stuebis-naturmanufaktur.ch
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:29:af:b8:ce:0a:6a:01:39:2b:26:d1:62:5c:68:24:58:d2 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=stuebis-naturmanufaktur.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:29:af:b8:ce:0a:6a:01:39:2b:26:d1:62:5c:68:24:58:d2Serial Number (int): 275522009299925014495236402803889211201746
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 2e:59:44:23:03:18:d9:d1:27:32:df:07:8b:0c:1f:6e:cd:bf:28:7d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 3c:2f:38:a1:16:b7:6e:fc:07:9f:7b:05:82:f8:fd:b7:6f:c4:98:b3
Fingerprint (sha256): dc:38:39:cf:69:bf:ab:9a:7a:98:ea:24:92:de:6a:c1:e0:eb:81:48:ab:8a:c7:61:2a:5c:24:af:55:1c:89:e9
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate stuebis-naturmanufaktur.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for stuebis-naturmanufaktur.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
stuebis-naturmanufaktur.ch
www.stuebis-naturmanufaktur.ch
www.stuebis-naturmanufaktur.ch
Other certificates including the domain name stuebis-naturmanufaktur.ch
(limited to 100 certificates)
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
stuebis-naturmanufaktur.ch
Certificate
The complete raw certificate details for stuebis-naturmanufaktur.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGQDCCBSigAwIBAgISAymvuM4KagE5KybRYlxoJFjSMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA4MjMyMzQzMDZaFw0x ODExMjEyMzQzMDZaMCUxIzAhBgNVBAMTGnN0dWViaXMtbmF0dXJtYW51ZmFrdHVy LmNoMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5YalfUdzG1TlF65B SkFyDkulgyqB8OIgJ95FyZ8rPXVXBCePFCeLfUfF3VMT461RhNruA1OveVGt70b2 WRODUMcuYj2YqM4zIudtUF4+EeqPKJkQuXiX1uEUTV6Fcn2h9TWnma6eWDROw8o2 7pB6ZjkltChO7UCfdwqSh0KowUPITd5DpNMW9GjzF5TaCDzxH+TxEQDARwtyxN3g k9SYgNiFBKeRi9lbRwcTL1vCf8XlU5CEdKRVlbNlSKpoDT5cdSmhWM34BnoX3ZEz eBs6rs6D7Lm5vKOwNT87wsjyW6htMTsqupjS2na/svInlizIki26jQZFD0beJJP4 v+R0aQIDAQABo4IDQzCCAz8wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQuWUQjAxjZ 0Scy3weLDB9uzb8ofTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMEUGA1UdEQQ+MDyCGnN0dWViaXMtbmF0dXJtYW51ZmFr dHVyLmNogh53d3cuc3R1ZWJpcy1uYXR1cm1hbnVmYWt0dXIuY2gwgf4GA1UdIASB 9jCB8zAIBgZngQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYGCCsGAQUFBwIBFhpo dHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUHAgIwgZ4MgZtUaGlz IENlcnRpZmljYXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9uIGJ5IFJlbHlpbmcg UGFydGllcyBhbmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGggdGhlIENlcnRpZmlj YXRlIFBvbGljeSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNyeXB0Lm9yZy9yZXBv c2l0b3J5LzCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB3AKRQEmkFWhVUXmIRqze8 ED9irlV2pF5LFxRFPhsiEGolAAABZWlifTEAAAQDAEgwRgIhAOWOl5oIkv54wTHx 6msOIXUrot8eW+zb+rlmjDJMx3jpAiEAzTNHLX9suGkELn8ja/jeUMnq9GOBZjBj psDumTxnDR4AdgDBFkrgp3LS1DktyArBB3DU8MSb3pkaSEDB+gdRZPYzYAAAAWVp Yn8jAAAEAwBHMEUCIQCKZApNdNQWa+5rQkWTI93TgIWuvcdBDGSsSc8U7QLqowIg d/wmYd/5fCLxAMwqYEq/ONMsbohdbmGu1J5DENAQR54wDQYJKoZIhvcNAQELBQAD ggEBAHoepvoTKKXv2mjI6RFmsEFvp00PGPt5LexQZ5gwxDvbVTH0wjwoCT8ordM0 mV0wS+pVMiz4TJxV5K7yExUwyd4lEJUljLhkJTCBji4BbiItAouZ+kVJ2OTipvAQ 8HH5BeXV3CflifneQXZgeNH1VGM3UliAJFQdE8FeJTB4dz+qyM/lVqJIFfk14wSk 8i+v3OC4oTeLIpu3PtZK/6xUYS+G+Cm07KRiWn/neuJUzm71Jq7hVl2zH9N9zysw Aa0UleZqqPK/XGpriOeFdX99MTqIaT28lh84FUx7GYwQWO6e0VIc727NwJpGcjUD iKNYm5xm+/s42IzTTnL/WRoWzfs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5YalfUdzG1TlF65BSkFy DkulgyqB8OIgJ95FyZ8rPXVXBCePFCeLfUfF3VMT461RhNruA1OveVGt70b2WROD UMcuYj2YqM4zIudtUF4+EeqPKJkQuXiX1uEUTV6Fcn2h9TWnma6eWDROw8o27pB6 ZjkltChO7UCfdwqSh0KowUPITd5DpNMW9GjzF5TaCDzxH+TxEQDARwtyxN3gk9SY gNiFBKeRi9lbRwcTL1vCf8XlU5CEdKRVlbNlSKpoDT5cdSmhWM34BnoX3ZEzeBs6 rs6D7Lm5vKOwNT87wsjyW6htMTsqupjS2na/svInlizIki26jQZFD0beJJP4v+R0 aQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 275522009299925014495236402803889211201746 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-23 23:43:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-21 23:43:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'stuebis-naturmanufaktur.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28974968472836888455607646010777376902036613258040118237606661507940485470215056816249871478747298873575263615534072920303716182685717712051946134499080192598368595761094726974281855078791232655892676717231545082391694531658166449106390457573662261103562479053972841273611417150806301812437966303083182731590593354747728083680573753058317160010938181291626287492006339733033539229493845466474107702908490188312435207741662442728874240202024688383521796201005497625174846046717572759724236349133315714496778340288255598477831961028581378936783505556834049582626301489591438391692483894353650590709992737898068229518441 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2e5944230318d9d12732df078b0c1f6ecdbf287d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stuebis-naturmanufaktur.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.stuebis-naturmanufaktur.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700a4501269055a15545e6211ab37bc103f62ae5576a45e4b1714453e1b22106a250000016569627d310000040300483046022100e58e979a0892fe78c131f1ea6b0e21752ba2df1e5becdbfab9668c324cc778e9022100cd33472d7f6cb869042e7f236bf8de50c9eaf46381663063a6c0ee993c670d1e007600c1164ae0a772d2d4392dc80ac10770d4f0c49bde991a4840c1fa075164f633600000016569627f2300000403004730450221008a640a4d74d4166bee6b42459323ddd38085aebdc7410c64ac49cf14ed02eaa3022077fc2661dff97c22f100cc2a604abf38d32c6e885d6e61aed49e4310d010479e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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