DV SSL/TLS Certificate for www.hug-twinleaves.net

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the www.hug-twinleaves.net DV SSL/TLS Certificate

This certificate with serial number 05:e4:e3:8b:24:df:69:ad:c9:cc:bc:00:7f:76:cf:fe:46:21 for www.hug-twinleaves.net was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.hug-twinleaves.net provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:e4:e3:8b:24:df:69:ad:c9:cc:bc:00:7f:76:cf:fe:46:21
Serial Number (int): 513448266548949047142269900872967375439393
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 3d:b4:70:af:0e:9a:70:05:7e:65:6d:c8:dd:59:88:96:89:57:77:68
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 65:ae:03:ba:23:4b:b5:9d:87:36:64:a6:33:29:0a:e8:b1:28:17:fb
Fingerprint (SHA-256): 21:51:cc:b6:62:c9:38:9e:d4:c7:c7:1e:05:f6:16:21:47:52:bf:e7:7e:6e:6e:c0:9e:a3:08:8e:c4:d0:62:9f

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/34.crl

Check the revocation status for certificate www.hug-twinleaves.net
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.hug-twinleaves.net

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

www.hug-twinleaves.net

X.509 Certificate

The complete raw X.509 certificate details for www.hug-twinleaves.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw7Dn9aMJMUFDGKZ8y7iz
qx2ZZu2/XbFLua+bOTuTv7/YoeoIFSNmiJX62CXZI91qvajEYZSCkDSSaBLZ3pgw
8q3b3GODW/WXIVJsFecbfeAwDD1vt0kIIiw8NGgxonHL6w2DsPl0g+zTj6a8aN9K
h65jbOZzNv+PA2MGAbU0TAvLFyPUx/7OzmGg7RgHPd3vX+NngdTbxcVZZksHbX05
sK+zC49gwwpVJQKJU04AC4T3D9/9DixevMCyR5gs6Xlpd7nakI8VNCTgt+KHqP8L
+M5gcSX+Y8DQ/ihZBu5QBsf5fC/mPP1WXzj4OtcmLMZZpzOnEiX+NunDmVfq2edx
5QIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 513448266548949047142269900872967375439393
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-23 02:45:02 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-21 02:45:01 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.hug-twinleaves.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24703705113600052883506001373681611371943888110683283639184090639626886507888074075701662965205958366391900776755468683385786597510930359341136217917723217790141783525615111428066500281981002276758562357290603148574484322556019238270262369678707189036586302602428432094474191727391440551096772362672914485117692233188863023126985219349340719757297445536676888742181395565107366187528704388062242538935466409327073862822492836620751490735677154975229441747537957491642527420701815481246503238821312799944055858384330557173516323245246841719783247016425756845658062067533368144587176041934391601975997833296773971931621
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3db470af0e9a70057e656dc8dd59889689577768
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hug-twinleaves.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/34.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a00000196fb3d2d7e000004030047304502210094611dbc5b3b71115c2bf68db5524da914fb4e4c70058380c3529d9e1380cf6702204dbf180c76a290222114ed6cb6ae20d77a1590de0d311271c90fcbf260dae2f3007700a442c506496061548f0fd4ea9cfb7a2d26454d87a97f2fdf4559f6274f3a845400000196fb3d351b0000040300483046022100e32c6fa58abc286153a1c033ba806dad932fccf92de0f0881802ae64f6f86d2f022100a15da73bf987fcdded456f947478a195ee41682d62d775965a51d74ca903b163
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		006644063daff5fccaabfb927dc722c94219b4eb206653fa7f1148e7a67d7e2e84d03a899dcb4371e438edff8811873467fc6a5d00d1e71e6804e1f99b83742faf64a9d1da5cc85946233a4ae56348fc4c2b2a85169f0685ad2a1b1b2ec2173a6b2b5156fac67d2abc6a121d5c9ca6e29a9d14a9bd1a9cb293a4122dde405894f7cd22096a187cceae7b069e4c920f44f4bd40c0271226a686fbd3bb2ad88332d2acc9d71e4d8fbbdedd91124741347d0d80342ab6bca13b62ab8abb290e6134c6351cccee6e1342482b6782e3ffaff11c564bfaad86fe5e838625ecfcc292266e7912cf86dc7d49f2368e5d984e3854a6c604029ecae6499dc39c9aaed5ae7240