DV SSL/TLS Certificate for www.ulcberkeley.org

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the www.ulcberkeley.org DV SSL/TLS Certificate

This certificate with serial number 06:76:34:80:a2:27:75:f2:ac:d4:ce:e9:c3:05:e3:91:59:ab for www.ulcberkeley.org was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.ulcberkeley.org provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:76:34:80:a2:27:75:f2:ac:d4:ce:e9:c3:05:e3:91:59:ab
Serial Number (int): 562896822645887683903746066981390189156779
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: bb:d5:76:cd:99:b7:c2:4d:34:81:ff:1e:ce:5d:14:b3:b4:53:68:15
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): 9f:3f:18:bd:43:37:72:77:61:c1:03:b9:1e:57:fe:df:6d:3f:34:d0
Fingerprint (SHA-256): 8a:60:6f:29:a0:05:9c:0e:22:67:0c:d6:af:b8:5b:c0:78:32:74:40:36:13:8d:c2:7c:44:b6:b7:99:7b:fe:31

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/44.crl

Check the revocation status for certificate www.ulcberkeley.org
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.ulcberkeley.org

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for www.ulcberkeley.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAruiB0abeZLnuk8ucuaO9
5kedSz5vk42ldnXLllYpFJVQHZoDn+Q+ZsMitXu4fbmjUjdN3Bz+WTpXJ8papEDr
9qYn2ayd7rLkh6ke3THfHLzU5XNBcqbmVvKyXq7BvWDecwux3zW1xSuOiWb9uanD
PBF9NwiaCj688SW3X60DI8wIY/dFSOzDYXuMu1oTyxNri+tS9UN8qN6hQokVP+rQ
6WEQ1rWnrQg2V8pUGamfQJdG9XhwdxnWTdOqcpB5HO+Bn43hDg4gdN+PsrW9NwoY
TvJIOObZh8jWHn4dVyf2y57a+eCbNolItg/0/VowxIvndFjtHpJg58LV2ZbyYZFn
QwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 562896822645887683903746066981390189156779
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-30 09:55:14 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-28 09:55:13 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ulcberkeley.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22080118590904743528495411962349336352535584223024459575106395174745615827240397268284934439446483357044227210542090666697563941222565655387381369390006696821197265119229773750738672957603937663412649915605094883952499380621874832138624684750628514095515345178465409582214070544267038006172285858850701440157936506215999600691224571625000340171218705812573191911171946628548383226044986264839104072955510262356682512541445452877985670896752031759796465155275184834556295049021014439714313385244810299025906932390773545836634952613976592803212790239692824281872002877118212014681264623626032370779336964715711470593859
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							bbd576cd99b7c24d3481ff1ece5d14b3b4536815
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ulcberkeley.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ulcberkeley.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/44.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db000000197c078b04000000403004630440220708ab6b0368f4534c759ba7028b882be3de9f0593634a98c900625058bc98c2402202c593666ca2f6ac50d16a932f3b0f87f4ff5a7e8bfe635fcf3de66662419a7ea007600a442c506496061548f0fd4ea9cfb7a2d26454d87a97f2fdf4559f6274f3a845400000197c078bfd00000040300473045022100d3cc361294bcb153513d0e3b085ba8c99f4242be496079d548b8b81cf14b01f302205dc4ca7f66ee4c4536a55f1f3d80a3263b2c82922edac552ac38bae5aead6b72
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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