DV SSL/TLS Certificate for bryanc.co.nz

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the bryanc.co.nz DV SSL/TLS Certificate

This certificate with serial number 06:47:1c:53:77:70:5c:8b:20:62:86:5e:15:7a:dc:f5:e7:2d for bryanc.co.nz was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for bryanc.co.nz provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:47:1c:53:77:70:5c:8b:20:62:86:5e:15:7a:dc:f5:e7:2d
Serial Number (int): 546871415408978284671449535782630993553197
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 86:2a:bc:60:12:d7:61:19:0e:6d:b9:bb:e4:a3:d2:96:2a:3a:ce:72
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): d7:38:cc:d1:92:cc:fb:39:8c:df:43:3b:67:27:c0:97:e0:03:82:20
Fingerprint (SHA-256): e7:34:a4:28:37:13:f6:bd:67:b1:2a:34:66:04:10:ac:c9:9a:68:cd:24:0a:7c:1a:7c:2c:51:6f:63:d7:47:62

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/46.crl

Check the revocation status for certificate bryanc.co.nz
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for bryanc.co.nz

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for bryanc.co.nz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxOn7aq3bN25H9MIbebd/
QjyttRKyHIkG8Gop/i23JT2LT0eKJCdcewANZIBZEJeDNXNok2NlibMDrxXTgWYa
IMvuA6tx2ni7n1BA5E8yzuiR5vpmZVq1XTwHmMao0WeaPiD3+acIe77PzFOCnLkO
uoGpRXBcYIT+9p53wRefa6Bkf63CFKjeFX6yInwB8B/O/Y/NtlZQmcZWYIeWhMGF
IUUtgYwrweSnw39+MYwTQfRy+YjUuzA6q9TACcK3FXmQ8KaFz6HqEL8gw1C7idT1
wJpnZPYgRkI2Cg8FABVQyupkAssk4Xitc3ZelrBDTbViWWP2GI41eT4MfJkNGsiK
ZwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 546871415408978284671449535782630993553197
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-15 15:25:33 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-13 15:25:32 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bryanc.co.nz'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24858088645457471048614808177721241831295039670339476024783708002875078537404057092648094932698970436903780050628324171807849149857483918934888677211458256847152532879448510431674987767658633070423766200364954177658771587888227629291612409478104357473913726396632169343136696182101304015958091303600595567192063644433153462271977680312354997402873120260921690394883716847398281546299572216363023246816400464210252279838926119028719200373645795922076678734609646163035831885045352463787403724458220267028290575986679758459098756998852432975021415717388765626266310144456532801432475057238957644433248391340564836551271
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							862abc6012d761190e6db9bbe4a3d2962a3ace72
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bryanc.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bryanc.co.nz'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/46.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007700ed3c4bd6e806c2a4a20057dbcb24e23801df512fedc486c5700f20ddb73e3fe0000001977467b51d0000040300483046022100a4fd5cffa83b72dfd47c5057560b907fb1a81ce5ca29d96ee7eca1128d3486230221009014056b6b6c26318dc51761950da37b53625982b8ed312fb75a9dc5ca40c6760075000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa34000001977467b51a0000040300463044022071cd27a119e0f86d8b94ef64cae7ca4ff15db93edfcb63165512eb986b53e81a022030e34972c68ce9b928dec593e070e0e8d34c127c428d6ab2d0bce1643b516590
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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