gitlab.ldbar.ch

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:41:e3:ec:61:8e:b0:7c:10:7e:36:2f:1f:e4:20:6b:8d:f1 was issued on by Let's Encrypt.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=gitlab.ldbar.ch

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:41:e3:ec:61:8e:b0:7c:10:7e:36:2f:1f:e4:20:6b:8d:f1
Serial Number (int): 283758173760942280165114359251428432383473
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: a2:5a:10:dd:41:d2:0a:51:32:bc:d5:8d:9b:98:9a:1f:eb:25:10:97
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 90:8e:4a:aa:b0:a5:93:f4:63:92:6b:63:a9:23:87:90:23:8f:58:e7
Fingerprint (sha256): d7:4e:a7:67:ad:b3:8a:cf:40:1a:17:a5:ec:6a:85:94:81:8e:8c:8d:8a:f8:b2:c3:42:43:ce:2a:0d:95:8c:2c

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate gitlab.ldbar.ch

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for gitlab.ldbar.ch

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

gitlab.ldbar.ch
interactivethings.ldbar.ch
registry.ldbar.ch

Other certificates including the domain name ldbar.ch

(limited to 100 certificates)
trifid-lindas.int.cluster.ldbar.ch
trifid-lindas.int.cluster.ldbar.ch
gitlab.ldbar.ch
gitlab.ldbar.ch
studio.cluster.ldbar.ch
stardog-int.cluster.ldbar.ch
gitlab.ldbar.ch
trifid-lindas.test.cluster.ldbar.ch
studio.cluster.ldbar.ch
trifid-lindas.int.cluster.ldbar.ch
graylog1.sbar.cust.vshn.net
trifid-lindas.cluster.ldbar.ch
trifid-lindas.cluster.ldbar.ch
trifid-lindas.test.cluster.ldbar.ch
stardog-int.cluster.ldbar.ch
gitlab.ldbar.ch
studio.cluster.ldbar.ch
gitlab.ldbar.ch
trifid-lindas.int.cluster.ldbar.ch
trifid-lindas.cluster.ldbar.ch
trifid-lindas.int.cluster.ldbar.ch
graylog1.sbar.cust.vshn.net
trifid-lindas.cluster.ldbar.ch
studio.cluster.ldbar.ch
trifid-lindas.cluster.ldbar.ch
trifid-lindas.test.cluster.ldbar.ch
stardog-int.cluster.ldbar.ch
gitlab.ldbar.ch
gitlab.ldbar.ch
stardog-int.cluster.ldbar.ch
trifid-lindas.test.cluster.ldbar.ch
studio.cluster.ldbar.ch
studio.cluster.ldbar.ch
gitlab.ldbar.ch
stardog.cluster.ldbar.ch
trifid-lindas.test.cluster.ldbar.ch
stardog-int.cluster.ldbar.ch
gitlab.ldbar.ch
trifid-lindas.int.cluster.ldbar.ch
stardog-int.cluster.ldbar.ch
trifid-lindas.cluster.ldbar.ch
stardog.cluster.ldbar.ch
trifid-lindas.int.cluster.ldbar.ch

Certificate

The complete raw certificate details for gitlab.ldbar.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0OGV12KU9VvLOfM9DwkO
+DqVLTAWAEidKnoP4XNjciOZSsPNCGq3KKYDdUd8AulTc5jzSbJa2PiAGyTeTR73
4sga3KqeaC9FVhh5+78bXgG6Q8+ozzhdksXIko1xIgERkU26CS62LefW7oOVRNxX
RrbF7c/PS5PuV2MuLnqsKQORU5rZOqXKYbMF6z/h0vcuORu5JaXXDXBPAnKekgMY
3QPxNEgpFeoBFb73VYr1CJxcGNcCIvTB9BU4bVVgDTHterTa3OnUPCDbZUODM8HR
Nd7GjS4WwrcCplFn5qcNTUg9cpdWn3a0HbLi9f6FGGh6E11kdqNPN0cGHp6vKEUe
GQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 283758173760942280165114359251428432383473
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-04 20:54:20 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-02 20:54:20 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gitlab.ldbar.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26368807699111901444600264537405004249236235122470523553928187626167300324550308498606625545306123329495738460273801925462243331006173474608034598386896437511290273135120163648304721381599839411798110253778310178541324838202112647587518009830557612825384143422051164140804580680049765043289233867837456597749613358479042836937587463289315863892357553997167013722231145713769082994567427819336864509466934744632817337206590113091212846088481204096855422341734612743312650057347242367469469481026317496814755833968758174687399495739160012324828362694258698744880345804425970334123454735732973253486402070891230245756441
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a25a10dd41d20a5132bcd58d9b989a1feb251097
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gitlab.ldbar.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'interactivethings.ldbar.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'registry.ldbar.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016d98c43c67000004030047304502200a6bd7002b32fea98d85230001c66d1e0dedc44ccbd5d58e29d37aede63a13a4022100eee9ecf08cfd61be017d8d0a448c20e38ab6dbb309c1913bce10c1783533caf2007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d98c43c4e0000040300463044022040e24c2050b28225d80acdc06584db60b5b1456df1d1b065aaae980ccf0d897202206942a522ca86c59666f9545fc9bde3bc2a81d9235fbdcc504c594b541ff8d1c3
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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