DV SSL/TLS Certificate for duracon.ca

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the duracon.ca DV SSL/TLS Certificate

This certificate with serial number 06:80:32:97:2f:bd:3a:ac:9a:5d:9a:04:8f:12:ea:de:80:3c for duracon.ca was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for duracon.ca provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:80:32:97:2f:bd:3a:ac:9a:5d:9a:04:8f:12:ea:de:80:3c
Serial Number (int): 566297104961322020637278610398800248733756
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 35:85:c6:dd:e0:3d:58:ad:a0:e8:31:95:25:a0:3d:9a:f6:08:ad:cf
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): 48:f1:6f:2e:c5:a5:f0:55:be:45:37:d4:fa:c4:79:0a:df:59:15:3a
Fingerprint (SHA-256): 90:dc:89:33:e6:ef:24:1d:00:52:32:74:8a:53:42:ad:a0:37:8c:4a:e5:6c:a0:3c:b4:50:80:fc:33:e8:d9:b5

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

OCSP Server: http://r11.o.lencr.org
CRL Distribution Point: http://r11.c.lencr.org/61.crl

Check the revocation status for certificate duracon.ca
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for duracon.ca

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

duracon.ca

X.509 Certificate

The complete raw X.509 certificate details for duracon.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0AOfmAZRJJTfVYsC1VD
tGsJN29ysUkChz3Gf1pwuy8VwJDwKFen+FI0BuACAaramskdYixLAK2eVWHLoeJ5
gOk2Uindm9kkNVwdvtkhuUd5KXwgvbi69jOSP+0NlpD/O4Y5GzlOgPNZNZooRQVr
FlshTfLKenXn7t8BXZdgYpM0lqF6UvovgMTh97Qym9nXoRYF74dH1k75c1Q+wAqb
gBBOmC6rAVEWrd6W38+RKTchXLwZERF2zth12yCR4XRWKvo5MHDYTXYlt6+TfthC
OvDRnfChJ0EIJ3SAsR3SYoaQobXlsyX8/cvlraAr3PcqGzzW4clc0FmZLrppUvF8
YQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 566297104961322020637278610398800248733756
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-04 15:01:38 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-02 15:01:37 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'duracon.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21113384423882245729513600880141414083642507601373552850164426428167868733241416469621831560191407961993322192153892605328178780819674641609242323401690835353951310829136300086471756214354525304683536813589151428537632059347688773953708755434043654784701703293493450324755269749288894017419764251558506929837115687444577478202944103872011016479567634358965209147454052163753259116723406195658145032851422214455978769018519120732426845917293748415652918902491077486061154980873037687923768337792159665610571187982646100083801210761812369257528574680969777751734472747222232067319119017865418401551862646208071703034977
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3585c6dde03d58ada0e8319525a03d9af608adcf
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'duracon.ca'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/61.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0075000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa34000001969c06b93e000004030046304402202c228d04a87a874832f628426fa9a7beb9c7685de30d27d776af2946665f652a02200404eedf49d0fbfc37993e3a7a1308be4b0dba042b153d99035d1a9e7f9bfc4b007600a442c506496061548f0fd4ea9cfb7a2d26454d87a97f2fdf4559f6274f3a8454000001969c06b93e0000040300473045022100b01bb15b21b4c604a65df1b0a6af401ee562f2ef86b572e24297d8c5f9451a60022035ffd0cf1f761eccdff2e3420f7d137a22b1f26089eca756e02273e9c32b0b2a
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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