fuza.org
Issued by R3
About this certificate
This digital certificate with serial number 04:f3:f9:0d:5d:7d:a9:4c:d7:82:17:ff:92:9b:61:94:f4:52 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=fuza.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:f3:f9:0d:5d:7d:a9:4c:d7:82:17:ff:92:9b:61:94:f4:52Serial Number (int): 431468806055858647529826935933765489587282
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: fe:a6:ac:42:d4:5b:b9:7c:fc:ad:ac:60:fb:62:ef:c6:6d:30:9f:e3
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 0f:27:25:cf:04:fa:88:7d:78:a6:02:98:35:f3:77:15:df:52:e1:f0
Fingerprint (sha256): 10:04:a9:7a:b5:08:e2:56:28:65:3e:85:51:14:62:35:66:c6:c7:43:b9:57:70:ff:fd:50:9e:e9:85:79:d7:23
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate fuza.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for fuza.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
fuza.org
www.fuza.org
www.fuza.org
Other certificates including the domain name fuza.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for fuza.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6zCCBNOgAwIBAgISBPP5DV19qUzXghf/kpthlPRSMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMjYxMTA5MTJaFw0yNDAxMjQxMTA5MTFaMBMxETAPBgNVBAMT CGZ1emEub3JnMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArFTQwkRI fDzi58GF8lhVBgRjKZmjuFkJKWZaFvOFlEYKLYSEbh5b3EJFGF6363fCVrt5Nkom KGzCtAYbpRVAbiX72fngxNOCf2AL5WKLFWKnTD7iFcXf/I6Tqix3fewfgj4ooFZM Fi9ALoQdGjapjlZCzw/yXOcm4lUO6VQTH1lQKJQ3yFf1gSdhqecIetqaPkbqJdMf zLGggzLOR1GKwpmXN7RT+lPSyU/wvXtjPjOBJAur1pznJMm7S4XZbLKD8la0DiMC vj4SnwtCp+vfemWY+6VexZNsAmQkoa51LjwHXbhMN4B08WXZufvX7Wnd6Pp/+z7v ed+1+mCW9qZEHGW3/fCAG68DcAvU6314sEgDZBpz1kZKcO6JJW0TZZhnyLcYCVGx S0GY2BlL9spjc3juPqGIOEXjI0yvnw9csEBBWQkinTJB8RhWil0BftH7uOzHI357 LA2n3ICPhYroX5i7AwarDY5uvCnN5oDBg2tY3mXE3qd/Dq9hQd6fdbRnQOukD5NY F1/O0SVurhSMZM1XL4MFrxN2sXP7+3ldXZKT1Dewm7AUogFgx13Ja0EIFTG5Xuty cPDVrrAmhha14VBL/SLhen6P8BvD88BL1pxjC8H2oJD4mnHqrA0XJwDUZUXAkwFn Pf86E3sVo4xTstyu4p8rK3EVf8aXELX/oSUCAwEAAaOCAhgwggIUMA4GA1UdDwEB /wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/ BAIwADAdBgNVHQ4EFgQU/qasQtRbuXz8raxg+2Lvxm0wn+MwHwYDVR0jBBgwFoAU FC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzAB hhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5p LmxlbmNyLm9yZy8wIQYDVR0RBBowGIIIZnV6YS5vcmeCDHd3dy5mdXphLm9yZzAT BgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2ANq2 v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABi2vje6wAAAQDAEcwRQIg a9g4iBXvQwxLShWOdGHjr9j7PycFAM6weYwR+bV6yLICIQDdrQ8F/l7MF1VWa7ht 5O8K2bYWU+4SB1n7xPmG5Re+aQB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf 5mdMWjp0AAABi2vje+kAAAQDAEcwRQIhAK08rmgr0PT2NXs89Xkn+tjr7LVnSdMY qT8SSFDejJ8LAiAvk/64tt00A5h6xEpF4X0Ajm1kPaqh7d2bah+OOrkrRDANBgkq hkiG9w0BAQsFAAOCAQEANq3n23eLZvZjSs63QuWJv1VmOVzK/y8FztHW4QCLQgSr AeKfDdcNJS3Bp6Qz+nvFtsh4H1HrDFaRFb4/F4C/egEVCsGheLRRjhp/Y/Dw2818 9IiibxNPjG85eV8eIIN3UWHHAfvoZTzuWlC95b99CA7CYlpjAMBNXYoUg3iiMe1m Qy9YGBg1XtN4cmERwkCPfpSFPzn0z+DTgEiDXUCvqCrXyRwJ7g9odEHeS+SNGhF6 LOzprT2bm2GxQfgL9ogDUiaLKShtqJ+Bevr76VPD4xODkU3FsiumTkBwXVRNcfO4 6bdFG2F2sxyhH1wfGD6mTESvgJjqxkS1aVpORnGlUQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArFTQwkRIfDzi58GF8lhV BgRjKZmjuFkJKWZaFvOFlEYKLYSEbh5b3EJFGF6363fCVrt5NkomKGzCtAYbpRVA biX72fngxNOCf2AL5WKLFWKnTD7iFcXf/I6Tqix3fewfgj4ooFZMFi9ALoQdGjap jlZCzw/yXOcm4lUO6VQTH1lQKJQ3yFf1gSdhqecIetqaPkbqJdMfzLGggzLOR1GK wpmXN7RT+lPSyU/wvXtjPjOBJAur1pznJMm7S4XZbLKD8la0DiMCvj4SnwtCp+vf emWY+6VexZNsAmQkoa51LjwHXbhMN4B08WXZufvX7Wnd6Pp/+z7ved+1+mCW9qZE HGW3/fCAG68DcAvU6314sEgDZBpz1kZKcO6JJW0TZZhnyLcYCVGxS0GY2BlL9spj c3juPqGIOEXjI0yvnw9csEBBWQkinTJB8RhWil0BftH7uOzHI357LA2n3ICPhYro X5i7AwarDY5uvCnN5oDBg2tY3mXE3qd/Dq9hQd6fdbRnQOukD5NYF1/O0SVurhSM ZM1XL4MFrxN2sXP7+3ldXZKT1Dewm7AUogFgx13Ja0EIFTG5XutycPDVrrAmhha1 4VBL/SLhen6P8BvD88BL1pxjC8H2oJD4mnHqrA0XJwDUZUXAkwFnPf86E3sVo4xT styu4p8rK3EVf8aXELX/oSUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 431468806055858647529826935933765489587282 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-26 11:09:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-24 11:09:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'fuza.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 703050408237376549281479290872250674675468313626476337657929277223773040910028497357987896800154779148213908661316032534607914782493696064373418586815870477027711397410965066352121584013442568551894863807504375633544800849765736208647890341882245601480707321952109342723700901122757833059941696697102707282965493212345087196038335343647660080322988558029601518291995219661919369669932627342030078721499536336736181396741980202211759884055131575313848329906321176891890562779337103492469856756159457255458039404637886023404539519988068223410279852195976691900256559999091108781932730933821301032736505192069547134539322416892083386481382447549364662610280275920888832820018219860266587889998705368654340307874108425112123943971072939059533808248957363644587724637136344168399867905443685543829206435679940609721779132123364786958381628005524089415482386851476689818732196474945960639803176012788409278401150719872200990477284671066659232565746245473987259786543392723267035145164214298134996638020031668423986222885833295028717511702931943968301053990402404832705744184626806413547102468811694736653753455070301680198868794286250392913275300043256325084870966663268472941123191818545588033327088173900284305249177126235405767621452069 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fea6ac42d45bb97cfcadac60fb62efc66d309fe3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fuza.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fuza.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b6be37bac000004030047304502206bd8388815ef430c4b4a158e7461e3afd8fb3f270500ceb0798c11f9b57ac8b2022100ddad0f05fe5ecc1755566bb86de4ef0ad9b61653ee120759fbc4f986e517be6900760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018b6be37be90000040300473045022100ad3cae682bd0f4f6357b3cf57927fad8ebecb56749d318a93f124850de8c9f0b02202f93feb8b6dd3403987ac44a45e17d008e6d643daaa1eddd9b6a1f8e3ab92b44 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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