*.navattic.com
Issued by R3
About this certificate
This digital certificate with serial number 03:49:7c:07:37:f7:a5:99:11:ed:55:24:75:95:56:48:d1:db was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.navattic.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:49:7c:07:37:f7:a5:99:11:ed:55:24:75:95:56:48:d1:dbSerial Number (int): 286342332333217721503525848028503404499419
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 26:89:37:7b:23:8e:59:83:e5:21:62:fb:4e:a2:37:79:9a:6c:e2:b3
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 09:a5:eb:e5:7b:e4:ad:dc:a9:cd:b8:12:37:84:5d:41:db:88:17:dd
Fingerprint (sha256): 0f:de:59:db:d0:09:0e:5f:63:09:76:f3:8e:fa:0f:8d:ad:f9:ac:da:67:07:a1:58:3c:2f:fc:cf:fa:2b:da:a5
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate *.navattic.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.navattic.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.navattic.com
navattic.com
navattic.com
Other certificates including the domain name navattic.com
(limited to 100 certificates)
www.navattic.com
navattic.com
*.navattic.com
www.asyadaily.id
ksmutny.com
navattic.com
www.humane-it.com
www.lacey-knaff.com
basf.prod.salesinmotion.evtit.com
earcandytech.com
portal.locale-hub.com
*.navattic.com
*.navattic.com
savvysale.ca
borsato.io
*.navattic.com
js.navattic.com
navattic.com
*.navattic.com
www.lacey-knaff.com
c.navattic.com
portal.locale-hub.com
www.humane-it.com
navattic.com
sni.cloudflaressl.com
www.navattic.com
navattic.com
navattic.com
*.navattic.com
www.navattic.com
www.navattic.com
www.navattic.com
xpictures.pl
www.navattic.com
*.navattic.com
www.navattic.com
www.ahmetsah.in
sni.cloudflaressl.com
www.navattic.com
www.asyadaily.id
*.navattic.com
auth.navattic.com
navattic.com
js.navattic.com
gngits.com
app-admin.winner.com.br
www.navattic.com
*.navattic.com
c.navattic.com
threewaysproperty.co.uk
navattic.com
www.navattic.com
*.navattic.com
www.navattic.com
navattic.com
*.navattic.com
www.asyadaily.id
ksmutny.com
navattic.com
www.humane-it.com
www.lacey-knaff.com
basf.prod.salesinmotion.evtit.com
earcandytech.com
portal.locale-hub.com
*.navattic.com
*.navattic.com
savvysale.ca
borsato.io
*.navattic.com
js.navattic.com
navattic.com
*.navattic.com
www.lacey-knaff.com
c.navattic.com
portal.locale-hub.com
www.humane-it.com
navattic.com
sni.cloudflaressl.com
www.navattic.com
navattic.com
navattic.com
*.navattic.com
www.navattic.com
www.navattic.com
www.navattic.com
xpictures.pl
www.navattic.com
*.navattic.com
www.navattic.com
www.ahmetsah.in
sni.cloudflaressl.com
www.navattic.com
www.asyadaily.id
*.navattic.com
auth.navattic.com
navattic.com
js.navattic.com
gngits.com
app-admin.winner.com.br
www.navattic.com
*.navattic.com
c.navattic.com
threewaysproperty.co.uk
navattic.com
www.navattic.com
*.navattic.com
www.navattic.com
Certificate
The complete raw certificate details for *.navattic.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgISA0l8Bzf3pZkR7VUkdZVWSNHbMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjkyMjAzMjNaFw0yNDA2MjcyMjAzMjJaMBkxFzAVBgNVBAMM DioubmF2YXR0aWMuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA y4+HE1w7L5dR4tsIp4J49AMUDJxiorT3TAUHYuPc/eg4XOmtdDoh2T0UMKMDYX53 ru6L7zVQV4X0RRBT/rx9g48mMnUNDeCui8wUl27fG4HtWm9QrgDQ1uPlT9Fvi6XD Iyj8KzWlprDe6XSaeJpumzn9nHbdn9Yn+zIPdIppaXdpSPFtqyaX4runofAYwJF+ G6u1DEoluPhDagw3p7fGZXQy4iIHDkLPynoHtpPuisq2sbHZLac2TBs+kG+VDnpx vqC0laPfAFsCT181hmHmbu4T1tRot/7croyn65+kBwXClrcDjUKGcb8nebsQh3jk cE2EM5fqybgtcOSW6Xl56wIDAQABo4ICHjCCAhowDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBQmiTd7I45Zg+UhYvtOojd5mmziszAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzAnBgNVHREEIDAegg4qLm5hdmF0dGljLmNvbYIMbmF2YXR0aWMuY29tMBMGA1Ud IAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYA7s3QZNXb Gs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGOjHQdvwAABAMARzBFAiEAs8Mf POlcky8WtEzdlvDZPUtcesVfW72HoV0HCvYTNN4CIBEQgXniKiKyEsa3WvDvWRQ7 uuk2arkSKPeZ9mBpp1tBAHYAouK/1h7eLy8HoNZObTen3GVDsMa1LqLat4r4mm31 F9gAAAGOjHQeAQAABAMARzBFAiAu8N5NZmEJjAkwOG3DlvTfwcbRrLJ9snfKM8ly qOZ1wwIhAMlPIYyFB1W9x9F0xe08x4IgBa4SdlMVP1b0B+VCRg1gMA0GCSqGSIb3 DQEBCwUAA4IBAQATnpPqGhPb5WK/erm7Ds7JzPvNm4/LSjFifV9/qFOx0AjWR1hC fVoYPTtytnlObZljUrPoS6nt8rP4Q9Fr/09BT7+MhpptI343T1VnwlyNXFJ5E/Dg Wwyc2HFzJxjN/Obg+xAN2cPdJ+SFyITEgxqb8aanA3POemP6T1eSaf2ImE/05+22 +5qOwdN/xvnBsymLxJ0utgc3ob5d/PcqHMzMd+FF90cT3CD55BNQECivSmydhTM/ PbTUVZvcSdeLm2+SzZ0KGI+GmGDidkxcbb+vyXzdhP0OPPMFokYTBZ8/N9zRllan 0/fmArqmRIbWv3n7xuWilKUMstg1IW9I9sX4 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4+HE1w7L5dR4tsIp4J4 9AMUDJxiorT3TAUHYuPc/eg4XOmtdDoh2T0UMKMDYX53ru6L7zVQV4X0RRBT/rx9 g48mMnUNDeCui8wUl27fG4HtWm9QrgDQ1uPlT9Fvi6XDIyj8KzWlprDe6XSaeJpu mzn9nHbdn9Yn+zIPdIppaXdpSPFtqyaX4runofAYwJF+G6u1DEoluPhDagw3p7fG ZXQy4iIHDkLPynoHtpPuisq2sbHZLac2TBs+kG+VDnpxvqC0laPfAFsCT181hmHm bu4T1tRot/7croyn65+kBwXClrcDjUKGcb8nebsQh3jkcE2EM5fqybgtcOSW6Xl5 6wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 286342332333217721503525848028503404499419 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-29 22:03:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-27 22:03:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.navattic.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25697152024843860949821600502420554566318338075797272715392606827129551440607465835207197192418326634655475617154817133905772673022527468781748666923120831333490490732670282585130378004557957981771266960078817219060919179659224479630736235500078570644684933000677928642887406763830074836381483655764127179257946549241599292323450506005219334827888140068970341833687473357005214134973975793207893067844878152061319005426797870794127025491764675963486729295215219753522469596830220596852026851915493822373156121949660366292558120445447755759939611637590998376910660109288339236593781472837760550484819798107734779984363 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2689377b238e5983e52162fb4ea237799a6ce2b3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.navattic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'navattic.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e8c741dbf0000040300473045022100b3c31f3ce95c932f16b44cdd96f0d93d4b5c7ac55f5bbd87a15d070af61334de022011108179e22a22b212c6b75af0ef59143bbae9366ab91228f799f66069a75b41007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e8c741e01000004030047304502202ef0de4d6661098c0930386dc396f4dfc1c6d1acb27db277ca33c972a8e675c3022100c94f218c850755bdc7d174c5ed3cc7822005ae127653153f56f407e542460d60 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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