DV SSL/TLS Certificate for www.dominicallen.biz

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the www.dominicallen.biz DV SSL/TLS Certificate

This certificate with serial number 06:5e:de:30:16:fe:e6:21:9f:dd:12:2f:83:f1:39:7b:62:07 for www.dominicallen.biz was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.dominicallen.biz provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:5e:de:30:16:fe:e6:21:9f:dd:12:2f:83:f1:39:7b:62:07
Serial Number (int): 554955596392851343201516584096809443090951
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: eb:28:7f:c1:fe:01:f8:22:e1:8f:c6:e1:2e:1b:cb:81:f5:09:e8:9a
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): bd:0c:88:bb:e2:e0:18:98:3d:72:10:02:20:33:6f:dd:11:6a:52:b8
Fingerprint (SHA-256): 38:71:b8:39:87:a2:77:69:85:08:75:6f:eb:3a:ab:2b:05:06:2a:fd:72:8e:29:db:7d:76:0b:ce:e9:8c:2e:10

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/8.crl

Check the revocation status for certificate www.dominicallen.biz
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.dominicallen.biz

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

www.dominicallen.biz

X.509 Certificate

The complete raw X.509 certificate details for www.dominicallen.biz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISBl7eMBb+5iGf3RIvg/E5e2IHMA0GCSqGSIb3DQEBCwUA
MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD
EwNSMTAwHhcNMjUwNTE5MTQxOTU5WhcNMjUwODE3MTQxOTU4WjAfMR0wGwYDVQQD
ExR3d3cuZG9taW5pY2FsbGVuLmJpejCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC
AQoCggEBALo0Yyf4MPF3z7FkVTO4Qc2VjZEB4/Qjmr40PbMdOSflIFT5kCwogoPR
jhSc3cz8l5G5pKVSASv48IZ0fGf2Ps4dQqdrKoovFtlM1jRY6aWTCyRRxcQxvLGz
TFhK5jlXg8yXHgXprU7TeOIfSMN92IMqkcl40mnBaqVYmOq8hSeIBohtIvvFNfW9
syUcxHD5hXUK9RF2+ZR2oZYiHJo5pHUogwdrrQyPnXqlihZbca7yOfB5E/ZAicht
fx/YzTAd7OX+UsBov+XynMceYTutP8molboihGU99EHYpm6dDMI+QgXMAX9rVfTk
R2BPeanZr7i4OVeGItfZZG8tXz9x0b8CAwEAAaOCAiMwggIfMA4GA1UdDwEB/wQE
AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIw
ADAdBgNVHQ4EFgQU6yh/wf4B+CLhj8bhLhvLgfUJ6JowHwYDVR0jBBgwFoAUu7zD
R6XkvKnGw6RyDBCNojXhyOgwMwYIKwYBBQUHAQEEJzAlMCMGCCsGAQUFBzAChhdo
dHRwOi8vcjEwLmkubGVuY3Iub3JnLzAfBgNVHREEGDAWghR3d3cuZG9taW5pY2Fs
bGVuLmJpejATBgNVHSAEDDAKMAgGBmeBDAECATAtBgNVHR8EJjAkMCKgIKAehhxo
dHRwOi8vcjEwLmMubGVuY3Iub3JnLzguY3JsMIIBBAYKKwYBBAHWeQIEAgSB9QSB
8gDwAHYAzPsPaoVxCWX+lZtTzumyfCLphVwNl422qX5UwP5MDbAAAAGW6R/7kgAA
BAMARzBFAiEAg2BuHvGrTci6Y1a+p2KHeOgPKtY5IpRdfTKU6xzLSQkCICjrgVXc
dNvOaGdFRhRixIERZhFv5j1aBW7/73rAWpUDAHYAEvFONL1TckyEBhnDjz96E/jn
tWKHiJxtMAWE6+WGJjoAAAGW6R/7kAAABAMARzBFAiEAp/TQGvGx4gOcqIJDtF3a
NGLRNuyfmoWF3Txo/VPqm3MCIFJBI/bGzVn1nfZ9GSueYrB4FWnCO4SjVGF/NTke
91+fMA0GCSqGSIb3DQEBCwUAA4IBAQBg8e9CW8ymlyn6tG9SwKKSCavJYRKrMG/H
yeq6f3ZRvICd+EVBvJLQaZqnSX+2jeOzoliikaK/O0+M/GyKu2531uSHtJaBpGam
EtROM91oI9MDhqKHEjdW5oAjmZZ3sok7kf1i8NXgHjjnOMy93fqYvqpY8BJMdOQs
WzalqgEDnBLj9a3zu3Id04yt5CawD1SYycLPClHqc3trvSWeNfoj8ZRkSImpnXv7
JelMAvh8mVl9g33IS/dJMonDTBu2WW5dze32TptGHhjucvxULljoj8iySO8E5ObB
RWTfBTQvp9ye2KjBPM9BLDrWyQ2z+FAD/sn8/7aCBEoUfVmt7QNp
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAujRjJ/gw8XfPsWRVM7hB
zZWNkQHj9COavjQ9sx05J+UgVPmQLCiCg9GOFJzdzPyXkbmkpVIBK/jwhnR8Z/Y+
zh1Cp2sqii8W2UzWNFjppZMLJFHFxDG8sbNMWErmOVeDzJceBemtTtN44h9Iw33Y
gyqRyXjSacFqpViY6ryFJ4gGiG0i+8U19b2zJRzEcPmFdQr1EXb5lHahliIcmjmk
dSiDB2utDI+deqWKFltxrvI58HkT9kCJyG1/H9jNMB3s5f5SwGi/5fKcxx5hO60/
yaiVuiKEZT30Qdimbp0Mwj5CBcwBf2tV9ORHYE95qdmvuLg5V4Yi19lkby1fP3HR
vwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 554955596392851343201516584096809443090951
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-19 14:19:59 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-17 14:19:58 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.dominicallen.biz'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23506157878252230916972092872845626756657808538681728951377610173855681383568531254439393767485240791511113032512479627017394951606555579302700153854865218684710379744616590594036481251272171787453807023871653115853192632283476977014013338516954310102194549343575799356179437509121778677488886473997470521266408184314943471882636696210437804155372003810419543336782153592509215420035499705963287061755298546436339503499254586836157002820900853926894977278413268836734146034460090914048676508136310644079547064093727682008766219083817189497044355035213649291810841923624901281100104353617305468523343139107544702767551
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							eb287fc1fe01f822e18fc6e12e1bcb81f509e89a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dominicallen.biz'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/8.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db000000196e91ffb92000004030047304502210083606e1ef1ab4dc8ba6356bea7628778e80f2ad63922945d7d3294eb1ccb4909022028eb8155dc74dbce686745461462c4811166116fe63d5a056effef7ac05a950300760012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a00000196e91ffb900000040300473045022100a7f4d01af1b1e2039ca88243b45dda3462d136ec9f9a8585dd3c68fd53ea9b730220524123f6c6cd59f59df67d192b9e62b0781569c23b84a354617f35391ef75f9f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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