novaflex.se
Issued by R3
About this certificate
This digital certificate with serial number 04:27:ad:ab:5b:14:ef:65:7c:a9:69:00:47:c5:3d:71:2d:74 was issued on by Let's Encrypt.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=novaflex.se
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:27:ad:ab:5b:14:ef:65:7c:a9:69:00:47:c5:3d:71:2d:74Serial Number (int): 361951002210349113353244932666892387167604
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: af:43:2f:45:d4:9b:68:d2:a0:08:ae:af:4d:bb:b2:74:78:87:4b:08
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 0a:df:59:c6:72:3c:a8:a4:b1:1d:f1:30:c7:95:65:33:53:f0:32:30
Fingerprint (sha256): 19:f4:eb:5e:b0:98:77:b1:29:2c:93:19:1c:14:49:65:52:bd:8e:01:65:91:b1:1d:36:e7:8a:cf:c3:10:82:45
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate novaflex.se
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for novaflex.se
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
b591762.web05.cust.bluerange.se
novaflex.dk
novaflex.se
www.novaflex.dk
www.novaflex.se
novaflex.dk
novaflex.se
www.novaflex.dk
www.novaflex.se
Other certificates including the domain name novaflex.se
(limited to 100 certificates)
Certificate
The complete raw certificate details for novaflex.se in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGMjCCBRqgAwIBAgISBCetq1sU72V8qWkAR8U9cS10MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMDUwMTI4NTVaFw0yNDAyMDMwMTI4NTRaMBYxFDASBgNVBAMT C25vdmFmbGV4LnNlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAx1dA GspPpCtU4FEkjM+2cHE/X3EgknmQw8cZj4HRI27uYU/51B9FpxZD0VHjuW4HrCom 46i5K5Z4tfO7+kWGT08Fhpu2P4JrMRoBf9SRnB5g10fu+dL/Mcze+dE0/ffl2tdS B8Dc1XHqMj8pw+Rxx8TMJyaIMRrjKghSmmjXipXsgQB3O0T5lRvYLUFFqr1PP5Es ZDYwYKGD9PUh3vgejcaQs5riJslsvpFLD+jMrlCWMxWWe7oGmQgHD333TtJtLTii az5NqYM7IhH43AhyNrjScW7zGdYZgP4Gh2ZLfxyXqocBAK3ddxpFn2EXHzfZP2Pt HfORoRjwLrkSPTGpEHbyIZNk2eDXM6cn/O3nas0yhvG/ltaEyuQP8k4B4L8VBUv8 FP26NkXb5vGAicC09ytf9paYdIObJP2Xa0RvkFPI4EJ8svb/vK0QTHWA+P2wK2Fg F/OP/JXskZ8+dzolUXeilJ9NwQtWvlKJO402AOR4VhXk264pLnbdAcnMcTX7tts1 rQXtB+2KVB8MqThqzMEcWERQ8JNjkBdDhXeglNRer4mhe1a3MOFajJI64OxIlU5T /86BZMDpV59GfyGq5JSHsokqVwr2hVQ2KDOhySOkTdJoDzIMrbHReRl6p57Jfnzg SP2mXZMnner/usvMu+dj656+C49+Mmj+456ofmECAwEAAaOCAlwwggJYMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQUr0MvRdSbaNKgCK6vTbuydHiHSwgwHwYDVR0jBBgw FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y My5pLmxlbmNyLm9yZy8wZgYDVR0RBF8wXYIfYjU5MTc2Mi53ZWIwNS5jdXN0LmJs dWVyYW5nZS5zZYILbm92YWZsZXguZGuCC25vdmFmbGV4LnNlgg93d3cubm92YWZs ZXguZGuCD3d3dy5ub3ZhZmxleC5zZTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMG CisGAQQB1nkCBAIEgfQEgfEA7wB2ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0t cm/h+tQXAAABi51P0RsAAAQDAEcwRQIhAOxnZ83uAc8p2i3Ni9htHzsrb4oZ8e/G r7eyy1L87b/CAiBF8AukfYHgfHgYJ1Q+/hXwC9mTByZAMC7KbDglcRtCgwB1AEiw 42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABi51P0R4AAAQDAEYwRAIg VhqWDecQO/RN5KLT4+SbnvFNMIFHQn1MEzeFc4Pmei4CICRoewPFVndsITzfRvSj 2yLOXc+k3LaKJaZbymqt9ZjFMA0GCSqGSIb3DQEBCwUAA4IBAQAVTpR6Oe+OgLdk 6Np6nSZdw2XEsYB3WAhofAa6zK/ZDOX8dsN+ZBFHw/Kz+G7V0T7rTBbrmA88mfhf 94u67ds97a5yqHVR+1nyyvOLLDTy+3CbYGUMgXyEbHUCCmAbw1skUTsCDqvSh0+1 8vAZvZz1fCNy8HL4UN4+xRBkSV+88v1AeFk+WNIpwH+b/qczG5+9kACaA7NiMdSP 2sRO0Z6Vzv6YsMwKYeIU3RB36i2lYiOdtyJkr+ZhpmxC4j+YJbKWG7/m+dnsOD3J GSxV3HxzPdZvwT9pxM1hOVEtIPTniZwVlnvZI60rxqogJK2bsNEzB1eJK6ifted2 C1Fnytod -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAx1dAGspPpCtU4FEkjM+2 cHE/X3EgknmQw8cZj4HRI27uYU/51B9FpxZD0VHjuW4HrCom46i5K5Z4tfO7+kWG T08Fhpu2P4JrMRoBf9SRnB5g10fu+dL/Mcze+dE0/ffl2tdSB8Dc1XHqMj8pw+Rx x8TMJyaIMRrjKghSmmjXipXsgQB3O0T5lRvYLUFFqr1PP5EsZDYwYKGD9PUh3vge jcaQs5riJslsvpFLD+jMrlCWMxWWe7oGmQgHD333TtJtLTiiaz5NqYM7IhH43Ahy NrjScW7zGdYZgP4Gh2ZLfxyXqocBAK3ddxpFn2EXHzfZP2PtHfORoRjwLrkSPTGp EHbyIZNk2eDXM6cn/O3nas0yhvG/ltaEyuQP8k4B4L8VBUv8FP26NkXb5vGAicC0 9ytf9paYdIObJP2Xa0RvkFPI4EJ8svb/vK0QTHWA+P2wK2FgF/OP/JXskZ8+dzol UXeilJ9NwQtWvlKJO402AOR4VhXk264pLnbdAcnMcTX7tts1rQXtB+2KVB8MqThq zMEcWERQ8JNjkBdDhXeglNRer4mhe1a3MOFajJI64OxIlU5T/86BZMDpV59GfyGq 5JSHsokqVwr2hVQ2KDOhySOkTdJoDzIMrbHReRl6p57JfnzgSP2mXZMnner/usvM u+dj656+C49+Mmj+456ofmECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 361951002210349113353244932666892387167604 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-05 01:28:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-03 01:28:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'novaflex.se' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 813239601616634247752470750135351459415233283020200356737591344678403377305879011696863929290674273128067227855373455107043492669550486889676171540774618237064871779349242286220847876134855421110192775912183089492494140165736576569895892574608396741737169709507803644481402693133331940232230903277127652699244180171753386767430406554111318772226044031266706640343889939843854375896545991363015507563045627218828813957473924805524201597252709732871936206690208689484838876948828125019826532100999383647549967636021146629803725003331261839869256140862498317183863170557094766871163750319052062218232063057118422971064164244453136944400317479712692916829087898661408738894250349794519364916073106932263455572961112032509228793630258989981030299948405760466032764827002128157310403484602462313630987867055541800906574168175192435315704482461847855030837348491791528214062438540038147456276995509468438402645623385806874692993424864103981796040184278027808142090917584773452611509372500218897055757759028143347560202043316776713515458638287848076787238440837068419515309390327618390660900683386578029805609453750077563093751829929782443884075664682015663360678630232477251680387541328520386326304743095499927582347236799592985340592815713 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) af432f45d49b68d2a008aeaf4dbbb27478874b08 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (95 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'b591762.web05.cust.bluerange.se' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'novaflex.dk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'novaflex.se' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.novaflex.dk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.novaflex.se' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b9d4fd11b0000040300473045022100ec6767cdee01cf29da2dcd8bd86d1f3b2b6f8a19f1efc6afb7b2cb52fcedbfc2022045f00ba47d81e07c781827543efe15f00bd993072640302eca6c3825711b428300750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018b9d4fd11e00000403004630440220561a960de7103bf44de4a2d3e3e49b9ef14d308147427d4c1337857383e67a2e022024687b03c556776c213cdf46f4a3db22ce5dcfa4dcb68a25a65bca6aadf598c5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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