yaep.ch
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:0f:a9:98:7e:e1:ef:6a:10:d9:20:4d:f1:1f:98:f6:9d:29 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=yaep.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:0f:a9:98:7e:e1:ef:6a:10:d9:20:4d:f1:1f:98:f6:9d:29Serial Number (int): 266666524632989006737009862617332450762025
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 60:1f:2a:4f:d3:d6:d6:22:6e:58:98:99:b2:5e:e8:ce:48:bd:ae:01
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 8f:e2:7f:32:d5:70:1f:46:2b:66:12:7b:ac:c4:a5:4f:56:d5:04:df
Fingerprint (sha256): f0:07:25:58:ad:ec:ac:da:2f:ed:fc:c7:6a:09:d3:94:91:e7:67:47:4e:d8:e5:e2:9d:28:35:6a:69:0d:81:4a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate yaep.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for yaep.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.yaep.ch
yaep.ch
yaep.ch
Other certificates including the domain name yaep.ch
(limited to 100 certificates)
Certificate
The complete raw certificate details for yaep.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgISAw+pmH7h72oQ2SBN8R+Y9p0pMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAyMTgwOTA3NTNaFw0x OTA1MTkwOTA3NTNaMBIxEDAOBgNVBAMTB3lhZXAuY2gwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQC8vZZIyOshW9jaw+I/8KV8GnuVHCM16q14bs8L2ugG tJ1Fy9rNSGLtRoNBhWevAtmUtPv7ALb1El0O1m8mAI1GZvMQGD9fzw2uhZK5BaYM O0Tr8YX2B4RQcEJKIkDKglK/T87a9VxX0M9W1X+Qdug1G9WEGTIxKXWSbbs8n8iQ BF8gJyTEzWFt7TP601VI3zjQ5Uhap3q0Ip4VLhC/+jJOozaI/ntTSVurYlp7SrUZ J7nWBtSJotRRIMQJrkLvSwakaRbMiuttkIR0m8u29OsfEguQYzLliVcabFlNIq1r obEafsjNVNex5bHQZGfezq++u1QFZzbo6TaImqnC0AHbAgMBAAGjggJpMIICZTAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFGAfKk/T1tYibliYmbJe6M5Iva4BMB8GA1Ud IwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggr BgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggr BgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHwYD VR0RBBgwFoILd3d3LnlhZXAuY2iCB3lhZXAuY2gwTAYDVR0gBEUwQzAIBgZngQwB AgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRz ZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgB0ftqDMa0zEJEh nM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWkAE4cfAAAEAwBHMEUCIEZS7UZ0O6qT XmIyzGyx839+Uupe+uSvv5vOHxSB66uvAiEA/evemNOVjORaizRLHsIYwRVHLgKY C8Fyttm3fqJthYcAdgBj8tvN6DvMLM8LcoQnV2szpI1hd4+9daY4scdoVEvYjQAA AWkAE4loAAAEAwBHMEUCIQCWgy5AXev8EyaWh574RFEDDFMwTa4Axsm2/4P8RP7H qgIgEspS5gP9EKn15Q2EnG9A+n/DmGm/WNA9FjWejIX0YyowDQYJKoZIhvcNAQEL BQADggEBACHLCpyNS3ZhRST3GSfcJwjrBM6yuDnZJ5gV8wmmbYOGhos8YP1q2H8n 19JfgGHV+kRipbaXLgSA3mpjXyqI4e3+nkQ5rh3u4NPPYt2Wir2ok1lpG3+L7qyP PE5oblQ2XQc3TSxr2F2cf6u1EReutAyXZ0hnomaEbZhAoh/QWx/90hCzV6p4zMNA eE9fcnvjyRQcejDkwg0Z/s8VPqfYtJ/hqR/kaumIcCWdmiBG/4saIBL+gFE6OFcI DJ1ZxjudrcLaxmK8/Egx2VxE5FUi9evYVSOf2xZzbfD9e5Er01QfcgxbVr9x2WDh piQL15iMA3zbCgoPeXG+Tq2c9BGv//M= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvL2WSMjrIVvY2sPiP/Cl fBp7lRwjNeqteG7PC9roBrSdRcvazUhi7UaDQYVnrwLZlLT7+wC29RJdDtZvJgCN RmbzEBg/X88NroWSuQWmDDtE6/GF9geEUHBCSiJAyoJSv0/O2vVcV9DPVtV/kHbo NRvVhBkyMSl1km27PJ/IkARfICckxM1hbe0z+tNVSN840OVIWqd6tCKeFS4Qv/oy TqM2iP57U0lbq2Jae0q1GSe51gbUiaLUUSDECa5C70sGpGkWzIrrbZCEdJvLtvTr HxILkGMy5YlXGmxZTSKta6GxGn7IzVTXseWx0GRn3s6vvrtUBWc26Ok2iJqpwtAB 2wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 266666524632989006737009862617332450762025 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-18 09:07:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-19 09:07:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'yaep.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23826290191418763208621551473402432659305522039097003340624380165915014017056258572679723346108540235791611449030385648671364959654613578708403506254627202582749759969001822758439028570093504759974369581219122765352888520699557213952846451465170965280517080707036016825805653607383044239145257863150432258462676742420039584354724527581385640526577388476789954878928805121697131628780593354808163347336233825056649706007644942717032903822787374126394519926151229594022188841060020993259054149955158891405099275932024312835800434481232749187203343625734191434488603180110761533172181033433345600085331194922345484517851 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 601f2a4fd3d6d6226e589899b25ee8ce48bdae01 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.yaep.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'yaep.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc56000001690013871f000004030047304502204652ed46743baa935e6232cc6cb1f37f7e52ea5efae4afbf9bce1f1481ebabaf022100fdebde98d3958ce45a8b344b1ec218c115472e02980bc172b6d9b77ea26d858700760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016900138968000004030047304502210096832e405debfc132696879ef84451030c53304dae00c6c9b6ff83fc44fec7aa022012ca52e603fd10a9f5e50d849c6f40fa7fc39869bf58d03d16359e8c85f4632a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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