freedom24.eu
Issued by R3
About this certificate
This digital certificate with serial number 03:4b:2e:b2:08:76:2a:5d:d8:e7:19:9a:68:36:dd:c7:fb:fc was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=freedom24.eu
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:4b:2e:b2:08:76:2a:5d:d8:e7:19:9a:68:36:dd:c7:fb:fcSerial Number (int): 286920104202619361859800726581568476806140
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 55:6e:1d:b2:c0:0c:79:6d:b3:3b:2f:53:b8:16:ce:dd:41:f6:05:31
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f1:77:71:29:81:3f:bd:af:53:2a:71:9d:3f:5f:9b:46:db:2e:47:b7
Fingerprint (sha256): 0c:d6:f3:be:4e:f0:de:3e:77:1b:80:d6:0a:0e:fd:2b:12:6e:18:e9:eb:0c:27:a8:50:f0:b6:96:80:56:2f:26
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate freedom24.eu
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for freedom24.eu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
freedom-24.com
freedom24.eu
www.freedom-24.com
www.freedom24.eu
freedom24.eu
www.freedom-24.com
www.freedom24.eu
Other certificates including the domain name freedom24.eu
(limited to 100 certificates)
Certificate
The complete raw certificate details for freedom24.eu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISA0susgh2Kl3Y5xmaaDbdx/v8MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMTQwOTA5MjZaFw0yNDAzMTMwOTA5MjVaMBcxFTATBgNVBAMT DGZyZWVkb20yNC5ldTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKE1 Fw8UTWbLkFx+/EbRIEKx8gOH1/WMkR4vwzT/rVNVvOyMOV9tpoW7pyJ50jWake1n jk+x5yOSa3C45kis5DlFhqGllCeYbqLzRS6Nt3wjlTchytSaFZF+D4xpQUd40wHs qXgxqvBII+Ft2lchKVlRoVragNFavG2Jxs+tcw2bug3l6CNrse4g0o0bgqcrEUmV LQ8sVMPqY2ylVN9w1PYtMjLAg9HN9YW727PUBfNAgTSiSZULkgf4iD8UNig4Lu0t tBYrRjH3HRkQtow23ZVPYW8F3HJWgCHbl3QavSR5n+AM5v6lxC4akLlQinY8LfxT 1Tk2XDiGAWa3W2AKZ20CAwEAAaOCAkIwggI+MA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUVW4dssAMeW2zOy9TuBbO3UH2BTEwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w TQYDVR0RBEYwRIIOZnJlZWRvbS0yNC5jb22CDGZyZWVkb20yNC5ldYISd3d3LmZy ZWVkb20tMjQuY29tghB3d3cuZnJlZWRvbTI0LmV1MBMGA1UdIAQMMAowCAYGZ4EM AQIBMIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADuAHUAouK/1h7eLy8HoNZObTen3GVD sMa1LqLat4r4mm31F9gAAAGMZ81y2AAABAMARjBEAiBk+pMO7htLi03bDcz1AVap HaqcY1OXasCeD/cdbf/MNAIgNiObmbvsMuas3V+luV2Ly2drI8ac2EsmJCHipYA8 Yx0AdQDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYxnzXLSAAAE AwBGMEQCIFL5boneFoYwr2nW5Be8MSmnOnGEECMLF6E5zWaHG0ODAiB5RI/eUgNB ezCG5xOQR1hoL2BHH5F8ObX4/f7VUx5pwzANBgkqhkiG9w0BAQsFAAOCAQEAAjKb CF0PKo5T2SaTbHs1eYNdX2CujsRSoj+UWSIhK0EzRrsIqPFDA6bfN6MKLjDlrtnj J51a9FV8xCNG4U3vGNupxxpSYgxc6/08O1E8tC+/TxDTGDeURmOBT5+ax7aaHpbU URF/NSgQE7dpxaSDzF5h8lCoj26RLiTrGqWtPDBkCrY7HnnEE6H4NfV+tgtgzGeJ Ds4vB3Hh2tr3NYEu4gOhLj9I4nYLzGCUziXFC4aT5JQka5KkK/2iWdPwPW5f5WN8 rQ57WMxv3Y5cyXV/dth8Weyc03wpeuuCWtR5x03clXdDOpLF1TGQL8xMt/HrNCNd jPPraJS/DHmgWX1bzw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTUXDxRNZsuQXH78RtEg QrHyA4fX9YyRHi/DNP+tU1W87Iw5X22mhbunInnSNZqR7WeOT7HnI5JrcLjmSKzk OUWGoaWUJ5huovNFLo23fCOVNyHK1JoVkX4PjGlBR3jTAeypeDGq8Egj4W3aVyEp WVGhWtqA0Vq8bYnGz61zDZu6DeXoI2ux7iDSjRuCpysRSZUtDyxUw+pjbKVU33DU 9i0yMsCD0c31hbvbs9QF80CBNKJJlQuSB/iIPxQ2KDgu7S20FitGMfcdGRC2jDbd lU9hbwXcclaAIduXdBq9JHmf4Azm/qXELhqQuVCKdjwt/FPVOTZcOIYBZrdbYApn bQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 286920104202619361859800726581568476806140 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-14 09:09:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-13 09:09:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'freedom24.eu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20350546790677354948987790278299528566088226868621883431149708667926897769470063936908942361154836546467513755988127507939377360913632097333521000229983628974096500844698411376383997970002332404590176169585958704332227885167339114038694619983133029048544539920754999790315426433436661243222472512038990653713932905936051692631211756648452354728163535773910167104418490497190318517554298771083060687646221986586755194791904244311065406496087521220324222502074174020732716230447263866636110183359106472357904001717654957645306874790777723817237156765439842026779797235304574234629918258164364083754250525361456781354861 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 556e1db2c00c796db33b2f53b816cedd41f60531 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (70 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'freedom-24.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'freedom24.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.freedom-24.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.freedom24.eu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018c67cd72d80000040300463044022064fa930eee1b4b8b4ddb0dccf50156a91daa9c6353976ac09e0ff71d6dffcc34022036239b99bbec32e6acdd5fa5b95d8bcb676b23c69cd84b262421e2a5803c631d007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018c67cd72d20000040300463044022052f96e89de168630af69d6e417bc3129a73a718410230b17a139cd66871b4383022079448fde5203417b3086e713904758682f60471f917c39b5f8fdfed5531e69c3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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