faidomanda.com
Issued by R3
About this certificate
This digital certificate with serial number 04:07:e9:13:da:a1:dc:b5:99:2a:02:cf:03:1c:06:e0:93:78 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=faidomanda.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:07:e9:13:da:a1:dc:b5:99:2a:02:cf:03:1c:06:e0:93:78Serial Number (int): 351140933506535087392742543836768714658680
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: ef:a1:09:5a:a8:16:2d:25:28:25:46:52:a5:de:a4:91:fa:ca:2f:d2
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 76:22:90:c6:74:cc:30:99:ae:ad:28:8b:60:c0:4b:5b:da:b7:18:5a
Fingerprint (sha256): 14:8e:b9:7a:ca:fe:55:c2:ca:f8:88:64:a0:85:b7:a5:a9:99:09:86:d4:34:2d:48:ad:58:1a:d2:a8:75:b5:28
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate faidomanda.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for faidomanda.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
faidomanda.com
Other certificates including the domain name faidomanda.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for faidomanda.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6TCCBNGgAwIBAgISBAfpE9qh3LWZKgLPAxwG4JN4MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMjEwODU3MjdaFw0yNDA1MjEwODU3MjZaMBkxFzAVBgNVBAMT DmZhaWRvbWFuZGEuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA 1g4kq86cOpwDtYEXmsJTW4pFuR0eZ+JGuNxMyJ88M3A78WfciT481RaeQJ3YeazW kvbUv750f45l+w7vQWt+CVYvMLKdlCUe7alenMeOzuxNtPV3h42i6cejcLWzZRvx m3816R0dpz9JN5Cr+U1PY/ijhKPEtw+hMiLZtd5hwqik088auTws7VMu9ozqWjS2 lj5ViEp3ZTfgM5P6LgyhzRWglvWG1mxltDGNMuMlHIrq2y5Ts5shmrKjPjK0MYD1 6R2OuXmeAVSmEur6aY9QhkfHdlLFLCuJAf4ZKjtAjVGQ/GKM7ErE6xZfmUWDSnmC ijtolXQGneX3cuINe50YRhBk+Dk37U6+5qgzPmUhWObz44Eh0H42GXt4WI8RQRLe W/bAyQZU27E3ee03iU9FTwO3BmsxSqRBL/WbR06/yiDXu6eadVx018omce37WPeV 5HxWB773Ane8RiTu3yu5GgihSren234Q+DdQbMcI/rPdMiZmYBjM6U+tu+LB3LZh /fjJeIPIz5SqAvJjKcfJaMm/2TAIdrKZ5lNfTXQRjwGc07y1QtwZecMhgS0PGQMN kaJl8Lpcnp8mjZj7oGomBQPcwVgfp2tStmaMkd8cmwq6/ndgyvgoxbUXDdpqu6gI DlwIu/ZsgeNwp1jG0RTWbQIRWh0JAhV3w7Y83noQqikCAwEAAaOCAhAwggIMMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYD VR0TAQH/BAIwADAdBgNVHQ4EFgQU76EJWqgWLSUoJUZSpd6kkfrKL9IwHwYDVR0j BBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsG AQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6 Ly9yMy5pLmxlbmNyLm9yZy8wGQYDVR0RBBIwEIIOZmFpZG9tYW5kYS5jb20wEwYD VR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgA7U3d1 Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAY3LGUfqAAAEAwBHMEUCIGj6 hVLm4vHmD7P4/gPi2cv3PeqFpb+Fv+7hYSxcMDXHAiEA+7PdaEp7A/th3GXZU/mX xhyTkRXy5HAupaPKQ5n92acAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+r OdiEcwAAAY3LGUfqAAAEAwBHMEUCIHS3hmmCWRRDFXJDopRIrtsWwhM1ne3zD/Bi Cp5Q7KByAiEAo/+wZRHIiiJytCKkgnfLYNnb4T8FBHbPGHCdV7vzqAwwDQYJKoZI hvcNAQELBQADggEBALPm+UWX7rcHWaKhf6HrvGzMsf7YBJwOZa1s2P6baFD66s0z XkPou1WDR9WTFlsxvabQN0TxHxLB1hxwNIEmw52zMJqFA5/BwObiHyP3DRjsxFD6 y2x3I01CadtRMSEgEnG0NA4V7SvtQKrj/YBO/Y0C3hZVHkx3KvSlSEHJqwWJDqo2 Kt4HDWIg6opITlEtqMJ/7VGLarPa9vYFO970KEJxgt+TduUl4FOul+nxGQaFX0XF 0jr4GMTHXhJY2jwmfu3qZXE2SFvMTAheKWsQsofcAaPal4Qew+ZLuXn2zcBK42Uq j6314o+te2pWS5iOQ5ZZbsJ3XTsJ3VgA9UQE/Gs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1g4kq86cOpwDtYEXmsJT W4pFuR0eZ+JGuNxMyJ88M3A78WfciT481RaeQJ3YeazWkvbUv750f45l+w7vQWt+ CVYvMLKdlCUe7alenMeOzuxNtPV3h42i6cejcLWzZRvxm3816R0dpz9JN5Cr+U1P Y/ijhKPEtw+hMiLZtd5hwqik088auTws7VMu9ozqWjS2lj5ViEp3ZTfgM5P6Lgyh zRWglvWG1mxltDGNMuMlHIrq2y5Ts5shmrKjPjK0MYD16R2OuXmeAVSmEur6aY9Q hkfHdlLFLCuJAf4ZKjtAjVGQ/GKM7ErE6xZfmUWDSnmCijtolXQGneX3cuINe50Y RhBk+Dk37U6+5qgzPmUhWObz44Eh0H42GXt4WI8RQRLeW/bAyQZU27E3ee03iU9F TwO3BmsxSqRBL/WbR06/yiDXu6eadVx018omce37WPeV5HxWB773Ane8RiTu3yu5 GgihSren234Q+DdQbMcI/rPdMiZmYBjM6U+tu+LB3LZh/fjJeIPIz5SqAvJjKcfJ aMm/2TAIdrKZ5lNfTXQRjwGc07y1QtwZecMhgS0PGQMNkaJl8Lpcnp8mjZj7oGom BQPcwVgfp2tStmaMkd8cmwq6/ndgyvgoxbUXDdpqu6gIDlwIu/ZsgeNwp1jG0RTW bQIRWh0JAhV3w7Y83noQqikCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 351140933506535087392742543836768714658680 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-21 08:57:27 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-21 08:57:26 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'faidomanda.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 873269218884288117964779042709201100893760695560376955353350609199117337281095650826662164920719110868783692875199694443773031323700929036495705011588894724885452762011075982650442093480671303504282830769101613254182289001622821105118092784441421800968679202044605106231831383262944285749094501113844174575416006194781780993107875956734488102721322333278721117251789942231359841347980610041467252830318349592320561821119956843945702685159128652607453567347115330116216393125215008836179078663003510045901290678390852389931260417831487361608563890030777346449849319071473395145774413509504395711723819584178738293777858276346938699742579914704993038944701822305284349359561488801768119644349290605247977764744361855877326225017475711079712892748062615687531766464300740052942710387528820688515406670921192293033788548109743269354847594440668078022261124291471181200391742710793923994731004740631439640812718818031570343909225636373004996671031828426511005656889365276764331087169065432172297757959545900615110767008418357334295537144740851089262949413842656500008862257645253477339198051415683004301696517590818056559285221208679069176945561138159766692257769161225833080259322630988847028221429794830538807071616283617628010589497897 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) efa1095aa8162d2528254652a5dea491faca2fd2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'faidomanda.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018dcb1947ea0000040300473045022068fa8552e6e2f1e60fb3f8fe03e2d9cbf73dea85a5bf85bfeee1612c5c3035c7022100fbb3dd684a7b03fb61dc65d953f997c61c939115f2e4702ea5a3ca4399fdd9a700760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018dcb1947ea0000040300473045022074b7866982591443157243a29448aedb16c213359dedf30ff0620a9e50eca072022100a3ffb06511c88a2272b422a48277cb60d9dbe13f050476cf18709d57bbf3a80c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00b3e6f94597eeb70759a2a17fa1ebbc6cccb1fed8049c0e65ad6cd8fe9b6850faeacd335e43e8bb558347d593165b31bda6d03744f11f12c1d61c70348126c39db3309a85039fc1c0e6e21f23f70d18ecc450facb6c77234d4269db513121201271b4340e15ed2bed40aae3fd804efd8d02de16551e4c772af4a54841c9ab05890eaa362ade070d6220ea8a484e512da8c27fed518b6ab3daf6f6053bdef428427182df9376e525e053ae97e9f11906855f45c5d23af818c4c75e1258da3c267eedea657136485bcc4c085e296b10b287dc01a3da97841ec3e64bb979f6cdc04ae3652a8fadf5e28fad7b6a564b988e4396596ec2775d3b09dd5800f54404fc6b