www.blaskapelle-wolfisberg.ch
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:99:7a:c8:60:f5:07:56:26:5a:01:7d:d7:6f:70:56:5d:8e was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.blaskapelle-wolfisberg.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:99:7a:c8:60:f5:07:56:26:5a:01:7d:d7:6f:70:56:5d:8eSerial Number (int): 400675552107326530508766483985275851005326
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 3e:28:f8:d7:ce:9c:18:d1:c8:67:bc:37:88:dd:c2:95:44:14:6d:f2
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 25:be:7f:c0:0a:53:0f:f2:a9:b8:ea:4d:0d:54:a3:83:2e:6d:c1:cb
Fingerprint (sha256): f4:2a:71:5a:cb:9d:4d:96:72:d2:41:75:63:b2:b5:57:c4:7c:cd:9a:e1:8a:9c:bf:cc:54:a3:12:d2:69:04:5c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.blaskapelle-wolfisberg.ch
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.blaskapelle-wolfisberg.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bkwolfisberg.ch
blaskapelle-wolfisberg.ch
www.bkwolfisberg.ch
www.blaskapelle-wolfisberg.ch
blaskapelle-wolfisberg.ch
www.bkwolfisberg.ch
www.blaskapelle-wolfisberg.ch
Other certificates including the domain name blaskapelle-wolfisberg.ch
(limited to 100 certificates)
www.blaskapelle-wolfisberg.ch
www.caroknips.de
www.blaskapelle-wolfisberg.ch
volksschutz-ost.de
www.blaskapelle-wolfisberg.ch
www.blaskapelle-wolfisberg.ch
www.blaskapelle-wolfisberg.ch
www.harakirri.lima-city.de
www.blaskapelle-wolfisberg.ch
www.blaskapelle-wolfisberg.ch
www.blaskapelle-wolfisberg.ch
www.blaskapelle-wolfisberg.ch
www.caroknips.de
www.blaskapelle-wolfisberg.ch
volksschutz-ost.de
www.blaskapelle-wolfisberg.ch
www.blaskapelle-wolfisberg.ch
www.blaskapelle-wolfisberg.ch
www.harakirri.lima-city.de
www.blaskapelle-wolfisberg.ch
www.blaskapelle-wolfisberg.ch
www.blaskapelle-wolfisberg.ch
www.blaskapelle-wolfisberg.ch
Certificate
The complete raw certificate details for www.blaskapelle-wolfisberg.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgISBJl6yGD1B1YmWgF9129wVl2OMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzA3MjcxMjUxMDBaFw0x NzEwMjUxMjUxMDBaMCgxJjAkBgNVBAMTHXd3dy5ibGFza2FwZWxsZS13b2xmaXNi ZXJnLmNoMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmA0YMSSzvimc NVrLX1Q8IT6WWgN/Wc59c3D1dn6/ohCPUQwaKvfBR6GaqMUu2bflaQ9ZpELGwUAa j0JEEr2OrnfdEbGyWhQ8noPn+qLtJ6Si98xYRO/yUlOEFb9OYk97V8XzgBGrwcsi CtBEfWsRtN4608eaT7Cl3fSjGO18RtkMH2WD02paS+GHndC4ALZpLuREGBYKF7Ft reV9uaDX4pxJaGA404o/6we4LG0XnLh0nTCavq1HZQcV2aU1NnE0eGGlxAvFKwua 5R2UmwIgcl3U40VMEc9YmJ/JA//9EpTpC1IguDpTr0pJb8h+d4WgDA9/aAgiV8Wu zChiAqn4pwIDAQABo4ICXjCCAlowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ+KPjX zpwY0chnvDeI3cKVRBRt8jAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMGkGA1UdEQRiMGCCD2Jrd29sZmlzYmVyZy5jaIIZ Ymxhc2thcGVsbGUtd29sZmlzYmVyZy5jaIITd3d3LmJrd29sZmlzYmVyZy5jaIId d3d3LmJsYXNrYXBlbGxlLXdvbGZpc2JlcmcuY2gwgf4GA1UdIASB9jCB8zAIBgZn gQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYGCCsGAQUFBwIBFhpodHRwOi8vY3Bz LmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUHAgIwgZ4MgZtUaGlzIENlcnRpZmlj YXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9uIGJ5IFJlbHlpbmcgUGFydGllcyBh bmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGggdGhlIENlcnRpZmljYXRlIFBvbGlj eSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNyeXB0Lm9yZy9yZXBvc2l0b3J5LzAN BgkqhkiG9w0BAQsFAAOCAQEAN+M+iUnxWHBvzYzPP3HPfXuW+UzR0NVhRFr0/G6Z hQ1G7JDqVgwKDowZeAS2K23dW1k/D7ohu4w9FEqxZ/13NeHK7fHzfEBXJ9XobEv8 ea+L6/ZKzVN2IK1f2kT4j5lLuR6CmlE3XViWoesptQPlGpM0h+Ag/uVhdcUjmMTM 9j+F7/GZSpu7mTJ8GMpk/ipBihKzuXo/ctAvf3ZOXNUTM+uyk2J3/IyobOQHJ2cN drdwu2GVRdSng8ZGVEuLJJ7HH2QTfqXteoWJPwYqm5rSzwNOq8ZnGXbfdgz4etu8 l3P6HrTokuwEn0nwoj5Jcb7H/KqsGPnEtp+PWoxzVr6IjQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmA0YMSSzvimcNVrLX1Q8 IT6WWgN/Wc59c3D1dn6/ohCPUQwaKvfBR6GaqMUu2bflaQ9ZpELGwUAaj0JEEr2O rnfdEbGyWhQ8noPn+qLtJ6Si98xYRO/yUlOEFb9OYk97V8XzgBGrwcsiCtBEfWsR tN4608eaT7Cl3fSjGO18RtkMH2WD02paS+GHndC4ALZpLuREGBYKF7FtreV9uaDX 4pxJaGA404o/6we4LG0XnLh0nTCavq1HZQcV2aU1NnE0eGGlxAvFKwua5R2UmwIg cl3U40VMEc9YmJ/JA//9EpTpC1IguDpTr0pJb8h+d4WgDA9/aAgiV8WuzChiAqn4 pwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 400675552107326530508766483985275851005326 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-07-27 12:51:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-25 12:51:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.blaskapelle-wolfisberg.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19194679493386809257296077302209445326621252327471131521572875849878573509835175798792001568656016601458069971970773894736855145211347188168779274910555315442631406306516651752636542552522496915969300408794447422502877224997801608597955679215593923292964216395171136735471821379016332231125578704194006320468850215673046258276399131167258849929100061880446373082118244999595609167539273258394794455928954786337308109209279098988566683248303966534498726122883182526341070527014680236075450469640425983221478040313129565172569607821217103034433036709739770025130757271841587365353127294997978171856786842201208929253543 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3e28f8d7ce9c18d1c867bc3788ddc29544146df2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bkwolfisberg.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blaskapelle-wolfisberg.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bkwolfisberg.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.blaskapelle-wolfisberg.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0037e33e8949f158706fcd8ccf3f71cf7d7b96f94cd1d0d561445af4fc6e99850d46ec90ea560c0a0e8c197804b62b6ddd5b593f0fba21bb8c3d144ab167fd7735e1caedf1f37c405727d5e86c4bfc79af8bebf64acd537620ad5fda44f88f994bb91e829a51375d5896a1eb29b503e51a933487e020fee56175c52398c4ccf63f85eff1994a9bbb99327c18ca64fe2a418a12b3b97a3f72d02f7f764e5cd51333ebb2936277fc8ca86ce40727670d76b770bb619545d4a783c646544b8b249ec71f64137ea5ed7a85893f062a9b9ad2cf034eabc6671976df760cf87adbbc9773fa1eb4e892ec049f49f0a23e4971bec7fcaaac18f9c4b69f8f5a8c7356be888d