kartei.glauscasting.ch
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:30:d7:b5:3a:97:c6:3d:2c:f4:3f:24:19:ef:84:38:b2:a5 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=kartei.glauscasting.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:30:d7:b5:3a:97:c6:3d:2c:f4:3f:24:19:ef:84:38:b2:a5Serial Number (int): 277957136420715499442748865173961175511717
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 90:f6:33:48:3f:11:ff:05:80:d2:c8:66:84:4e:d6:cc:12:77:9b:b9
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): c0:f1:18:cb:17:42:78:ff:7f:07:9f:23:d1:4c:56:23:64:21:62:fd
Fingerprint (sha256): d2:ab:15:8a:80:f0:7f:89:85:b0:64:5c:1a:79:f4:eb:5a:d3:98:8c:04:6d:f3:8b:a2:42:b1:ac:e8:ce:f7:e7
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate kartei.glauscasting.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kartei.glauscasting.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
glauscasting.treestones.org
kartei.glauscasting.ch
kartei.glauscasting.ch
Other certificates including the domain name glauscasting.ch
(limited to 100 certificates)
glauscasting.ch
www.glauscasting.ch
glauscasting.ch
glauscasting.ch
ta.glauscasting.ch
www.glauscasting.ch
test.glauscasting.ch
www.glauscasting.ch
glauscasting.ch
glauscasting.ch
test.glauscasting.ch
test.glauscasting.ch
www.glauscasting.ch
kartei.glauscasting.ch
www.glauscasting.ch
test.glauscasting.ch
test.glauscasting.ch
test.glauscasting.ch
kartei.glauscasting.ch
www.glauscasting.ch
www.glauscasting.ch
test.glauscasting.ch
glauscasting.ch
www.glauscasting.ch
www.ta.glauscasting.ch
www.glauscasting.ch
glauscasting.ch
glauscasting.ch
www.glauscasting.ch
test.glauscasting.ch
glauscasting.ch
test.glauscasting.ch
www.glauscasting.ch
ta.glauscasting.ch
kartei.glauscasting.ch
glauscasting.ch
glauscasting.ch
kartei.glauscasting.ch
www.ta.glauscasting.ch
ta.glauscasting.ch
glauscasting.ch
www.glauscasting.ch
glauscasting.ch
glauscasting.ch
ta.glauscasting.ch
www.glauscasting.ch
test.glauscasting.ch
www.glauscasting.ch
glauscasting.ch
glauscasting.ch
test.glauscasting.ch
test.glauscasting.ch
www.glauscasting.ch
kartei.glauscasting.ch
www.glauscasting.ch
test.glauscasting.ch
test.glauscasting.ch
test.glauscasting.ch
kartei.glauscasting.ch
www.glauscasting.ch
www.glauscasting.ch
test.glauscasting.ch
glauscasting.ch
www.glauscasting.ch
www.ta.glauscasting.ch
www.glauscasting.ch
glauscasting.ch
glauscasting.ch
www.glauscasting.ch
test.glauscasting.ch
glauscasting.ch
test.glauscasting.ch
www.glauscasting.ch
ta.glauscasting.ch
kartei.glauscasting.ch
glauscasting.ch
glauscasting.ch
kartei.glauscasting.ch
www.ta.glauscasting.ch
ta.glauscasting.ch
glauscasting.ch
Certificate
The complete raw certificate details for kartei.glauscasting.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgISAzDXtTqXxj0s9D8kGe+EOLKlMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMTEwMjEzMDJaFw0y MDA2MDkwMjEzMDJaMCExHzAdBgNVBAMTFmthcnRlaS5nbGF1c2Nhc3RpbmcuY2gw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdH0jTpfevB/c6yYvCCp8r LdpAWf+bFV8FqEOelKk9gf4RLLb/RD0JDWZ6jKib78z9AbkJTotNpwRwvq0+n/WQ 2Hqv+rZnNQdKFRuiiLnPB4UvsF+DtKSzxGZIsDQXzHATw4C3w1xxaKyy+Bw9fRyU 1wG1wu7f1D4r79OjKo3ReHqZVyYt1aBQgf1xbtSKxV8eswsNf0eOkqWrmSYmgk3H azpTZA44kE004ghFfnKNKlsPFdIOH+5gvxCYN5RxXBo1nA72h5/3Vhwf+68exUOO o790ApDc/vq1me/SIOOYYk5UiDOjMCAT+zmNiqCzeOvN2JCuF6khbD6QroBWejjz AgMBAAGjggKIMIIChDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJD2M0g/Ef8FgNLI ZoRO1swSd5u5MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsG AQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNl bmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNl bmNyeXB0Lm9yZy8wPgYDVR0RBDcwNYIbZ2xhdXNjYXN0aW5nLnRyZWVzdG9uZXMu b3JnghZrYXJ0ZWkuZ2xhdXNjYXN0aW5nLmNoMEwGA1UdIARFMEMwCAYGZ4EMAQIB MDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2Vu Y3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHUAsh4FzIuizYogTodm +Su5iiUgZ2va+nDnsklTLe+LkF4AAAFwx5TLBQAABAMARjBEAiAmrt6o46A8b6gI 1sMcoRCcbqDknHmZ8w3LJChLLj6UcgIgbpMqmNAv5o25lcKmrqziY/j3VhIV9onH OP64atcvrHsAdwBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAXDH lMs7AAAEAwBIMEYCIQDHgO9+Nkj9vRb3f8uH1043oEoDgGFv7X/U4iZ8aD4AgQIh AMLNW4kW2UPlL9SMroA/E/+dWsxR/SjO4CKIPpk5wKVIMA0GCSqGSIb3DQEBCwUA A4IBAQA59l/Rfy5RnXMftqSLTS+nSAQkZ5N/pqF6Ks4S/7o2E1CxKusIGMVXea1u gDg5B7zG2sDMGFUxTVTQbg+RKuIx7KBB+lfk7rXfFbMJW8MJGIkF3I6NrDDDTbKQ hnY/cEwlcS65N8uzPdehbwbhHqhASe8zOCBMin7SwEgwxlDvrnTuLXonwQb7h4Og qH43Qy+waFL/rtFEuoKih9kDYDsNxlIL6YZ3QW/g1nZYQ/zlZg7AjhUcc6jOg2BE kKJSS43rPgizKTebxW2CjBfOpWd2TgCokCrHjddU/6kHZQNVvyy2hmlBkIpNB1p/ jNLiDgg0CsR9p8/U+XYaMfL4FREV -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3R9I06X3rwf3OsmLwgqf Ky3aQFn/mxVfBahDnpSpPYH+ESy2/0Q9CQ1meoyom+/M/QG5CU6LTacEcL6tPp/1 kNh6r/q2ZzUHShUbooi5zweFL7Bfg7Sks8RmSLA0F8xwE8OAt8NccWissvgcPX0c lNcBtcLu39Q+K+/ToyqN0Xh6mVcmLdWgUIH9cW7UisVfHrMLDX9HjpKlq5kmJoJN x2s6U2QOOJBNNOIIRX5yjSpbDxXSDh/uYL8QmDeUcVwaNZwO9oef91YcH/uvHsVD jqO/dAKQ3P76tZnv0iDjmGJOVIgzozAgE/s5jYqgs3jrzdiQrhepIWw+kK6AVno4 8wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 277957136420715499442748865173961175511717 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-11 02:13:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-09 02:13:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kartei.glauscasting.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27914092349309258140689313109423919551707960878340504445085993145293418001671136910527704876843584598646710400338536674795462124514448325093054460733011770335761859987599589483206186975984337614559272337041000797924293652727726441991227564590317159162455910946954238151080737309501283671189009250662636383877961539470164622622430817072339099241778094431219532595082399367007831945946074018066999734000014008240164752820515111557612324639779318992154606163164242476224020516142556182097154352577755656054079469770293235054762332607640900107987662501773203507851620806153916417873058442224719229255428247242846601099507 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 90f633483f11ff0580d2c866844ed6cc12779bb9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'glauscasting.treestones.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kartei.glauscasting.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170c794cb050000040300463044022026aedea8e3a03c6fa808d6c31ca1109c6ea0e49c7999f30dcb24284b2e3e947202206e932a98d02fe68db995c2a6aeace263f8f7561215f689c738feb86ad72fac7b0077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d91300000170c794cb3b0000040300483046022100c780ef7e3648fdbd16f77fcb87d74e37a04a0380616fed7fd4e2267c683e0081022100c2cd5b8916d943e52fd48cae803f13ff9d5acc51fd28cee022883e9939c0a548 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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