DV SSL/TLS Certificate for bryanc.co.nz

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the bryanc.co.nz DV SSL/TLS Certificate

This certificate with serial number 05:30:87:63:7b:7c:a7:f5:98:74:9e:eb:b4:c0:8a:7e:81:e7 for bryanc.co.nz was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for bryanc.co.nz provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:30:87:63:7b:7c:a7:f5:98:74:9e:eb:b4:c0:8a:7e:81:e7
Serial Number (int): 452074945592438892374479906513351773946343
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: c4:0f:a6:d5:a6:7c:05:d6:5c:49:8b:b2:17:17:b9:08:99:6d:9e:33
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 01:17:a0:de:eb:31:30:9a:bd:25:7c:f5:40:ee:32:d7:90:db:52:8c
Fingerprint (SHA-256): 20:3b:53:fd:81:3e:e8:89:6c:e3:1b:39:84:04:5f:99:0c:a4:ee:c2:cb:1b:27:db:f8:ab:c7:63:88:2e:39:53

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/104.crl

Check the revocation status for certificate bryanc.co.nz
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for bryanc.co.nz

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for bryanc.co.nz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsbHcErErn/mryZWB4dLF
jJulOX2plw7ijZNZkIpP80x1w3WuRdLSvvP3bL3M5zlwB6oRpomH3WKkB+BPaO6h
CXKz+BTJEpCpej7gMeImNpryYse5f7rnnfJdOryHB5FGbNB944F6U7Fe4XMFrGHq
FQPQ6Q1VZxNd637T/2+B/dQ6VjEAqwK9VLlbWMTA6vkVkhG/GiiK5YWnyxI50nS+
fYW6nV8/WqyaC2laf/Egw59sgiOr4H6JqMRFRI7ElDZiUhaVsZqrW3IfbVn4b2lQ
1fqnKWu+0lAeCL4w2/KULLmGk2Ro+FZJbuLzzKsezmMnJWhCAilcsSC2xWEvZGkO
CwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 452074945592438892374479906513351773946343
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-07-17 20:19:31 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-10-15 20:19:30 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bryanc.co.nz'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22431885846288500087840759014658996913212441151034701681365320565155703727347446466614503979070020127959401240491539490775648943636760275715796993229668392444987524835516711982940319863226544754881880845663745091989220185510388338787745409838502730067108553815415452275618879944721249474907627376804213713799126786610245879368350301502355607370323206012425417198542028359252189724032269497312452037860066828167002764353784579636606249772998134224562320883233029714638974063288390703469780069499616930782272580660242400683961808616179600815828364290162824059808826709354508495577808432440146335768947047567962415894027
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c40fa6d5a67c05d65c498bb21717b908996d9e33
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bryanc.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bryanc.co.nz'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/104.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10077001a04ff49d0541d40aff6a0c3bff1d8c4672f4eecee234068986b17402edc897d000001981a4058ed0000040300483046022100fc4a4ccbe9f0ac4cf22914bbc1a14b03656ccbe7bd91befd4f2803e329afa625022100a7df4869270ef23ee218f9302cd6db6c1efb58d3ddf94453ddfdcbbedf21e5da007600dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a000001981a405901000004030047304502205ed7a367c42e2f22bf805416ba1b7de228271f29dd9711d0907d8c8ed7a0f454022100f90c7c18eed9bcaeb635d6e31eacd209d6ce972f79b8700d8969ada19739769e
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		009687a469eef868574599b5395bc212a36433cde61d359d05217defb22c8ff621850562c3e895ee78eadf23fdfa0e6d4fc43d2bdb916586de3d3ffa816c18d9fcd9480b72f9133570e7eaaeede92d0e995bc8af63417d0baa834820259b9831d3e2747e4057be48eaa60a44efbf08c55fc4ac76726d6bf0838eeef524f70da449d9d95ee5087b8136a109ce1683fe45b77b325f1eb33060a0a7df10ca3e7ff5936f3b78873b812e13c3c4d72eeb16b217df17a40daece4a3680eab9ad7cdd6686afceb317f782658db9342e11a74588ed0e556bdce6307c36ee08d08f5306dcb64a90283f2439cf950d3465e217a584ed24557989cd64b8cdc435c214154a9c2c