DV SSL/TLS Certificate for artstone.pt

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the artstone.pt DV SSL/TLS Certificate

This certificate with serial number 06:41:f3:a0:7e:a8:22:18:fd:cf:2a:7c:aa:0f:68:3b:2a:b4 for artstone.pt was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for artstone.pt provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:41:f3:a0:7e:a8:22:18:fd:cf:2a:7c:aa:0f:68:3b:2a:b4
Serial Number (int): 545115905179800074200039672807935557970612
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 6d:67:54:11:eb:5f:61:e7:43:be:84:b8:d8:e2:af:af:b0:85:20:d9
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 3f:e9:3a:c9:3c:fd:00:32:73:3a:fd:07:8f:c6:79:97:b8:5e:dc:1a
Fingerprint (SHA-256): 98:f0:5a:83:33:ae:ab:0d:6b:bf:80:74:03:2e:7c:3b:e7:8d:7c:a7:21:97:d7:33:19:70:17:87:d3:db:37:95

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/53.crl

Check the revocation status for certificate artstone.pt
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for artstone.pt

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for artstone.pt in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGADCCBOigAwIBAgISBkHzoH6oIhj9zyp8qg9oOyq0MA0GCSqGSIb3DQEBCwUA
MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD
EwNSMTAwHhcNMjUwNjI1MDQxMjIyWhcNMjUwOTIzMDQxMjIxWjAWMRQwEgYDVQQD
EwthcnRzdG9uZS5wdDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMnP
r5R3lM2yq08EXr2daYAlfWUUUQ1geCqn6gY2Y6HMyjBWdO6ZD4YIoXJK5OMj7U+4
+AhhaWQPgoytuF8uMihDKCbp74tnzQUQgC5vPkRZfC6iiiOcsFIlh2o30gbYERYc
XreCAmmHFdzYPHSLizJp490VmO/HPo/xNOFKcJoNcDS4K42oxEztqYnOQBSBUXyY
6PPAkgOZuQ0hBFiV0qoaDLdPCg3n+asEWellSw6b8IPQ4XabTMVP7qJvPROAONZX
qDVT/83GYOV8l2U73ebEk0Satl/wY63ZQo2yG8jE/QYx1y59Q6Lh2Wd8HbGRp2Of
a5RDTUUk3JIQi3x/K8O7xFBRU3KSuUFoc/q7ZLxboCByb0IOauHEyG16o9JHvqqt
OvXXIshNeTwhEXs6G0DenTni3Cj2BLj4tvtHZDRwe3EN5N7b7c1miRn+YfavUJcg
1lsRINjb8sz+ksJNgFSapA0SyiucU59NGS5KK6ho8h8muWfAuSvSCT11xKQxAe/7
7FdaCBcnxDpr871sfMliQsf3hF2rWhiOUGgsxFFvMboFp4hFx3GDxpuaMOjsX6JO
/S7n2uP3okRUaOflqp8nJaBvNl6izA8X4eC34MwnOjy5sjzI/tYzyrZRK/MpkM3v
rr5rytJPmoQCZH4kc4WFzbfDOtyiPv9uionrytGpAgMBAAGjggIpMIICJTAOBgNV
HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1Ud
EwEB/wQCMAAwHQYDVR0OBBYEFG1nVBHrX2HnQ76EuNjir6+whSDZMB8GA1UdIwQY
MBaAFLu8w0el5LypxsOkcgwQjaI14cjoMDMGCCsGAQUFBwEBBCcwJTAjBggrBgEF
BQcwAoYXaHR0cDovL3IxMC5pLmxlbmNyLm9yZy8wJQYDVR0RBB4wHIINKi5hcnRz
dG9uZS5wdIILYXJ0c3RvbmUucHQwEwYDVR0gBAwwCjAIBgZngQwBAgEwLgYDVR0f
BCcwJTAjoCGgH4YdaHR0cDovL3IxMC5jLmxlbmNyLm9yZy81My5jcmwwggEDBgor
BgEEAdZ5AgQCBIH0BIHxAO8AdQCkQsUGSWBhVI8P1Oqc+3otJkVNh6l/L99FWfYn
TzqEVAAAAZelfvzQAAAEAwBGMEQCIFePJtUpJ7wSTL9AmOqIY2cTwAEJGYICObcQ
0d1awnHCAiA1eWkgdIZbMIx4n6qh/K9yky0nRIplYBeGc8RzaMmLhgB2AK8YGijW
jKPgqYpMnGerCfi7vCK6rryxOKOhndP5tgMNAAABl6V/BZgAAAQDAEcwRQIhAP96
Tm+a+m8cJ9Jk3Z2f5v0PxTZ0s4FyptUSg3LJDSIaAiA2WIKcjQUN41AslufgDUcA
UbPS0jXC5rWilgB6f9TSjDANBgkqhkiG9w0BAQsFAAOCAQEAcofXAOncQZyq5cnf
zrSPpn++s4MOsDrq61LXdLpy3wgUJKN0nWaZOlh47ks1PL1dyFej1xArlCcllXa8
Uxwk1U+dKHl6dMB9qbKrjNnFxiIusCuTpvjNMZeubcMOhGONufop0DSZ7QWqt1DH
2+IrtG63+dHIqwmpXjQeDvxaWhCwKmkRomCQO3Mrd4QyOVVP+1QvaJ9RDEvwDcV6
TjCs9Sku4IejMiuIf62fr9EY4BpU7qN3p/CI0RJjhJULZaCl473xJOVAG/4JYhfU
BRoaQJogQSEVVlFZvWcszo1uHeIb5ju9bAYDRe76Xn+0Zc9pzKd0tRv4lRh6kL0c
bXDGlQ==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 545115905179800074200039672807935557970612
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-25 04:12:22 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-23 04:12:21 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'artstone.pt'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 823318162294735918879991995101054084667118853973149239924722683520686513547342442076348024729921748577568414716953809709308263056604405052103242142259128891084290691681089367009484051409369274968556388873023435480805860823376910865446740005689748258476635152054999119490112743210706961958934098277597051943332905259722053360038395943912121517755983945474523936695384149428231488116714933847719781756176306941385742675654821770082163210387225254041795093181760136736054134017518291150728677532899981560122790527344189578614581394151772387134091168658636848672244128004723691395610059676948511288864240630626953976406849773391611105979667640283845220616921368591374899553330575238001838855611635329458842506966712858112077609209165489417559443635194757283885303368503590672746298329910776276857457861628498489913179490762658856315006753695748892783007610816841558028986318259159456581252289540061727251531485790154997726432010936354143014221143470299916496409968481959943768575798315436987865722855695710999037953500049819641394571623857083593682640840716391458219950855424300734117054016504643932321549442167404403942573155978878384734897636584025130487541180361197949767158527714292939798793062988904133601137909188488269029584851369
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6d675411eb5f61e743be84b8d8e2afafb08520d9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.artstone.pt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artstone.pt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/53.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500a442c506496061548f0fd4ea9cfb7a2d26454d87a97f2fdf4559f6274f3a845400000197a57efcd000000403004630440220578f26d52927bc124cbf4098ea88636713c0010919820239b710d1dd5ac271c202203579692074865b308c789faaa1fcaf72932d27448a6560178673c47368c98b86007600af181a28d68ca3e0a98a4c9c67ab09f8bbbc22baaebcb138a3a19dd3f9b6030d00000197a57f05980000040300473045022100ff7a4e6f9afa6f1c27d264dd9d9fe6fd0fc53674b38172a6d5128372c90d221a02203658829c8d050de3502c96e7e00d470051b3d2d235c2e6b5a296007a7fd4d28c
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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