lesjardinsdouchy.ch
Issued by R3
About this certificate
This digital certificate with serial number 03:4f:6f:ab:d0:b1:72:28:3b:a0:20:25:cf:53:79:05:34:c9 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=lesjardinsdouchy.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:4f:6f:ab:d0:b1:72:28:3b:a0:20:25:cf:53:79:05:34:c9Serial Number (int): 288367601205129725925193165678001617450185
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 38:6e:46:9e:64:44:2d:e6:46:fd:bb:67:15:a9:e7:32:52:b7:97:b8
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 3a:bc:49:94:15:e5:9b:0c:6f:bf:98:d5:a1:51:9f:57:c8:51:1d:87
Fingerprint (sha256): f9:31:61:e3:30:96:6c:63:84:3a:22:01:09:dc:d1:e9:c9:b8:ac:99:83:e0:45:ac:ae:be:fa:16:37:2b:64:a0
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate lesjardinsdouchy.ch
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lesjardinsdouchy.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lesjardinsdouchy.ch
lesjardinsdouchy.vhosts.ispweb1.nimag.net
www.lesjardinsdouchy.ch
www.lesjardinsdouchy.vhosts.ispweb1.nimag.net
lesjardinsdouchy.vhosts.ispweb1.nimag.net
www.lesjardinsdouchy.ch
www.lesjardinsdouchy.vhosts.ispweb1.nimag.net
Other certificates including the domain name lesjardinsdouchy.ch
(limited to 100 certificates)
Certificate
The complete raw certificate details for lesjardinsdouchy.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGaDCCBVCgAwIBAgISA09vq9Cxcig7oCAlz1N5BTTJMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MjMwMjA5MjJaFw0yMzEyMjIwMjA5MjFaMB4xHDAaBgNVBAMT E2xlc2phcmRpbnNkb3VjaHkuY2gwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIK AoICAQDMAEZS+999mT89mKZaoCUrEPM558IMlawX9EiTNbYYQGzLODqz4eZnkx0a HP+vXeFwDDoTZ4hpZEGaZTPtI0Bi+qwl5aYakKrefQZDmcEMJ2+a+sLVTSvXCIVg DYPU/0/R1+kNOhz9l1vujAl831DaHlIRqugVkA/TwhUFmuMmc5X3qmY3ZT0cDf+J eoF6LfSgIDkdJ8KDDJB+NIges5uPwaDBZ8jP4JT6zqzyQjtbvIn8u5yP2mQgQv7g +YFOmPPaKtzDsfCbFlLU05u8inCGB1ZpjU6WFPXLfaO27R5fUUBXWX8mE5yR953V +c/TWJxl7aYDNqeTbGryWCbuAVoUWulyDVAmn6s4nRwK1ePlZWMzWHQw7JDGmL6T VjHXxLJ7RJ7nqGUz4HijUa/RNkIzhchE8aa53O1dBriUTamLWPfqvsPJOIz142Ea +2GaByRcuF+wBYU67aYz7dXcMt62WHpgIs97Jrr4N843oFHqzEMmKcUj6FMmwv3q 9Urc985U5znKZ30uDZ/6Yf47hahBHULzTXE62+j8w+TL8V2Qd3YPhkvCWRmC2NTf uwWqe4S6G2+iOnw+sC7aRCtG2duAodAYnOJAXAqvSPf65nX2mo+6n2E7us3HbBX9 F7yTEBZ9gSZJm5mdzzuSsxFh6whHMLejb0vMgT8vvyGehujIqwIDAQABo4ICijCC AoYwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ4bkaeZEQt5kb9u2cVqecyUreXuDAf BgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcw IQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYW aHR0cDovL3IzLmkubGVuY3Iub3JnLzCBkwYDVR0RBIGLMIGIghNsZXNqYXJkaW5z ZG91Y2h5LmNogilsZXNqYXJkaW5zZG91Y2h5LnZob3N0cy5pc3B3ZWIxLm5pbWFn Lm5ldIIXd3d3Lmxlc2phcmRpbnNkb3VjaHkuY2iCLXd3dy5sZXNqYXJkaW5zZG91 Y2h5LnZob3N0cy5pc3B3ZWIxLm5pbWFnLm5ldDATBgNVHSAEDDAKMAgGBmeBDAEC ATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1ALc++yTfnE26dfI5xbpY9Gxd/ELP ep81xJ4dCYEl7bSZAAABisADY7gAAAQDAEYwRAIgEnJBl78e5Yt2op09HtsApGuU WUwumIrzMpcGalzzYfkCIHPHvOOQN0su5vxex3Vl9C5i31dUK3vzU0uncRQb+XQx AHYArfe++nz/EMiLnT2cHj4YarRnKV3PsQwkyoWGNOvcgooAAAGKwANj+gAABAMA RzBFAiEAk9vjD84rRb4C+2gKGZu3LDMz0vKON9IEC0Uk/A+rEuYCIDsklKMp68iH p5WUuEqEvbuSwCO2FVkwFcpnsapHAzrNMA0GCSqGSIb3DQEBCwUAA4IBAQA/qbOa gh6Qy/1IcLOl3YlH6o/CR0r5mpcG5P9JF+pp+4a+D3tEZEWPVYF7sYuLpPGFbLh5 8ULzs8D7veCFafShCOHvTFpLBMjbF+nX90aZasdd5g2ymMoH11n+4Gx7buLYNpif C1XBZkd3VsuyXGS09CY6G+qDw6ZhOo7fUy0VnKn60vIsJrbQVU+jAYRNw0KAUdlA PRMSnBkvVIZCDDEw8M2LxKIx0JPjWJf73A1SaUlKUQcd5xGG9gfDIVU7RzA0NmdM xnvyTqjCx1Cr3N4Riy7BOLAXmXrz2PHMkKZ8QZKXh5mxyPzHoDIiHsXn3nkIZwje tw9uD9vrp03PoU5a -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzABGUvvffZk/PZimWqAl KxDzOefCDJWsF/RIkzW2GEBsyzg6s+HmZ5MdGhz/r13hcAw6E2eIaWRBmmUz7SNA YvqsJeWmGpCq3n0GQ5nBDCdvmvrC1U0r1wiFYA2D1P9P0dfpDToc/Zdb7owJfN9Q 2h5SEaroFZAP08IVBZrjJnOV96pmN2U9HA3/iXqBei30oCA5HSfCgwyQfjSIHrOb j8GgwWfIz+CU+s6s8kI7W7yJ/Lucj9pkIEL+4PmBTpjz2ircw7HwmxZS1NObvIpw hgdWaY1OlhT1y32jtu0eX1FAV1l/JhOckfed1fnP01icZe2mAzank2xq8lgm7gFa FFrpcg1QJp+rOJ0cCtXj5WVjM1h0MOyQxpi+k1Yx18Sye0Se56hlM+B4o1Gv0TZC M4XIRPGmudztXQa4lE2pi1j36r7DyTiM9eNhGvthmgckXLhfsAWFOu2mM+3V3DLe tlh6YCLPeya6+DfON6BR6sxDJinFI+hTJsL96vVK3PfOVOc5ymd9Lg2f+mH+O4Wo QR1C801xOtvo/MPky/FdkHd2D4ZLwlkZgtjU37sFqnuEuhtvojp8PrAu2kQrRtnb gKHQGJziQFwKr0j3+uZ19pqPup9hO7rNx2wV/Re8kxAWfYEmSZuZnc87krMRYesI RzC3o29LzIE/L78hnoboyKsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 288367601205129725925193165678001617450185 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-23 02:09:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-22 02:09:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lesjardinsdouchy.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 832251767584921740970329716910208962347616119672862046920994996926484358903053336509342196932301226068206487549827743414734762023309120466039570253307330373776175818220424827822668707082733244791809787551289257989740244843343187596515962666800526730098134986238209142464781169263797789109966257730971922153441286467396930965666656121311654900333380916523314940791359745808605972160461703426609688969549465996657758240235914305441915579180849492498486876407667522815104101067808882995555193464117113748636064745075143945961191314790756800341230507614865936853162948788117000997073299585871751457297906681680992417066216385390690489704356772897178191519228262426048136155579606355003301899218500745459052356233171812649827805482846428898067079839105008446769245409311179318877769315173241021285974816875589468581252791126716466810958091664753465919246499159861266510558995463996393541868060083899987575404118790387025899000807414797968786077588501910552282387636839763260127827578334826671852270075851230587835599704829237580934430477613516800134635634062185032446970024456474382718300591001516941490263109943035007950483466666053890917818908675921786526349058376761507537286323229724856495573373511273704271300531044001067714774354091 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 386e469e64442de646fdbb6715a9e73252b797b8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (139 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lesjardinsdouchy.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lesjardinsdouchy.vhosts.ispweb1.nimag.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lesjardinsdouchy.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lesjardinsdouchy.vhosts.ispweb1.nimag.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018ac00363b80000040300463044022012724197bf1ee58b76a29d3d1edb00a46b94594c2e988af33297066a5cf361f9022073c7bce390374b2ee6fc5ec77565f42e62df57542b7bf3534ba771141bf97431007600adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a0000018ac00363fa000004030047304502210093dbe30fce2b45be02fb680a199bb72c3333d2f28e37d2040b4524fc0fab12e602203b2494a329ebc887a79594b84a84bdbb92c023b615593015ca67b1aa47033acd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 003fa9b39a821e90cbfd4870b3a5dd8947ea8fc2474af99a9706e4ff4917ea69fb86be0f7b4464458f55817bb18b8ba4f1856cb879f142f3b3c0fbbde08569f4a108e1ef4c5a4b04c8db17e9d7f746996ac75de60db298ca07d759fee06c7b6ee2d836989f0b55c166477756cbb25c64b4f4263a1bea83c3a6613a8edf532d159ca9fad2f22c26b6d0554fa301844dc3428051d9403d13129c192f5486420c3130f0cd8bc4a231d093e35897fbdc0d5269494a51071de71186f607c321553b47303436674cc67bf24ea8c2c750abdcde118b2ec138b017997af3d8f1cc90a67c4192978799b1c8fcc7a032221ec5e7de79086708deb70f6e0fdbeba74dcfa14e5a