DV SSL/TLS Certificate for sonoca.co

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the sonoca.co DV SSL/TLS Certificate

This certificate with serial number 06:03:e9:bc:df:fc:1d:e8:05:98:50:ff:b2:da:be:e8:ad:01 for sonoca.co was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for sonoca.co provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:03:e9:bc:df:fc:1d:e8:05:98:50:ff:b2:da:be:e8:ad:01
Serial Number (int): 524005253509103679346527932924464902745345
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 42:68:3c:87:3f:3e:b0:5e:d7:83:a1:56:25:ec:f3:4d:3c:74:b5:71
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 1c:6b:46:27:95:04:fc:d1:84:5e:8a:dd:95:29:d1:a1:94:ce:2e:7c
Fingerprint (SHA-256): e8:7b:4d:a3:4b:3d:3d:f7:c9:93:9c:b0:c9:66:ab:09:cb:69:8b:7c:ec:1f:cc:af:ea:fc:8b:92:d7:2a:5b:44

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/2.crl

Check the revocation status for certificate sonoca.co
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for sonoca.co

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

sonoca.co

X.509 Certificate

The complete raw X.509 certificate details for sonoca.co in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQASq7BPToJNNbODAPPS
lmyrIZ3VVhM/btjzNzQwHYwK+0IWrvwGE7oF5suvfd9+zAN5tjUdBdAz7205bMUe
f2/HJ/PmFIFzJOplIzMZ1oSKDRcZzDPeNVSTJqZm3VvXRd7JIUfpGuj0KTnPoEoV
fQDVTEMKKmmQzRx85NlZYw7IOQKDplXHIWnzjZpGVEIZ0fV8QWQEBgMMpY2jlIZh
s706bSeUF2qqhVsVLwGvF0jl3/KmNO3TvPJ/T7N2JhX9YBmoIvsOcJLUtneNkPUD
poD4wYiUIQ0HCMrv3ASmnUt0mTrYeMIIhWpK3nQjShpdEV0lGrLEBu8bjYVOSrI4
GQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 524005253509103679346527932924464902745345
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-04 08:24:31 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-02 08:24:30 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sonoca.co'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23859075602823784733599761078767645485028361447649520515666271814420948345322743445553805621710634803425225011214597957707922101081856669462984389507483010193253236584901438704618258813335385200415290323968088917043804018267606217690198986042252729300231151419741086878318964547554734626201721922677276370569998397566272933998626322699189511633532366713744133066642380145306644939069708491495619299827206929232060115279902908263562136096420498716030922705279454102212903922250759019311348518451828786945612641840218703597393948700935397761953921973171387225071136368602129778702023655671187065894143868451583817824281
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							42683c873f3eb05ed783a15625ecf34d3c74b571
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sonoca.co'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/2.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f2007700ed3c4bd6e806c2a4a20057dbcb24e23801df512fedc486c5700f20ddb73e3fe0000001973a404c250000040300483046022100c7928afc7d58ffd6c786988e19d457cb13357d7308c167c31f82edcba590496d022100f017764c5308cca151d0c8ec7d226a38c5660d5bef334b5e93519f7846882f2c007700ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db0000001973a405beb0000040300483046022100b7677556cfc8c3a25e8d97c048c7ac7dc78ad9568234e56b6bf34393ed37e263022100d5cdea6c9a331476dc524f45c59f075fe37e23ca2e1189726de468ac2f7e8992
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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