DV SSL/TLS Certificate for milan-berlin.lib.oh.us

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the milan-berlin.lib.oh.us DV SSL/TLS Certificate

This certificate with serial number 05:57:0b:ed:8a:84:42:59:65:fa:a1:4b:48:49:ea:f8:6c:d0 for milan-berlin.lib.oh.us was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for milan-berlin.lib.oh.us provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:57:0b:ed:8a:84:42:59:65:fa:a1:4b:48:49:ea:f8:6c:d0
Serial Number (int): 465181850472683163225624880759128343473360
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 0e:ab:49:66:8f:7d:fe:e8:55:7c:9b:34:c5:61:2d:86:19:e6:01:38
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 0a:de:f0:c2:d1:50:49:20:0a:c2:13:f8:4c:4f:cb:03:f6:d1:ef:38
Fingerprint (SHA-256): 38:f1:22:36:28:37:f8:6d:aa:c1:9b:1b:e4:59:52:5b:9a:c1:b7:c7:d3:65:da:11:fc:d7:f0:7e:6c:30:81:84

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/81.crl

Check the revocation status for certificate milan-berlin.lib.oh.us
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for milan-berlin.lib.oh.us

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for milan-berlin.lib.oh.us in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 465181850472683163225624880759128343473360
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-13 03:02:52 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-11 03:02:51 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'milan-berlin.lib.oh.us'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 751954756649717136470259154416768641228091493076880229196051607294726128845792720068220984488184288800102466793737214820825706053414018446875926724235693327670693615588446126409838296894287007046623020317848306583795502056042460089889912870771364406212609928295802269813570942692907319056364165835711732764085576227778244342965590488037073499475442638787211337445494812747132005372203528288931193553717237624779479456470049920829507055263235961991705001875240711531623217226603656841123089815412566877865345634714168778549716414181674006901456629447532358416147125488785989987815434180436664481147511294557996101588222177665853118177441942951762764647146895850413207809846811794772591828038763148593845120757885908023109559219888318469089261821357461723116461578295883093990332330595986709000842055926849407008293023188534376118771038899663357257241652875445376908163010707097775000072042712227871843285854038040682810809077134403996613185039174445724554957896416410259721748464482208712138267690437396004325145424258589920280151267920062189149225610688668553906110077381494671682609810134922122516448166107619576261656801941303540055977103999307237745732397765234395954071626515507285981188658243936671435668583385342945982193472829
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							0eab49668f7dfee8557c9b34c5612d8619e60138
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'milan-berlin.lib.oh.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.milan-berlin.lib.oh.us'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/81.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db000000196c7cde8f20000040300483046022100c31f75eca742de2b99cf0f957fffcf7488f9a0e9d852b2160769cae5fccd12790221009b4bd90989d98aaf71bf80bcd2eaff663ab88b0c16196c0a8d2d1372a05aba31007600dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a00000196c7cde9210000040300473045022100beea2d14e733b137bfd98bb28acccbb970c422fec23cf6fad9a4f276113dad7d022062953eabc7509f7610ca422114b2ba8d60dd1f725ee0f999265fa603266eb1bd
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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