www.beatrice-stucki.ch
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:a9:06:c6:ee:1a:b7:ee:9e:79:b1:dc:91:2a:9f:b9:0f:3a was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.beatrice-stucki.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:a9:06:c6:ee:1a:b7:ee:9e:79:b1:dc:91:2a:9f:b9:0f:3aSerial Number (int): 405965872008762628426903363257507151155002
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e8:de:92:97:13:5d:c6:03:0d:a3:75:81:f4:86:c2:69:f0:2b:a9:65
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 93:6d:f3:5a:d0:a3:b0:4f:4a:df:95:4e:47:2f:70:27:b5:21:95:b3
Fingerprint (sha256): c8:4f:2b:f2:6a:8c:d7:20:50:44:97:5f:8d:e1:d6:a8:42:7f:46:2c:01:29:1f:84:e7:80:e4:15:0c:85:4b:e6
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.beatrice-stucki.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.beatrice-stucki.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.beatrice-stucki.ch
Other certificates including the domain name beatrice-stucki.ch
(limited to 100 certificates)
beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
beatrice-stucki.ch
www.beatrice-stucki.ch
Certificate
The complete raw certificate details for www.beatrice-stucki.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISBKkGxu4at+6eebHckSqfuQ86MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODAzMTIwNzM0MjVaFw0x ODA2MTAwNzM0MjVaMCExHzAdBgNVBAMTFnd3dy5iZWF0cmljZS1zdHVja2kuY2gw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRUk5iYH4hmNLNjKieqN1W ahJRIvxU1Q5gSQ+pU+GRzwRvQqPoSZgdz3mWJJduw6cnkRbw5LbWRiZiOsSTrXD2 B/fszrTC8kZUDaXpgZ/dTgigcI2msEobE2P1vIQ0oN6kQ4zfa+dcCo/9w29ax4Zh 4NSlrpzYaP5DExOOhZu+yKEqb8+cfeYeZ4Mdh7yDcNAG5ZCwU41j49EhEOj456zk vTFsR7tTuPuqWRB2Imbp4lX801jjrvPvEusH92QdNkGznUthlmJh1Pz6xcgbRo0G HexU+BxbnWkrQg0cPLdUNuYeBYTVFDNx1y4ve+GC543e/g8CbCAX3tK5feOCNeA5 AgMBAAGjggIWMIICEjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFOjekpcTXcYDDaN1 gfSGwmnwK6llMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsG AQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNl bmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNl bmNyeXB0Lm9yZy8wIQYDVR0RBBowGIIWd3d3LmJlYXRyaWNlLXN0dWNraS5jaDCB /gYDVR0gBIH2MIHzMAgGBmeBDAECATCB5gYLKwYBBAGC3xMBAQEwgdYwJgYIKwYB BQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIGrBggrBgEFBQcCAjCB ngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5IG9ubHkgYmUgcmVsaWVkIHVwb24gYnkg UmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5IGluIGFjY29yZGFuY2Ugd2l0aCB0aGUg Q2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0dHBzOi8vbGV0c2VuY3J5cHQu b3JnL3JlcG9zaXRvcnkvMA0GCSqGSIb3DQEBCwUAA4IBAQCYppMK/IXTPxJEHzl0 M9LIG1Mxra75hyoo6C9vdQsrqvK4yBFwAKB6WnLCgBl1MUES4LgImZ9DFKUeojQq lLRTtlIKmAvUilEiYUoYj/Nqv2oHBjtWrAVT0UML0En2lhHWCQQKN/n27+XnATwB Si4rzucCoVqkYwGaxnhNqZ8E/8TaprHf3y0WxgeUWGzfRHD1kA7/63SssBXIcrTm Zj0lHOniZ68B1asJmmDAleG86XVwmcClnd8CNVD4avdUrH4VzCLh9m4MvvaJ5rhb F86pwB57HFd0UmTwE5GNYpdyZnptQk9v0AX8lV20lba2t1+NObmkVblJwqVDTFl0 Ttkp -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0VJOYmB+IZjSzYyonqjd VmoSUSL8VNUOYEkPqVPhkc8Eb0Kj6EmYHc95liSXbsOnJ5EW8OS21kYmYjrEk61w 9gf37M60wvJGVA2l6YGf3U4IoHCNprBKGxNj9byENKDepEOM32vnXAqP/cNvWseG YeDUpa6c2Gj+QxMTjoWbvsihKm/PnH3mHmeDHYe8g3DQBuWQsFONY+PRIRDo+Oes 5L0xbEe7U7j7qlkQdiJm6eJV/NNY467z7xLrB/dkHTZBs51LYZZiYdT8+sXIG0aN Bh3sVPgcW51pK0INHDy3VDbmHgWE1RQzcdcuL3vhgueN3v4PAmwgF97SuX3jgjXg OQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 405965872008762628426903363257507151155002 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-12 07:34:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-10 07:34:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.beatrice-stucki.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26424392432198006625212393879972067453616373493562958493297839200306450095625505092432449909956945391533287751346645341976827323161311443962520034438908241621906313907943646865425513891516030727769091810507805929795736946283994190056157046364541551333331947255785088938569423914319711805313219089874822492661415826570602814103564367526064156498136306087766189693522450577392299506313104890125918428115313058184765595809908277728952562751428107387501140912875299263710379994750201540620148759911067532791071446001229834832108300086860483878805955269144043606654783326821904990620698664136671089285906485725243968446521 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e8de9297135dc6030da37581f486c269f02ba965 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.beatrice-stucki.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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