tavvan.com
Issued by R3
About this certificate
This digital certificate with serial number 04:4b:ba:83:87:95:d7:30:b2:d2:f7:cd:82:8a:7f:03:24:58 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=tavvan.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:4b:ba:83:87:95:d7:30:b2:d2:f7:cd:82:8a:7f:03:24:58Serial Number (int): 374218240594212724618652869679942518121560
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: df:db:8e:88:84:85:ea:3e:88:54:e8:6e:2b:d3:19:b3:7e:83:3d:1e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): a7:46:94:bc:90:d4:5c:65:b5:56:2c:ee:9b:f5:41:dd:70:87:fe:f1
Fingerprint (sha256): 11:40:1d:79:c4:a2:1c:49:97:fe:98:b8:de:1d:7c:6a:fd:17:37:f7:1c:96:79:9c:91:19:2c:54:83:d2:65:28
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate tavvan.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tavvan.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tavvan.com
Other certificates including the domain name tavvan.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for tavvan.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4jCCBMqgAwIBAgISBEu6g4eV1zCy0vfNgop/AyRYMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MzAyMTM0MzVaFw0yNDA3MjkyMTM0MzRaMBUxEzARBgNVBAMT CnRhdnZhbi5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC5f9AM h1QqRzD9RkDvbTjY7/FfkXdS7VR21qpR3kUM8VvlPzlGIfUvidtxe6kiMrfelQnw WFPWhTyBxxy+38uuXk/4J6D4KsE+KWnUtQtAwUkr97S/NvJBFuFzA5fQE24lxZUN U/Bs9jDM1frbqxsWgrzUk3MV3RGiYalvb3nuOEQc/kV6nDuxhTEB0bFsa59cAhxB j8LB46tO4Y4EjY/QIBKXXKtaj+vgzQjz7apwSWWiiCZNMpGXqw5z92Ci5iFy9r5a ZjMVI/HT0mihRNeCVWWg29S3BZjUpBZXXTUXSsUwUjUO3cqwwFA84jfS9VSNKqZ0 aERRWI89ci4MF2OpY0K/A3kodgUYplF3clSEtA7JSlswCswc8B4Wf45Dqekn/vbT x8tp2B2Qt+M7PLiSbkjnBfYvXAMiakq9/ZtK5CoNwybjaK1iyJHAcgf0a1sQRVo8 UsXnv7QSH28BUUbx9vI7mgmB41IxR9rKr85QgdxcV81mHAckT9eGrqkks+rHKByk nfZUUYRXgFabLyK6kzYagsRnJCTNC792WM8tFfYQHRcJcY07qMYtro65lHpMyRZI /u5ikiLeMsJHUCzaQlV3R4EW/aNc9yjLMAo3HXksXBBKZ3GxHg2tLYrktVpa4GRE +paoaC7F/4DuOgEMh8wtWOcM6Jlt2XSO0OuXPQIDAQABo4ICDTCCAgkwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBTf246IhIXqPohU6G4r0xmzfoM9HjAfBgNVHSMEGDAW gBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUH MAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3Iz LmkubGVuY3Iub3JnLzAVBgNVHREEDjAMggp0YXZ2YW4uY29tMBMGA1UdIAQMMAow CAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcASLDja9qmRzQP5WoC +p0w6xxSActW3SyB2bu/qznYhHMAAAGPMSVBQwAABAMASDBGAiEAgA/ubSzWvTrX Lqg/NrECPK2mazWzaOd0JTy2IctuV2gCIQC85xjIe3IYXTjMdo8ShdjzoJmqx36J TC/kaKJHCtkJuwB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAAB jzElQYMAAAQDAEcwRQIgH9iJ6fKBT0T4eWxGKiJZctLa/uCKwrSyKk+eupghGlUC IQDe8cjFL7CP8YU5KqJul96Wgq5Xb1aEikFZePYGQMYqDDANBgkqhkiG9w0BAQsF AAOCAQEAenc5eIvKxD1T6TMHvoFOGs1mT+r1U04D5DbwBBDopI1x+DbnuviMolW0 dyB2/5kqZtaQ4AVzrJY+3XqQp1rS9QTjQrJZ3obp4oRuOdELQhgr72QohzO9oBmD qkXgVL3+0UUbimvttkepF6F1ZQUZcxTTLWKfMJdSn6eU0ilFPHWaydeVTfZ7rJax LvErn6eq2fhHGyjASIxgMcHYrl6pEooSwGa8Q0tDMW19TaHrHsQ3jbtJi+EDpmFx uiBdR1bYyd1ls8xfztjErY/W+nGfa2Qej5fmWyLo6OCY40dsY8RFhfvgfz0QuqUe 998lNYUbkcbYAcPPWVczLLceOx0AvA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuX/QDIdUKkcw/UZA7204 2O/xX5F3Uu1UdtaqUd5FDPFb5T85RiH1L4nbcXupIjK33pUJ8FhT1oU8gcccvt/L rl5P+Ceg+CrBPilp1LULQMFJK/e0vzbyQRbhcwOX0BNuJcWVDVPwbPYwzNX626sb FoK81JNzFd0RomGpb2957jhEHP5Fepw7sYUxAdGxbGufXAIcQY/CweOrTuGOBI2P 0CASl1yrWo/r4M0I8+2qcElloogmTTKRl6sOc/dgouYhcva+WmYzFSPx09JooUTX glVloNvUtwWY1KQWV101F0rFMFI1Dt3KsMBQPOI30vVUjSqmdGhEUViPPXIuDBdj qWNCvwN5KHYFGKZRd3JUhLQOyUpbMArMHPAeFn+OQ6npJ/7208fLadgdkLfjOzy4 km5I5wX2L1wDImpKvf2bSuQqDcMm42itYsiRwHIH9GtbEEVaPFLF57+0Eh9vAVFG 8fbyO5oJgeNSMUfayq/OUIHcXFfNZhwHJE/Xhq6pJLPqxygcpJ32VFGEV4BWmy8i upM2GoLEZyQkzQu/dljPLRX2EB0XCXGNO6jGLa6OuZR6TMkWSP7uYpIi3jLCR1As 2kJVd0eBFv2jXPcoyzAKNx15LFwQSmdxsR4NrS2K5LVaWuBkRPqWqGguxf+A7joB DIfMLVjnDOiZbdl0jtDrlz0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 374218240594212724618652869679942518121560 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-30 21:34:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-29 21:34:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tavvan.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 756770989643708966961286143441373009116297114010572830277477235595684711627771058616993389055343596202504217523406797740345370432412473845726057661007884464615009748586427843494935173100044786226612643757176315949430929191288213509888188133451971508503743331158033063902269018924108560410930808842085551707931819473035936280136815102875972060551678101939975476539059875122389723304822088684089544309494329153473733268661601542087187014546389990143266815628011401732241617326868901841363306402126278439796154742829255434249007352986239992818770786546514628699500059774691725706066648648711974994451010320581096821412964762168945485989813184798710524192455577882604660799262529482807280541980330806362104409700159792178992242824977873264066901893594780974624110225219157744940732355114486417633649148227167311443095420670853248067248432747459546202956055714027093987939238825527964088981869840737413803738394906808011868465851202296227776218337328474588121317713631727729013868869340204507611003616462707714495977559207153086767494446197304131608088922373084196146876889018728019319278858585121175290036362764528447515620380888030748613501311080046153681013069883428889317113874329249054424164139853910047941786177070164509794193086269 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dfdb8e888485ea3e8854e86e2bd319b37e833d1e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tavvan.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f312541430000040300483046022100800fee6d2cd6bd3ad72ea83f36b1023cada66b35b368e774253cb621cb6e5768022100bce718c87b72185d38cc768f1285d8f3a099aac77e894c2fe468a2470ad909bb00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018f31254183000004030047304502201fd889e9f2814f44f8796c462a225972d2dafee08ac2b4b22a4f9eba98211a55022100def1c8c52fb08ff185392aa26e97de9682ae576f56848a415978f60640c62a0c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 007a7739788bcac43d53e93307be814e1acd664feaf5534e03e436f00410e8a48d71f836e7baf88ca255b4772076ff992a66d690e00573ac963edd7a90a75ad2f504e342b259de86e9e2846e39d10b42182bef64288733bda01983aa45e054bdfed1451b8a6bedb647a917a1756505197314d32d629f3097529fa794d229453c759ac9d7954df67bac96b12ef12b9fa7aad9f8471b28c0488c6031c1d8ae5ea9128a12c066bc434b43316d7d4da1eb1ec4378dbb498be103a66171ba205d4756d8c9dd65b3cc5fced8c4ad8fd6fa719f6b641e8f97e65b22e8e8e098e3476c63c44585fbe07f3d10baa51ef7df2535851b91c6d801c3cf5957332cb71e3b1d00bc