alpstark.ch
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:f3:b2:3b:d7:61:16:97:19:5c:25:b0:bd:bc:ef:92:7a:b6 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=alpstark.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f3:b2:3b:d7:61:16:97:19:5c:25:b0:bd:bc:ef:92:7a:b6Serial Number (int): 344262386254243343028445280770997986949814
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 16:52:84:1d:4d:6e:8d:b0:c1:dd:af:30:61:71:f4:74:07:bc:e9:6c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ed:ae:1a:b5:d6:6f:50:50:46:8b:d8:f7:4f:7a:48:67:3a:da:7c:2a
Fingerprint (sha256): e6:38:09:8e:fc:c7:50:d2:7a:49:64:4e:df:bc:7b:10:5a:ae:4f:fa:f6:d7:97:22:26:1a:a9:47:66:f5:61:9a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate alpstark.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for alpstark.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
alpstark.ch
www.alpstark.ch
www.alpstark.ch
Other certificates including the domain name alpstark.ch
(limited to 100 certificates)
alpstark.ch
www.alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
www.alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
www.alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
www.alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
www.alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
www.alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
alpstark.ch
Certificate
The complete raw certificate details for alpstark.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgISA/OyO9dhFpcZXCWwvbzvknq2MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODEyMjEyMjAxMzhaFw0x OTAzMjEyMjAxMzhaMBYxFDASBgNVBAMTC2FscHN0YXJrLmNoMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxo1ARX1tcYjHRoVxYpLmd29fhN4yNOwxrSok O3pjaEVY08VQgsvyP0n7EsuVYOY+q/JXLUUHBg9RXLG6DCEuFCy3GUTrkTWfeWhd VqQ7T3eWNH2Ujf5KDn34sDKSkXOm+qtLyPY5aFSQsYKK7h7Ol4gApk2YmCrik8x3 kx9VX8zjTSXIT2DGZBs1KwVI8KXsWRJvXeKLk/eoiF6TOKfYpCEV741dZHrz1viI SQwN5sBRbnSwgo2JDOn3sl96BhG6JDz00NHTq44SHI95Qj6lRaF+i2DxdLel7Muy rItm/UWxR69ai+kt0w1kdbItWZsUGOdfVGROVk7sGwX/FzuDPwIDAQABo4ICcDCC AmwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQWUoQdTW6NsMHdrzBhcfR0B7zpbDAf BgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEw LgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcw LwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcv MCcGA1UdEQQgMB6CC2FscHN0YXJrLmNogg93d3cuYWxwc3RhcmsuY2gwTAYDVR0g BEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0 cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8A dgB0ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWfTALZ5AAAEAwBH MEUCIQDQWV+hgHw5GcrXvijInWY3DkeS0BEfEZXFn6DNbSCI5wIgM2iS6KrIG72t yMSYtBYbtCWZRNQBUwKAwzaObh20FjYAdQApPFGWVMg5ZbqqUPxYB9S3b79Yeily 3KTDDPTlRUf0eAAAAWfTALjNAAAEAwBGMEQCICG8LWoS0Zd1X6ckHJnL7HCrnW3p 7CiZdRseVnAYuq9CAiASijFHD1I9xaHOfnjm91digkSAsdSylziPJcuiXmutIzAN BgkqhkiG9w0BAQsFAAOCAQEAQXL6Th8mdDdD+DftcYNQAX4rhXS7UrhJlrYkSnuy 3UKtDysjqdBr7cb3QggsmSbKSLNbTfqMPYkykiAFNV6jiAO0nSWj5Tcec0tnKF1h ebbxY+ppuB3rMCo+OpGfRJTSwaDBMBjz+diylQLe5BpzYvqY6Yvm8xmB3GJcWPD0 h0Zh9c0jQ1T+fXrC6uL+ZVrLvLT+SGHwVflCiirNGFztgDaXM8leLtYIHVU8FdxT /X5pb1mAJO5rMSpsSrBnCtxRbk/5KOKT2JBv7n5hMm29Bykn7YtOu+GQsOUBLxXu ohXU06gW1ebu1ILQfUca0WFodxL15ZJAhCpsqfLpdKHnKw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxo1ARX1tcYjHRoVxYpLm d29fhN4yNOwxrSokO3pjaEVY08VQgsvyP0n7EsuVYOY+q/JXLUUHBg9RXLG6DCEu FCy3GUTrkTWfeWhdVqQ7T3eWNH2Ujf5KDn34sDKSkXOm+qtLyPY5aFSQsYKK7h7O l4gApk2YmCrik8x3kx9VX8zjTSXIT2DGZBs1KwVI8KXsWRJvXeKLk/eoiF6TOKfY pCEV741dZHrz1viISQwN5sBRbnSwgo2JDOn3sl96BhG6JDz00NHTq44SHI95Qj6l RaF+i2DxdLel7MuyrItm/UWxR69ai+kt0w1kdbItWZsUGOdfVGROVk7sGwX/FzuD PwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 344262386254243343028445280770997986949814 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-21 22:01:38 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-21 22:01:38 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'alpstark.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25064837877150834763507544176438514439078492427462505108264505782833469834519416691318497415140456630509782024682175093664648130265796239946986314339112961438273226229472513598725931376941798651704945310967809461721796593094808231583745474043911874547988958486516064048456675943226995880420408734660528731564111328300274256518139551303204472215707810777120205341991037923188701167542216332673502759084413667641566409482192750670759977683545923973838271231111279095228283054694559684151171012509940895103942576836719786803523331513968541768426284897409153929686327231362424197762671454276370867398658749591580468544319 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1652841d4d6e8db0c1ddaf306171f47407bce96c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alpstark.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.alpstark.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000167d300b6790000040300473045022100d0595fa1807c3919cad7be28c89d66370e4792d0111f1195c59fa0cd6d2088e70220336892e8aac81bbdadc8c498b4161bb4259944d401530280c3368e6e1db41636007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000167d300b8cd0000040300463044022021bc2d6a12d197755fa7241c99cbec70ab9d6de9ec2899751b1e567018baaf420220128a31470f523dc5a1ce7e78e6f75762824480b1d4b297388f25cba25e6bad23 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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