sdn-me.com
Issued by R3
About this certificate
This digital certificate with serial number 03:0e:c9:af:0a:f7:cc:16:2e:bd:59:12:48:d8:16:36:e4:28 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sdn-me.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:0e:c9:af:0a:f7:cc:16:2e:bd:59:12:48:d8:16:36:e4:28Serial Number (int): 266368894633733504050280893723002935895080
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 39:c8:45:08:9f:85:2e:78:63:fb:e8:3e:e4:31:03:df:2d:4c:7b:f5
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): a4:05:e8:a7:43:13:be:1d:93:fd:c9:fd:1b:46:f9:c8:ee:45:d5:4b
Fingerprint (sha256): 17:bf:9c:0d:32:61:b1:69:3d:7a:a6:aa:60:50:3f:d4:50:9d:b5:2e:51:76:e6:aa:00:cc:07:72:92:08:7a:db
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate sdn-me.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sdn-me.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sdn-me.com
www.sdn-me.com
www.sdn-me.com
Other certificates including the domain name sdn-me.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for sdn-me.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgISAw7Jrwr3zBYuvVkSSNgWNuQoMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MjgwMDI3NDJaFw0yNDA3MjcwMDI3NDFaMBUxEzARBgNVBAMT CnNkbi1tZS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqPveP 2HBeYwyfCXKinvwOWD3ZQwJF/LsmICIdbOKi/DDL+/wCgxaLiH6qHcRdM2PpoXWn iGzEtgbrb8LiS5lhVdW7Qa3pn/a/ivmIlcngySJgObzk+3vO6FUt5A01XEVdlee2 wtdC7Cwd14o0LL1CG1iYDli8S5hHbppu7OOQ3TUnqFshAX2tBR/Btsz9HY4RSolN HmbFcXsY+fBDFwxpE2tXdBzpcAXGjPlKw+R9eWnhKqiDNqP1hlhMTZhcLipRtBYT H/mFrf4szs18OLEsuwit+AhsSNjGi3A2s5ySxewalT6EfZutH+MBcDOv63KsbVml BzrROktH/azKcbpLAgMBAAGjggIcMIICGDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FDnIRQifhS54Y/voPuQxA98tTHv1MB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCUG A1UdEQQeMByCCnNkbi1tZS5jb22CDnd3dy5zZG4tbWUuY29tMBMGA1UdIAQMMAow CAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAPxdLT9ciR1iUHWUc hL4NEu2QN38fhWrrwb8ohez4ZG4AAAGPIlCpxgAABAMARzBFAiBStLDrm2V9+26m HT4qsv88dtZYW2Wa5rNMPlTFX1nuUQIhAIVEknDp8ZEU1sTwhaOPsKZs/boYIPdT E+NrvTMFTuu7AHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGP IlCpsgAABAMARzBFAiEAns7/ulPduEmbXaQXFHajO8ZJWoKzZyJhrPnn9eVhBXIC IGPBTjo1CmoXB6Q1GysIo8ypQVv14wuPCf3An6RcTr5aMA0GCSqGSIb3DQEBCwUA A4IBAQC4494zSS5cyDF7dYrQhCdDvcmFZahy6nHH6dSAtLyxR9xlOsvYzvQG026J XZSKIIFgttxKE0IfS0iUsD/562rf3OgbqJLTOWNGqgq5KxFL/VCG0+lzUCPmmGDX cwLVz4AHBLjaKikmEaH2KZs+xS8kFhQN/S4f51mGTcbAOA7MALHLFTSdJ1HdDbCY mmvOIBNLnx1yAawmmhP+a6ZyKtXZu70g4j/M70hiMfTJ0fZMbTE61EeCHhVQHXqy o8XNjzNhfLI1OqvIJSkLi8chMhvH5M0h01uRi1pYMrYBdidC7EeuBqclp9wCYZtD GcC3Qy+l6+iig6lNq6HfdDwH0LD0 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqj73j9hwXmMMnwlyop78 Dlg92UMCRfy7JiAiHWziovwwy/v8AoMWi4h+qh3EXTNj6aF1p4hsxLYG62/C4kuZ YVXVu0Gt6Z/2v4r5iJXJ4MkiYDm85Pt7zuhVLeQNNVxFXZXntsLXQuwsHdeKNCy9 QhtYmA5YvEuYR26abuzjkN01J6hbIQF9rQUfwbbM/R2OEUqJTR5mxXF7GPnwQxcM aRNrV3Qc6XAFxoz5SsPkfXlp4Sqogzaj9YZYTE2YXC4qUbQWEx/5ha3+LM7NfDix LLsIrfgIbEjYxotwNrOcksXsGpU+hH2brR/jAXAzr+tyrG1ZpQc60TpLR/2synG6 SwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 266368894633733504050280893723002935895080 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-28 00:27:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-27 00:27:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sdn-me.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21491562048248981311374735885428032933264565986909768274830094719150673164197362297695509140677864888445832468656404515647296913422216564504324850688216017108414401819654523758326960193575893710876079952646499266738073428864029135010172699687744059214627175262260603523860014278412419621772503873180190211916801129006237343637677183025284483813116472992361941224487459683180518460380129765463449800070477860593776694388119386145817182740346707154573613047567294751958936082295723404370611820689126842064999717050617025656049489782625151954745663608347914618809325369300595948228243165984545255192221062889630032050763 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 39c845089f852e7863fbe83ee43103df2d4c7bf5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sdn-me.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sdn-me.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f2250a9c60000040300473045022052b4b0eb9b657dfb6ea61d3e2ab2ff3c76d6585b659ae6b34c3e54c55f59ee5102210085449270e9f19114d6c4f085a38fb0a66cfdba1820f75313e36bbd33054eebbb00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f2250a9b200000403004730450221009eceffba53ddb8499b5da4171476a33bc6495a82b3672261acf9e7f5e5610572022063c14e3a350a6a1707a4351b2b08a3cca9415bf5e30b8f09fdc09fa45c4ebe5a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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