kellerfahnen.ch
Issued by R3
About this certificate
This digital certificate with serial number 04:8e:0b:94:7c:32:17:63:42:4b:db:e8:24:77:ad:5a:36:9f was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=kellerfahnen.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:8e:0b:94:7c:32:17:63:42:4b:db:e8:24:77:ad:5a:36:9fSerial Number (int): 396784632316690382757863678520876997424799
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 93:3c:39:01:e0:9f:4d:3c:d2:68:15:6f:0b:73:6f:9f:a2:49:e3:1d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f2:63:f9:ea:4a:17:58:1c:35:07:99:9c:a8:60:68:e8:f2:3d:32:34
Fingerprint (sha256): dd:31:ce:0d:f0:fa:98:8b:c4:46:35:e1:fa:bd:61:9b:53:1e:8a:20:2a:3b:8d:53:01:dc:cb:2e:7c:9f:a2:32
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate kellerfahnen.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kellerfahnen.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kellerfahnen.ch
www.kellerfahnen.ch
www.kellerfahnen.ch
Other certificates including the domain name kellerfahnen.ch
(limited to 100 certificates)
kellerfahnen.ch
kellerfahnen.ch
fw.kellerfahnen.ch
test.kellerfahnen.ch
webmail.kellerfahnen.ch
test.kellerfahnen.ch
www.kellerfahnen.ch
kellerfahnen.ch
www.kellerfahnen.ch
kellerfahnen.ch
fw.kellerfahnen.ch
test.hach.ch
kellerfahnen.ch
fw.kellerfahnen.ch
test.kellerfahnen.ch
kellerfahnen.ch
kellerfahnen.ch
fw.kellerfahnen.ch
test.kellerfahnen.ch
www.kellerfahnen.ch
kellerfahnen.ch
kellerfahnen.ch
kellerfahnen.ch
test.kellerfahnen.ch
kellerfahnen.ch
kellerfahnen.ch
kellerfahnen.ch
www.kellerfahnen.ch
www.kellerfahnen.ch
fw.kellerfahnen.ch
test.kellerfahnen.ch
www.kellerfahnen.ch
www.kellerfahnen.ch
www.kellerfahnen.ch
kellerfahnen.ch
kellerfahnen.ch
kellerfahnen.ch
test.kellerfahnen.ch
kellerfahnen.ch
fw.kellerfahnen.ch
kellerfahnen.ch
kellerfahnen.ch
fw.kellerfahnen.ch
test.kellerfahnen.ch
webmail.kellerfahnen.ch
test.kellerfahnen.ch
www.kellerfahnen.ch
kellerfahnen.ch
www.kellerfahnen.ch
kellerfahnen.ch
fw.kellerfahnen.ch
test.hach.ch
kellerfahnen.ch
fw.kellerfahnen.ch
test.kellerfahnen.ch
kellerfahnen.ch
kellerfahnen.ch
fw.kellerfahnen.ch
test.kellerfahnen.ch
www.kellerfahnen.ch
kellerfahnen.ch
kellerfahnen.ch
kellerfahnen.ch
test.kellerfahnen.ch
kellerfahnen.ch
kellerfahnen.ch
kellerfahnen.ch
www.kellerfahnen.ch
www.kellerfahnen.ch
fw.kellerfahnen.ch
test.kellerfahnen.ch
www.kellerfahnen.ch
www.kellerfahnen.ch
www.kellerfahnen.ch
kellerfahnen.ch
kellerfahnen.ch
kellerfahnen.ch
test.kellerfahnen.ch
kellerfahnen.ch
fw.kellerfahnen.ch
kellerfahnen.ch
Certificate
The complete raw certificate details for kellerfahnen.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISBI4LlHwyF2NCS9voJHetWjafMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MDIxMzEwMjZaFw0yMzEyMDExMzEwMjVaMBoxGDAWBgNVBAMT D2tlbGxlcmZhaG5lbi5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AOdeeMg+3SB5jg8+ImBPxQ1DrJ2+t3x6gqyTD3ZNX507DVwz7B0hmFACZZFxcdYQ Mlubd006dHWlWyIjpWO2B64S/yYW6eN6hi24IDZJYoll2h+i7GXyjMNFAiRps6C2 fLQpmgjxhV1XBpJNqJXg9HNBGUjtVm+7zTFVlz4R647gmPbxvr+teW0icSRbeZSN QsbE1QKI4WdyVDTqDxHABE4ZuNIifcINyAItctP9v6vsDSqkarNgQuueH9oxhS7S g4L50fHsbnFaQrMimkGuWMvS5Yv3MwuTJ7tXOK4kSZOFR1OS1PHTR0L9K8QCLJNO HZFTIJeNRKUQxNcbCIWtTokCAwEAAaOCAiYwggIiMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUkzw5AeCfTTzSaBVvC3Nvn6JJ4x0wHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wLwYDVR0RBCgwJoIPa2VsbGVyZmFobmVuLmNoghN3d3cua2VsbGVyZmFobmVu LmNoMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHcAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGKVjsUvwAABAMA SDBGAiEAg0ccxh1sA78oC09OzxC8JI3778kSK831idG7V6IujIICIQD/aFsbyixt RuIbO1UIe8fibAYSxpGz9V5KEK7pUb+pEQB1ALc++yTfnE26dfI5xbpY9Gxd/ELP ep81xJ4dCYEl7bSZAAABilY7FK8AAAQDAEYwRAIgJWAg90iSosbaupThJGh/q6oz RIGWJQaADrujWMFxBBgCIF1Ig2h7u3IGBSQjCyaRIOLTxznCTmlOuH4Bf0YRYz8F MA0GCSqGSIb3DQEBCwUAA4IBAQAe6YZgjToUX79ERFp2dMwNcgxbQ236SBig0zk6 rDrHIBPgfr/QUEHHkKzSYK5sQX01o25RXXJ+fvLu81DYzUdK5NQ0NU7/MM5Ay2RM bNOlIZgQ2dv9ZwLbV3z5036B8XeE4SwgAn+vGr+cmqi5/evrQblniAAECuC2N5DJ miFtzYC+bpFy8v16i4fU/W1co+TaWaFH/tIZ3nbeEX//wtmP2ZzZsYavpQjbO4rG 033YHlgQ2ud0NdKLtUnq6M/evKIWV2eT8xMYlZqrgLH6m0pZzvhViC/bgXBn0Vuq CgICroeocjN/CI8j8eEPx+UEuv9wbs0BMdmevRPJTozkpxQp -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5154yD7dIHmODz4iYE/F DUOsnb63fHqCrJMPdk1fnTsNXDPsHSGYUAJlkXFx1hAyW5t3TTp0daVbIiOlY7YH rhL/Jhbp43qGLbggNkliiWXaH6LsZfKMw0UCJGmzoLZ8tCmaCPGFXVcGkk2oleD0 c0EZSO1Wb7vNMVWXPhHrjuCY9vG+v615bSJxJFt5lI1CxsTVAojhZ3JUNOoPEcAE Thm40iJ9wg3IAi1y0/2/q+wNKqRqs2BC654f2jGFLtKDgvnR8exucVpCsyKaQa5Y y9Lli/czC5Mnu1c4riRJk4VHU5LU8dNHQv0rxAIsk04dkVMgl41EpRDE1xsIha1O iQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 396784632316690382757863678520876997424799 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-02 13:10:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-01 13:10:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kellerfahnen.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29207634230729882752899853890384896433811131244235404169864156963566316606714172544591448498572093582731461662248009648017959015277709506215779590341783661089170970182573902353653959440378277969297135185853093308030504736516074513984804140336135301620611011077310150877219382004288470104892843041164266700582426339192247227971621033714817065904417856266795622623427391949784411503549982544931781895413335987467413705057219584203661270779331016993431490568471342442975775384233955579174284290458482327013767280610657198397260394935289723447917326296976636125968734773169981903543137880067243530155615501255382364147337 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 933c3901e09f4d3cd268156f0b736f9fa249e31d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kellerfahnen.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kellerfahnen.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00077007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018a563b14bf000004030048304602210083471cc61d6c03bf280b4f4ecf10bc248dfbefc9122bcdf589d1bb57a22e8c82022100ff685b1bca2c6d46e21b3b55087bc7e26c0612c691b3f55e4a10aee951bfa911007500b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018a563b14af00000403004630440220256020f74892a2c6daba94e124687fabaa334481962506800ebba358c171041802205d4883687bbb72060524230b269120e2d3c739c24e694eb87e017f4611633f05 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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