www.swissdefi.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:9e:be:71:20:24:02:53:2f:1f:f1:38:c6:c3:2e:99:84:7c was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.swissdefi.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:9e:be:71:20:24:02:53:2f:1f:f1:38:c6:c3:2e:99:84:7cSerial Number (int): 315354612469423206319228729815856164996220
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 70:37:90:0e:ad:c8:8c:1a:c0:cb:f2:f3:0a:ec:d5:11:20:a8:f9:4f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 7d:fd:b7:c8:83:aa:ab:3e:3a:45:6a:be:c6:cf:d6:d8:9b:eb:5a:02
Fingerprint (sha256): d2:8f:a9:6d:7f:38:62:af:62:85:26:1c:20:a1:b7:6b:ef:29:04:c9:da:d5:f2:4a:49:d2:ee:b6:54:40:f5:4f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.swissdefi.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.swissdefi.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.swissdefi.com
Other certificates including the domain name swissdefi.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.swissdefi.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWzCCBUOgAwIBAgISA56+cSAkAlMvH/E4xsMumYR8MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMjcxNjQzNTdaFw0y MDA2MjUxNjQzNTdaMBwxGjAYBgNVBAMTEXd3dy5zd2lzc2RlZmkuY29tMIICIjAN BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAmuvaFqptNFMETRBcGlguYZA3UwP1 cRnHBonZ3dV0HsIevaJVlyhqicLop0D/gd4DUlOJCwMCGZ9RL6I65a79SfJx5Gx4 9cgwuZQmS1PeDKEXaZ50FfGDGxTPJJZdXnzpLYnziJ5vMsDF15spTyqu4xAhlj4g /HGmRcOVPdrywwFcpw6Lny7+O0qOdquMajCx4wFlKQWpDYIVkHHos85FH2jRylQL 1rzqE8WM4eopXyJIxkVVyOv45KyHegeblFwOmOocBfTt/IA0BjrWt05X9vB/uDe8 W8+0LCSNirrwoMu5T+sHU+SZZSa82SB8ICnAqkaE2OOj9rsyWBA+oDYLJg/gYH/P nLKCLcBhjMaEdI8VpzmY0mo77xU+gbATqcsZu7uK00UF4Z1xZ1fxSl6pm+teIEYX FGtNHFAsOQQzUH6k+siNVwRkx/BmjTJWTfdOWe+j5dCq1r+Tulju/UuRSqWdYDvA AhPJWCI2Zcy8CPB0i+pWYvhi81R56LxdjMsDXYEXFNp3ye0NLvF+AaSL2wRyNF5z 4ec2f5khFtyrmunswiF8Q3vpHP4QtatbAw3fiILIvMTXdqk57OGf1JDMEB5rAWib MKQwZCq3N9nOB2y5vMJqTfhZsQlVqwruvhTr9xwHb7TbpoKV8tHOFl9nq/JZm/Kb UuB5AMBfJpoOUX8CAwEAAaOCAmcwggJjMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU cDeQDq3IjBrAy/LzCuzVESCo+U8wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl 7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5p bnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5p bnQteDMubGV0c2VuY3J5cHQub3JnLzAcBgNVHREEFTATghF3d3cuc3dpc3NkZWZp LmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsG AQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQUGCisGAQQB1nkC BAIEgfYEgfMA8QB2AOcS8rA3fhpi+47JDGGE8ep7N8tWHREmW/Pg80vyQVRuAAAB cR0X5rQAAAQDAEcwRQIhAOTEXO0Wws/I08kpf06OcVTwBaMuFu+RkomS+qgmBfKt AiBThsGTrG8+92fd8gzKjU0FUKhQtUPv/43oWae0CR3OaQB3ALIeBcyLos2KIE6H ZvkruYolIGdr2vpw57JJUy3vi5BeAAABcR0X5qoAAAQDAEgwRgIhAP0HViP1S4Sw GFrjmgSseGqWPm+DC61d4G4JSdGRJEaSAiEAgeJlrJOwY0Qt0CgpxoGCa8QPrge+ JKV48I+mPfuTpLswDQYJKoZIhvcNAQELBQADggEBAB2WrJrR9Zyay2Esb5OCaXT6 gd3C3cPIc1YPJ+epoAJ33vubMJpMBTUx0Wr6X/jVSNnlcRKBlpvjfc6XFttQUn1P WBBtdh5/D0VV5AWySz/X0kbYsAwC2S4k1lDQiZVQeVopcPTWg3JA6bQUUX6G6GkI XQ9kk3Q2pHMd9tP+uia1GqxopYTZwYSGM7zLUqAc3X0j58LeywqvC4s1YhP4hM6M oiZY0TEQBLXwPnBLu8nvxSn+KC0aPGR7zo2dXutTX2QGKarvENEk3lHnAZYjXFfK 5/m1J/KKqq2btYKUJTVF+iQ9yT4KPnp8THLZk+lG5dJPSDmm14WpvOymMJLM6wg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAmuvaFqptNFMETRBcGlgu YZA3UwP1cRnHBonZ3dV0HsIevaJVlyhqicLop0D/gd4DUlOJCwMCGZ9RL6I65a79 SfJx5Gx49cgwuZQmS1PeDKEXaZ50FfGDGxTPJJZdXnzpLYnziJ5vMsDF15spTyqu 4xAhlj4g/HGmRcOVPdrywwFcpw6Lny7+O0qOdquMajCx4wFlKQWpDYIVkHHos85F H2jRylQL1rzqE8WM4eopXyJIxkVVyOv45KyHegeblFwOmOocBfTt/IA0BjrWt05X 9vB/uDe8W8+0LCSNirrwoMu5T+sHU+SZZSa82SB8ICnAqkaE2OOj9rsyWBA+oDYL Jg/gYH/PnLKCLcBhjMaEdI8VpzmY0mo77xU+gbATqcsZu7uK00UF4Z1xZ1fxSl6p m+teIEYXFGtNHFAsOQQzUH6k+siNVwRkx/BmjTJWTfdOWe+j5dCq1r+Tulju/UuR SqWdYDvAAhPJWCI2Zcy8CPB0i+pWYvhi81R56LxdjMsDXYEXFNp3ye0NLvF+AaSL 2wRyNF5z4ec2f5khFtyrmunswiF8Q3vpHP4QtatbAw3fiILIvMTXdqk57OGf1JDM EB5rAWibMKQwZCq3N9nOB2y5vMJqTfhZsQlVqwruvhTr9xwHb7TbpoKV8tHOFl9n q/JZm/KbUuB5AMBfJpoOUX8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 315354612469423206319228729815856164996220 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-27 16:43:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-25 16:43:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.swissdefi.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 632023748345559437874812058606414674310991002736844487427761408680646853427159204657100122294821162362534331807916001052512730863889371861035589080204999745291983667934448520471610052037148459746132794530461139896018478898254120132912087111785088732593100629392806415783268735405191629253201199410143688108375998959756024217838344905382057381748072329766268146097210310259133712201802058726835055120148221923997653955697126138780661310002910452554791375642224409247804512228592071758394293139067769826192615329285992828116015262264042240999370996769762787954476792162966691262499383585503510312103389215346309322879131625464939529395300066182115325150535161912259614187037732798840250328914743488003106893754256687277803871544067281268544088836917203847300954585405214460406165979960368840128283800475976017804261075141609451329318519470316599667865592655478815461373419844165080410799144082109051573650587558219516813762749515515932133215342346791311770255182211812003882813390516045722848822261155265800339934980177947358179384582022385287697851596756915435303386755758052972657522940773786505316074644364245376412538192327059717702457361169659723809287247614031472352615515001554224658814124866381705870369459182363338057037271423 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7037900eadc88c1ac0cbf2f30aecd51120a8f94f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.swissdefi.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e000001711d17e6b40000040300473045022100e4c45ced16c2cfc8d3c9297f4e8e7154f005a32e16ef91928992faa82605f2ad02205386c193ac6f3ef767ddf20cca8d4d0550a850b543efff8de859a7b4091dce69007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001711d17e6aa0000040300483046022100fd075623f54b84b0185ae39a04ac786a963e6f830bad5de06e0949d19124469202210081e265ac93b063442dd02829c681826bc40fae07be24a578f08fa63dfb93a4bb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 001d96ac9ad1f59c9acb612c6f93826974fa81ddc2ddc3c873560f27e7a9a00277defb9b309a4c053531d16afa5ff8d548d9e5711281969be37dce9716db50527d4f58106d761e7f0f4555e405b24b3fd7d246d8b00c02d92e24d650d0899550795a2970f4d6837240e9b414517e86e869085d0f64937436a4731df6d3feba26b51aac68a584d9c1848633bccb52a01cdd7d23e7c2decb0aaf0b8b356213f884ce8ca22658d1311004b5f03e704bbbc9efc529fe282d1a3c647bce8d9d5eeb535f640629aaef10d124de51e70196235c57cae7f9b527f28aaaad9bb58294253545fa243dc93e0a3e7a7c4c72d993e946e5d24f4839a6d785a9bceca63092cceb08