DV SSL/TLS Certificate for bigsigns.net

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the bigsigns.net DV SSL/TLS Certificate

This certificate with serial number 06:de:6f:26:c3:57:39:7a:97:f9:2c:7c:20:8c:55:39:24:ce for bigsigns.net was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for bigsigns.net provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:de:6f:26:c3:57:39:7a:97:f9:2c:7c:20:8c:55:39:24:ce
Serial Number (int): 598364146623803080456955089962121079366862
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 16:2e:25:a3:09:f7:9f:52:07:6f:91:b5:3a:75:8f:bd:0b:2e:25:c0
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): 69:cc:12:fc:c0:3a:21:e5:85:00:a5:72:9f:64:f9:df:7a:79:e7:78
Fingerprint (SHA-256): 94:41:56:6f:ab:fb:5d:9c:e4:97:b3:17:be:15:85:c8:64:62:37:57:e8:1b:88:be:cf:7f:5c:49:17:f8:f4:f0

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/79.crl

Check the revocation status for certificate bigsigns.net
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for bigsigns.net

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

bigsigns.net

X.509 Certificate

The complete raw X.509 certificate details for bigsigns.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 598364146623803080456955089962121079366862
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-07-03 13:07:39 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-10-01 13:07:38 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bigsigns.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 1018894428056615672637130484043411910507342157809704152626365387717333796457241793117273308877978220318650283442287152045819627761309165741880049987827330996662111476330266095326506484139922608924412047950039655479071270326187908361041208535815100893031126381383408706891035141645608894746715455350469964529068221216904220528521386198889345052202459513326855155078140914292025158455191413799081465320196969824297390122564713554499111439627535299166842333946047229717116201162871807608833571785473104653461591101759497635569221974537036297018255396005644228203073311983271320137052154017600622825702534671182517041908478240043470496479457000443254355882778011360058036198064626959740183579306490739482703418615208296598963924077389517932082684257174196857227523503750546454025106986342324066279251856514548977833463465381909269579336227543796929718118615001012216360778903950688078720454711790272927301896131866599162814218943196909836976230266832356608433406596506992928414375039075857314271841501859269985192394046014675517612913509706569197005278329497797562326016940883080263988570266447082772992950457498146358777783442438537110182333743780205935502614857665813846920513300931770271484850189615185732463341181367847409745055515909
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							162e25a309f79f52076f91b53a758fbd0b2e25c0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bigsigns.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/79.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10077000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa3400000197d09bed90000004030048304602210099912c5cb858a3ab966805ec7060c93e14395573bcf2b893a6b93f9d754584d4022100c8e49de9e36ba556717cbea301fd812f6d4e0051513c343e68bff93e4b5d0a7c00760012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a00000197d09beda3000004030047304502207094daf6114eab211d7262e225f15c740637e3568d6a38e8042d741436b1f2f4022100877c0a6d665f01f338519db799b2f9f069b563d9567f87bbfa602b8a772ad927
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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