immerland.ch
Issued by R3
About this certificate
This digital certificate with serial number 04:ed:1a:85:8a:d9:db:4e:78:a6:cf:68:9f:70:2b:20:6a:d1 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=immerland.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:ed:1a:85:8a:d9:db:4e:78:a6:cf:68:9f:70:2b:20:6a:d1Serial Number (int): 429131318006908904024737240615945607604945
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e1:c0:ed:14:2d:7b:e4:3d:98:2e:15:4d:a3:5e:0d:ad:c8:08:c2:61
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 14:0a:04:b2:a3:bb:19:76:79:0e:92:c0:ae:c7:25:35:ae:1b:c4:63
Fingerprint (sha256): d0:f6:d9:7d:c9:fb:3d:c4:53:9e:f2:4f:17:89:cf:09:79:0b:57:d7:3c:46:a5:f7:4a:1f:86:1b:c4:dd:7f:6d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate immerland.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for immerland.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
immerland.ch
www.immerland.ch
www.immerland.ch
Other certificates including the domain name immerland.ch
(limited to 100 certificates)
www.magarcia.io
www.euphrat.com
www.immerland.ch
monchisworld.net
infinitoff.acordar.app
ec-arquitectos.com.mx
buddywritings.com
dynamic.wheeli.us
yardsale.appsbarn.com
www.megh.tk
immerland.ch
client10.marxsmith.com
clus20-staging.mapbuilder.io
n.immerland.ch
grubity.app
amaisbelezaesaude.com.br
studio.automatique.ai
immerland.ch
immerland.ch
www.buildonvolkswagen.com
blog.s-d-s.co.uk
croissant-project.tk
immerland.ch
www.socks.gifts
immerland.ch
www.enviro.ai
borrow.credibilitycapital.io
staging.acons.vn
immerland.ch
www.euphrat.com
www.immerland.ch
monchisworld.net
infinitoff.acordar.app
ec-arquitectos.com.mx
buddywritings.com
dynamic.wheeli.us
yardsale.appsbarn.com
www.megh.tk
immerland.ch
client10.marxsmith.com
clus20-staging.mapbuilder.io
n.immerland.ch
grubity.app
amaisbelezaesaude.com.br
studio.automatique.ai
immerland.ch
immerland.ch
www.buildonvolkswagen.com
blog.s-d-s.co.uk
croissant-project.tk
immerland.ch
www.socks.gifts
immerland.ch
www.enviro.ai
borrow.credibilitycapital.io
staging.acons.vn
immerland.ch
Certificate
The complete raw certificate details for immerland.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgISBO0ahYrZ2054ps9on3ArIGrRMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMTcxMzM3NTdaFw0yNDAyMTUxMzM3NTZaMBcxFTATBgNVBAMT DGltbWVybGFuZC5jaDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMHw I6PNoeIvRwrVrZfD1fGCK90HkpjXMMU9s97S9uv0kGhTr8LsVpBfr7ck6YJWOZTP M58X4ehnxD6jlcTGlzwpQs6fhWrdXJB17W542oo3YetklBzx9mImBCWkOEoMZeYv N/t/tChYh6Ga6d08Vp72pZqRsbhv/i8RIx5tMSqhNMT13zB3Uekm0Xgc6aHS9wNP 81D1iy6vipuHNZWWEaD/rpXzJlemclz0yoet4L1IXZnRvBEYjka9Xi6C52j4vGiD mGO8RBBr7h/Lvba2NvKSrifdFolRPJuAgCGi+qP2/C9Jhe2ew2FmTstWrTFx9p/D 8ZoQEu0VO0jQTwdRgoM0hla2+yFbVaOiVgSOQGwmKQhpLLPAZ79kKVs6J6zOXkBy EaFJuHH1Skqew/KymqY6VEbyP2rpGY4hsTuYYO6pSPTv9eWsz8fB1l/ESB2Nv6Ja p1mprOUYH7YWoyqp8MBhs4VE2uBSH7S0/bF29WfMVC66qEu1J5jS7SMixbaQjnVp t0JUVSaBrZ9gHZe9agkWtyVoAZHan6e9yJ0/+V5gXS3JS2pXIxQl968yWazfJ0ge P9d8JH8oGLRRJqJS/mj5aZpRwCLkFekVLMOJ2MdkHMksIxfWMRZSE+Ijzhu6Ebkh rS5nN+reKTHCiH1ZnYQ6J0KJ64D+g9Onw39LYWKrAgMBAAGjggIgMIICHDAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFOHA7RQte+Q9mC4VTaNeDa3ICMJhMB8GA1UdIwQY MBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEF BQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8v cjMuaS5sZW5jci5vcmcvMCkGA1UdEQQiMCCCDGltbWVybGFuZC5jaIIQd3d3Lmlt bWVybGFuZC5jaDATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIE gfUEgfIA8AB1ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi923 lR8AAAQDAEYwRAIgF0GVCUTxaFrO6Npcyl8BKRy3SrJaeW2RGz8XdnBYJgsCIH+y mEXYv60t9FPWJx3GOjVHBOTdlqiByQmkY0LZOUDqAHcAdv+IPwq2+5VRwmHM9Ye6 NLSkzbsp3GhCCp/mZ0xaOnQAAAGL3beVPwAABAMASDBGAiEAoaFuFBBKRGpXK8z0 sHbJBMuGXL67wkTSH3U7szOHPPoCIQCxbslcW5UwHlG0P/46wRvSmBIYIyQ37rg7 ckTQpu4BjDANBgkqhkiG9w0BAQsFAAOCAQEACrlWCMBbjtQqY+ITQbjej6IiIWeD 6N9bAyd0kDmcYCoo3P+V7VWh9T9kcvZnpjjOBLXFH30gU2qgY8gzPyBF8OA3cETg g5eWJJnDTVELp9bqtD8PztFDfSn1jEf9WNO8rrBJIXyQd3QAfkeeIZFVNouRHwn7 wtxL5Ury45qWEU/hptdshLZFgP+ebwBUsPaacPqKOGcybL7zfbkR6c1ZJmti6MfV R+tzduwTZfQlnArqJJeQTG3Bi4E9u5hFuaP+JGiz8rz1CeA4fbD5K2C+DnFscbOC npE/O53Ij+p0H0EWRIbTuPHINioxmpTd1GghNUwmDQ9rGf4cCYO2hc22Xg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwfAjo82h4i9HCtWtl8PV 8YIr3QeSmNcwxT2z3tL26/SQaFOvwuxWkF+vtyTpglY5lM8znxfh6GfEPqOVxMaX PClCzp+Fat1ckHXtbnjaijdh62SUHPH2YiYEJaQ4Sgxl5i83+3+0KFiHoZrp3TxW nvalmpGxuG/+LxEjHm0xKqE0xPXfMHdR6SbReBzpodL3A0/zUPWLLq+Km4c1lZYR oP+ulfMmV6ZyXPTKh63gvUhdmdG8ERiORr1eLoLnaPi8aIOYY7xEEGvuH8u9trY2 8pKuJ90WiVE8m4CAIaL6o/b8L0mF7Z7DYWZOy1atMXH2n8PxmhAS7RU7SNBPB1GC gzSGVrb7IVtVo6JWBI5AbCYpCGkss8Bnv2QpWzonrM5eQHIRoUm4cfVKSp7D8rKa pjpURvI/aukZjiGxO5hg7qlI9O/15azPx8HWX8RIHY2/olqnWams5RgfthajKqnw wGGzhUTa4FIftLT9sXb1Z8xULrqoS7UnmNLtIyLFtpCOdWm3QlRVJoGtn2Adl71q CRa3JWgBkdqfp73InT/5XmBdLclLalcjFCX3rzJZrN8nSB4/13wkfygYtFEmolL+ aPlpmlHAIuQV6RUsw4nYx2QcySwjF9YxFlIT4iPOG7oRuSGtLmc36t4pMcKIfVmd hDonQonrgP6D06fDf0thYqsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 429131318006908904024737240615945607604945 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-17 13:37:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-15 13:37:56 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'immerland.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 791198190037981416598042879769862760931913002335621780091711607666288635960677193433207108670484708403972022201727490444260837366103803656225231838183146357558173072530033366257996914795713706205315282220074605251808627455856875898659437585216569973273932637250189954797438887970616800209536000902064112071173722593455096413938496991651217234111540852792903014661936598704572353076076944381553913836749776150420814737154103768435796725614506630326949680432338039826556454384773398711401780788582289573838745515802509850547945485179810508625476271325666426448501496958448431732230078287733995953076256959546891010700187572823426216978729828485528311444324967516294376264013237535686701347638688299006965246830011459913134243600705802908421365206086838549042432339493650918052669937820158509189331588764441625944581587494506181676374743238231832802303805798942246013257110669213177440895313514829621948886551329673699987561712316274626296080293098293174702778043101573389653109393230220483812096092010938678481718451160098048467198270921617956473440869838906399205894018960708344502539270130633550841189214997168660979361991150235054158451118125126403418379451326934945058947933851190758693449199276427237406903231586130227944556159659 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e1c0ed142d7be43d982e154da35e0dadc808c261 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'immerland.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.immerland.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018bddb7951f000004030046304402201741950944f1685acee8da5cca5f01291cb74ab25a796d911b3f17767058260b02207fb29845d8bfad2df453d6271dc63a354704e4dd96a881c909a46342d93940ea00770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018bddb7953f0000040300483046022100a1a16e14104a446a572bccf4b076c904cb865cbebbc244d21f753bb333873cfa022100b16ec95c5b95301e51b43ffe3ac11bd2981218232437eeb83b7244d0a6ee018c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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