DV SSL/TLS Certificate for riesenchristen.ch

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the riesenchristen.ch DV SSL/TLS Certificate

This certificate with serial number 05:0b:ff:f5:ab:41:2e:0f:c1:16:69:7c:14:11:90:23:dc:22 for riesenchristen.ch was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for riesenchristen.ch provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:0b:ff:f5:ab:41:2e:0f:c1:16:69:7c:14:11:90:23:dc:22
Serial Number (int): 439644764420043179055608140033344091184162
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: cf:10:66:b9:2f:36:d0:69:ee:12:c5:f9:31:09:40:7b:83:49:06:95
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 3f:9a:ed:11:e8:de:2a:c8:fe:d2:88:ed:84:5b:28:5b:a1:f9:29:d2
Fingerprint (SHA-256): 24:e9:38:d5:3b:95:c0:aa:c4:f8:3c:d2:b8:a8:67:c9:97:11:60:74:90:79:54:62:92:39:30:c9:10:07:55:97

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/35.crl

Check the revocation status for certificate riesenchristen.ch
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for riesenchristen.ch

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for riesenchristen.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 439644764420043179055608140033344091184162
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-03 02:37:09 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-01 02:37:08 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'riesenchristen.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 880969079731023005931296936860123104846945262230437135516743772057152858259723271793067508528433342344799042122272753437132947569534908562181941345341010551537074557193266772026999474570259272001219286283911392252738010300639520593601483391087112956716488305726826376705513114574230908941725074760719302934075307276911855639882325961288606164491722962549785952404617420387772949387266202134504771254705025899516846064361326269003656153948017550907034851054251355070202143640038888055558611596957652725426257746569582155043589951680079431131644434945232944411841197914553615861550208098891650565391695547133372925797227508640422090546421001665519355527870739524534071904849537491391112326650389192124495272989067533921381111257761968820950197352825418486671718237107981232976828141185040011688406049493129314693591853773767482419287954753426972459004670927474852579942910744968986259694824851397178977469694949621382157071470570417516067010395425833037846766071782378716471437418368718752125740132944775190655803121215929251529744167727380831053114426790737391310748532549625033929028161275431834444166782980455115050827995304622415376073219252760320418212941775135139483776645499716492369313131592937444311742683759200076446625982057
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							cf1066b92f36d069ee12c5f93109407b83490695
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'riesenchristen.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.riesenchristen.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/35.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db00000019733dbe8e20000040300473045022100cedf0e346f57004e297b79cf5207c70f5984d55bbfa87143a9fc8881f8971aa20220345e255085720f94c6dfd502df23d2e24893419be7c23b4ff7f9c6042e1bb375007600a442c506496061548f0fd4ea9cfb7a2d26454d87a97f2fdf4559f6274f3a84540000019733dbf0b00000040300473045022100e37b802701057f8f8ef20340fd728680542032e93d6124414b8a9c720b0b87b9022037ade56c1ee7cbb3dbf7659300850dedafb2dcb02818d42b48effa8e01e478f2
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
 . . . . . . . . [c:1|t:27|false]  
 . . . . . . . . [c:0|t:20|false] TeletexString, T61String '3��2Y�����(�p����@�s��-L���O�z�6'8(����U!:��ʨ��'��[��`���A�VP(�[�tc��|Ay��f'
 . . . . . . . . [c:3|t:25|false]