DV SSL/TLS Certificate for brigittehirsig.ch

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the brigittehirsig.ch DV SSL/TLS Certificate

This certificate with serial number 05:14:39:76:ee:3e:40:61:07:d8:7c:31:a1:54:c2:74:92:ce for brigittehirsig.ch was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for brigittehirsig.ch provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:14:39:76:ee:3e:40:61:07:d8:7c:31:a1:54:c2:74:92:ce
Serial Number (int): 442443460516154605905267703007304119259854
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: df:a8:3e:a3:dc:59:66:2f:63:41:ce:62:84:de:ea:31:f7:12:c9:54
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): d7:52:2b:53:d4:36:7d:d1:00:49:4e:d8:15:1e:db:0a:51:54:c7:31
Fingerprint (SHA-256): eb:07:70:ec:6c:a5:01:93:bc:77:36:8a:18:87:ee:93:53:76:c1:34:63:70:2f:36:e6:ff:96:65:28:7f:11:8d

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/79.crl

Check the revocation status for certificate brigittehirsig.ch
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for brigittehirsig.ch

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for brigittehirsig.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA18jriy+MTwiPjmuaL+KX
eGOXOT7AS5Pnj+Y3iA5avbPPQMZGbi2Lgu4imFpcGj4H/BdWPf1qhCK4sg2op5iJ
fWdckAnJTO06f4TA2hIIsRaDjnjtO/3Qs6f2bwxGzof+97Vc7Sb4Q/LY2cjSbhfu
4PKTqroZ2gv1genouyha1q/oWUCLFA7KgqICgCwWPVwSHQfCWK9XpuWzjTSCMcy4
zYVyOvDP2VUBBBrmYt1UKxEKObAdkHwXzp+5AiAPet8mEmpzsvryRiWpoxxpH4VT
NlwafDnzH1zQxzixSGF4Djqwk3zhjqBAU7GtNWl+C04O9+woTmrFw6tRZwwFp/mj
2sJMforjc0VI/en1e+eYVvQtwd3hdQ+gIPmyrqqTMae0mwMe5TiMmz5YvjsZWJQP
Ufa6fYde9eUINJETkmQ7JS8EaNwyWxWu514UY307jN4C8hbpp7UDtUf2lGKy28u1
dL9mMWdReLBdbpdBANneZtpLXBmMgBhMTcfsHzCcEK2K72svm2Jqq2j3NsQrm6qr
nhjYnny5oEBVG7rRRxa9TmBI08KCdBTv23GPnP6hqsmI3Um2t0zQn+EP5+ebq9oo
S5eVWMONuaVXNBaMhsrZjUY1LtnvSXKsQ82Omp8+VVZgkNa9zZFsF7SQwv9mCLtw
ksADGcubu9fQDe30XqRnQnkCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 442443460516154605905267703007304119259854
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-18 02:45:12 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-16 02:45:11 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'brigittehirsig.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 880325359248316309521511681216471556490582550825806191572972587593819584748448755267088187977441353160530413956561047226566481408791395297291265512175966548645897712158016180246665625767340483204872191627181520994553397684706240466461180322263650242154429432995827819179616254145908560639281278993730411375814195979865577308020645900817660500493102087248127241351189391738767083942765054927734446970683114869379693690528206175626150593727162568368552499597971205545233286779362020571572641117771136465735135960037893466586438415070946175449301903732856837641115167432962220551547912042904450632427323365538958941943414239146143652351347818536707293136964593555212063338361371557287508869263723155308334149975987953387598118862805919700229991743214479877689105266925193476070191355356928216465264253564087082813455678493510589520556811625935315326799486489411867560435481061071228324610634729980383573795665208293235845439222071014645593064160066036841933468589687263072292443652009882242045818670815702346030632373271250650461608167172735888599171283761892703552662937120653250531764583604188591295384907813486344578723720609076897612337899857531733466994125212998951339532564663508270811038485765670655817566177593967243475007521401
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							dfa83ea3dc59662f6341ce6284deea31f712c954
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brigittehirsig.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.brigittehirsig.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/79.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500ed3c4bd6e806c2a4a20057dbcb24e23801df512fedc486c5700f20ddb73e3fe0000001978122ad3c0000040300463044022059def8897d25c6c7b149cc4d2d852e3e0e041273f342c368181c0c7a6432ccb3022028981628da0ab2402c00dc9c7a5742ffb2192f5a7c11ab75a8ba8fe1135c39c80076000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa34000001978122ad4a0000040300473045022100e34847de72a399aef905898b78cf0d1ce4109b09514746c37954771836bb1da5022056d68031b055c65d65c0626f3e5ac40c4f6172208555c7d925b19eb3c44c123d
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00c410c286500cdaa4792e7886094b07516cda0b8595f2354fdee4f0fb683fc9f6626bcedf82157b3c31214e2bb29ddbed0b76d4e1f544d028ca4abd762438f7a3e90913f994d05709292723fcfdd853a024d494f4862c47c02b238371eb0f661d12f0e66f9e608d48643bf05e1aa33af87ae808b04daa3e5a39cdfe29ab3dd61ca0ffe986b8d2b52e3532d0a06bbb968128e193db19ac47590bd545b4b4fe9de4081f3cde16234ac0a82a248ee72d8f5a67d6b2299ab722836b21b3b735ead281e4c6fba511837f4157390a9d5d9766f0d0eaaafaafcadee7947c270cbe07ace31722248fa092982bb0a107e94b94fb71b03252d3a6ce1bda0e44d7182b5be24d