DV SSL/TLS Certificate for allardteraa.nl

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the allardteraa.nl DV SSL/TLS Certificate

This certificate with serial number 06:c9:c5:99:58:d1:52:b2:27:55:ef:67:19:a2:ef:21:03:0e for allardteraa.nl was issued on by Let's Encrypt.

With 3 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for allardteraa.nl provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:c9:c5:99:58:d1:52:b2:27:55:ef:67:19:a2:ef:21:03:0e
Serial Number (int): 591333125479695419523657910693099038901006
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 43:3e:f5:aa:af:80:dd:57:ee:0f:ef:86:44:59:58:65:75:ac:17:28
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 0a:67:c6:45:88:85:57:a7:93:c5:5d:3a:27:4a:8f:a6:dd:35:a9:77
Fingerprint (SHA-256): 90:85:93:9f:85:c8:32:f3:f4:79:32:cb:c4:59:46:2b:5e:da:ae:46:c3:43:fa:70:6a:26:4e:a4:8a:c7:7d:2b

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/15.crl

Check the revocation status for certificate allardteraa.nl
3
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for allardteraa.nl

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for allardteraa.nl in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 591333125479695419523657910693099038901006
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-24 19:05:02 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-22 19:05:01 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'allardteraa.nl'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 860172654760265881647164210034193784551662533962897769229188408841258095331128720001804196994290942715279876590119767537150106782609137665488660428776866352194027320149169022555507479661875104141472019951980803536642926603714238945780850080638148162511203318521985905457582259909605153533771093902947800205550481232946675069717212003884033942885938419158695713846526468666989548263372646711106786282020808732898375189353904049281965052112661473123379290630103263912140504377612891809728073252450872709133838296350642644626713523997735419963061215364795986357024028453683107512750443868878646769796302679081423010074182798164054656545081034125891224928272319753597730454987203707404759799979452738221139236837261000068290417204446468523532675441054734257773313059174108225614462869481338201474336124111018702134252050092301195531932844299611345797304970311461781132374358992477946645749100118492383776739912541116723124562210408381629739390983783948356270165099495327456540746601763117465697078455419430668055351568016579582904749624188786607512298337808338257427171604159129891399511107820666914953776299193317853951031011531317280006603002536160225354482015407353503319353475700355207893234852795161458386603916674689375655001396789
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							433ef5aaaf80dd57ee0fef864459586575ac1728
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (59 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'allardteraa.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.allardteraa.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.allardteraa.nl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/15.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600a442c506496061548f0fd4ea9cfb7a2d26454d87a97f2fdf4559f6274f3a845400000197a389e4790000040300473045022059a8a309bcce9a18e1fe97fce5ffdde00a0c00dc0fae2d2b94941837d3d7a5fb022100f22ac59edc6f06624950ee4fbaa34827f9ed9bd5af9c6c21cbe8a2810038dc44007600ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db000000197a389e4af000004030047304502206a11f96c1ecb1a321ce5d5d08fbc819115524f257014abffc744d22756f3c8ec022100b4068e57c47a4aa25c1f357b45cb4dc68fe814af615c00ebc548b608c0f0d5aa
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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