he8pW/ns6thaAeWZC6pH2SVF3le7FcCzkzGamH3BlAgK36G5mYy 0yQ0+1jvJ1PJpAZPEm91Xg/FsIouJlRCKPuq/KY9xigkmUT5CtfSpL3FA94IBr2K f6qs8bKh2lGUpBaMiiBhOtCEqOGnbqwYr3Wmx2QM6WB5DNlKGDX90sJ8nv8vp3Uw 3sJHNa7LH/cc9g/B2y/3wL+aSoSOTpDKXOfJkah/cLXUlPHz7OiSwVBKweh7UT/z YEPYAQlyjGtKntbXJpiEpzabpGRKhtyI+fKKIRf85gk435BdiTpLCuU+2WwyI+w7 w54uuQ4grAePumTgUV5LWLyHXdI60o03BCqZWwjZlwIDAQABo4ICITCCAh0wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNV HRMBAf8EAjAAMB0GA1UdDgQWBBTwlL3+/j9lIgu28ct/QMhBYmED8jAfBgNVHSME GDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYB BQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDov L3IzLmkubGVuY3Iub3JnLzArBgNVHREEJDAigg1ub3RhbnVtYmVyLmNoghF3d3cu bm90YW51bWJlci5jaDATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkC BAIEgfQEgfEA7wB2AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfYAAAB jHYfVZkAAAQDAEcwRQIgNzqrbnB131l0Kl2CJ0shdPT5Ssq33WANuxpRVlnHmrUC IQDZjp8cNTqDsM/0xIO/2M9C0CcEJhGBUEeHp366a1u1wwB1AEiw42vapkc0D+Vq AvqdMOscUgHLVt0sgdm7v6s52IRzAAABjHYfV4sAAAQDAEYwRAIgMrDfv6A0rfFe CniVNj9TnvGlAi0X/og/AFA/i3aZ118CIFolsW+FqICHBdHjkHIBfrIrP/ribVbO ZI7ZnqGopSpbMA0GCSqGSIb3DQEBCwUAA4IBAQBbm3wZDVcHiW2bg1++K8XiCGwx HWfq4mbfNLhZ5cG8pFO2uygTpO4X2eF8X8dV+WkzQ5NM1N98rEYeISkoHZxrY1sC 6iXV8SYOCdDXWLOyh+SG/zzjSxBzgGmRS5c8DXYn2TXZ3lqS0L83+tVjHBAtuLgD tsmg8t04g0j3d18nDZ3j+ypvZ7RydkYDhujZ8eYuP9qpqCCgyctMGvMou48CjAMV dZE09nqU7lSC0kVMqpcBloT7SqELXrreXaSgcHClQIDp0vOgaD6lXXqmEr5CmHIL nE5dB1qvgLADFjkLIT+WTShjKSgay7+VjwCDSYSjdMbIsjsqbnFlE3+qYnzb -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuy2Ej+XYM2bW9x7EDHaO tjvV5Ahw1JWK8z2fKK8Ih8QvB1u5Mr1J1C6Rrs0U2RENJ7a8e+0RLjg9SKgN6olP +YIoPCshPo2o73Hn9BF4bElJfA+XhCXbh+ku3dvVPnC5955v7LLMM9SUCsHImBFl hwiPfDiHu1LxzqlPIvuN/uU63x0e2XOe+uILAJnrPr7VilqH40o6z8j2onCXQ9p+ jDSEwel5ouDQR7hm38pr2Cta/w/l6yTMOk4Tv9XiPbQgTO78kPpo6IO0s2JQ8GHf iS0U72X3IewIL8ZiMsgd0hVgm6EGcb+MLX9/nxjk4FV2yztURqFNWsujgPoXvKVv 57OrYWgHlmQuqR9klRd5XuxXAs5Mxmph9wZQICt+huZmMtMkNPtY7ydTyaQGTxJv dV4PxbCKLiZUQij7qvymPcYoJJlE+QrX0qS9xQPeCAa9in+qrPGyodpRlKQWjIog YTrQhKjhp26sGK91psdkDOlgeQzZShg1/dLCfJ7/L6d1MN7CRzWuyx/3HPYPwdsv 98C/mkqEjk6QylznyZGof3C11JTx8+zoksFQSsHoe1E/82BD2AEJcoxrSp7W1yaY hKc2m6RkSobciPnyiiEX/OYJON+QXYk6SwrlPtlsMiPsO8OeLrkOIKwHj7pk4FFe S1i8h13SOtKNNwQqmVsI2ZcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 373386057171582844664433130888668969913363 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-17 03:53:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-16 03:53:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'notanumber.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 763618817701150614031675641029035948856800244125596715646692109249005151161728664424711816015966880183400771380234358083999962854087293607121721770130785540407964657309663292000268628109410350422463054322659975785006046058408944003580639019063955567696302233764585133073480050072741034901088522016267015632055538265527601953402881497994591626812858960768311235165873666603595843256039752817124580271449760717866195350237064512815731640769028830432167414362653028490909942207771070761650076142112762507083931950413354068412562591585833828829666204163922713361585716644921914703696932399392128081418882548973111559915599648221034234865834725432195825049099313422459149930563554998890633757946818779187651231040816117556508433754559724788511707693676600941438906649824961913849479914483307952095148609095090829499963722341372165533201745845959717891239933884377465537246723874082255440704674450631614291500826788628291142392141916440470057370860295478366778899146045551574691963908273725112541123435512207248333329709390162986250339601220709259006190392418885910740052354418036218148984185477856588972358333385001481483984991166480181633258781639740134988195861663862825577280243693274545261174440532157212970316916552394459413079447959 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f094bdfefe3f65220bb6f1cb7f40c841626103f2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'notanumber.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.notanumber.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018c761f559900000403004730450220373aab6e7075df59742a5d82274b2174f4f94acab7dd600dbb1a515659c79ab5022100d98e9f1c353a83b0cff4c483bfd8cf42d02704261181504787a77eba6b5bb5c300750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c761f578b0000040300463044022032b0dfbfa034adf15e0a7895363f539ef1a5022d17fe883f00503f8b7699d75f02205a25b16f85a8808705d1e39072017eb22b3ffae26d56ce648ed99ea1a8a52a5b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 005b9b7c190d5707896d9b835fbe2bc5e2086c311d67eae266df34b859e5c1bca453b6bb2813a4ee17d9e17c5fc755f9693343934cd4df7cac461e2129281d9c6b635b02ea25d5f1260e09d0d758b3b287e486ff3ce34b10738069914b973c0d7627d935d9de5a92d0bf37fad5631c102db8b803b6c9a0f2dd388348f7775f270d9de3fb2a6f67b47276460386e8d9f1e62e3fdaa9a820a0c9cb4c1af328bb8f028c0315759134f67a94ee5482d2454caa97019684fb4aa10b5ebade5da4a07070a54080e9d2f3a0683ea55d7aa612be4298720b9c4e5d075aaf80b00316390b213f964d286329281acbbf958f00834984a374c6c8b23b2a6e7165137faa627cdb