saumal.com
Issued by R3
About this certificate
This digital certificate with serial number 04:8c:a9:0d:0c:0c:b1:1f:1c:3b:a7:f2:43:85:84:00:76:22 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=saumal.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:8c:a9:0d:0c:0c:b1:1f:1c:3b:a7:f2:43:85:84:00:76:22Serial Number (int): 396313382371513652857404681839464453010978
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 1a:5c:d2:e5:76:d9:31:51:38:45:7b:19:57:4d:85:b2:4e:e6:47:57
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): fa:28:1d:75:9d:60:c0:47:fb:43:8f:89:a8:2f:86:ac:e2:d5:ee:96
Fingerprint (sha256): 1c:e0:04:63:e9:5b:b6:33:c3:a7:e9:71:62:b4:fe:30:26:bc:8f:2f:41:8c:95:47:19:ea:d5:af:d0:6a:95:ac
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate saumal.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for saumal.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
saumal.com
www.saumal.com
www.saumal.com
Other certificates including the domain name saumal.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for saumal.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF8jCCBNqgAwIBAgISBIypDQwMsR8cO6fyQ4WEAHYiMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTQwNTE3NDdaFw0yNDA3MTMwNTE3NDZaMBUxEzARBgNVBAMT CnNhdW1hbC5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQD+c/bO H7z9WbFe6DSbPZPdIw9HafCOmuWPJgUptLAET8O9XQ65jG7TRhG16bw11pbUoTuc 6Q2tLNZrjEOEnPxJABQqCcr5zt0l153VHDiYTKEvRXyoDvtBnlyPSlGsVJkwyRrq hn1JxS93E1E6Tblm1WZqBhGhBNpXoDt40CxIRDZXbkYf4gmPCZtMYQ+irP3JixN8 gKM4l7qVOe3UxrCwtHWqAoGjG/BDAtn4HRLDUG63NnWYOyD+ANrS8GN/Wrck2BeU Zh3ZRtA4JXgvyaC63ylgWBsim2SbnveLBKspxDzhQN3Qd2AvenIVLDQNhDjO1HGc e0h7nEUbANwNWwb4GSuqyLEqeK3sFE0z+G7klIYVJHCt+lL4FQYuMQJzGkEQn8el UQKlk8kaGYsocEV4eGTE9WGooT2/iO7RFWaGSNj5myXc3Kqu+aSF6JkUGx6wAD/q pEJizGn7PqHRC/HO1YCi/O52UufA8qc1g9VQhg2N35u+Mvx2Z4ZY6dsPNNcbDElf xKluO00c4RkEEUOJTVs4LLB3KmxpwUqdIctO9Ox1kOyQsNUU8yJQW93zA1hj4rSD RKjgBwPqv2lM3NpWhRo4umoqaW9x2AO/gVO99io4FXOHT5cSNlTPgBYFfKoXQtIG NgMYkFrnlo7pfZMI9lwWs2tDO564nlNaqfh+pwIDAQABo4ICHTCCAhkwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBQaXNLldtkxUThFexlXTYWyTuZHVzAfBgNVHSMEGDAW gBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUH MAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3Iz LmkubGVuY3Iub3JnLzAlBgNVHREEHjAcggpzYXVtYWwuY29tgg53d3cuc2F1bWFs LmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA 8QB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjttBNa8AAAQD AEcwRQIhAL2BXg0+T1ZbhTyyK1s82JoinlvzILe+0cBxBfsoqZMhAiBMtALEcY7f J45XDuLZbb3AfthDYFE6lKENsBL6h8VQ4AB3AN/hVuuqBa+1nA+GcY2owDJOrlbZ bqf1pWoB0cE7vlJcAAABjttBNmwAAAQDAEgwRgIhAOHE98Q5TeE1FY3neoRBYNuC Mow3hFvihacbjkXOxuP6AiEA7zQ1MqihsiZyK8kOrx+C9vJWJdNOf808fM2dMjtC KmYwDQYJKoZIhvcNAQELBQADggEBAF3ArGAsu7d93kqGuWteNvQ9yZyPdvtHN0P6 zeCkdBKi/RLyUlhY78hw6Cc2YNAbpEHXSbIVyV4271qQHhZYkFjgShp8jcjTBfDu ymEaZEc+mia0HkEzjSszoRXtiBSOdJqFkcffHfAj7aIYP3LLOpyzocXaEOsPhsSP n1JJDh4TqLnAuBv7W17z7Kv69OlN2cgTO6YQSIC/gUHU1Mx4IiQR8TrE5W++hWJ9 y5ipjBMCpwtqIfZixHi2M9+9LM8Xq0eAw8ExDL8BWU6JrEFfWsNUJMByYC6zUC6f z+n+Fc82PrzyAfvvsbSEyLsHPisu3MFaUthb61cvpSUp6FeouZ0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA/nP2zh+8/VmxXug0mz2T 3SMPR2nwjprljyYFKbSwBE/DvV0OuYxu00YRtem8NdaW1KE7nOkNrSzWa4xDhJz8 SQAUKgnK+c7dJded1Rw4mEyhL0V8qA77QZ5cj0pRrFSZMMka6oZ9ScUvdxNROk25 ZtVmagYRoQTaV6A7eNAsSEQ2V25GH+IJjwmbTGEPoqz9yYsTfICjOJe6lTnt1Maw sLR1qgKBoxvwQwLZ+B0Sw1ButzZ1mDsg/gDa0vBjf1q3JNgXlGYd2UbQOCV4L8mg ut8pYFgbIptkm573iwSrKcQ84UDd0HdgL3pyFSw0DYQ4ztRxnHtIe5xFGwDcDVsG +BkrqsixKnit7BRNM/hu5JSGFSRwrfpS+BUGLjECcxpBEJ/HpVECpZPJGhmLKHBF eHhkxPVhqKE9v4ju0RVmhkjY+Zsl3NyqrvmkheiZFBsesAA/6qRCYsxp+z6h0Qvx ztWAovzudlLnwPKnNYPVUIYNjd+bvjL8dmeGWOnbDzTXGwxJX8SpbjtNHOEZBBFD iU1bOCywdypsacFKnSHLTvTsdZDskLDVFPMiUFvd8wNYY+K0g0So4AcD6r9pTNza VoUaOLpqKmlvcdgDv4FTvfYqOBVzh0+XEjZUz4AWBXyqF0LSBjYDGJBa55aO6X2T CPZcFrNrQzueuJ5TWqn4fqcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 396313382371513652857404681839464453010978 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-14 05:17:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-13 05:17:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'saumal.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 1038077609613439623315225633393507318040846982872118125646123140770592214416054147827498287643176530962709515270915347145972421595406660433709274957424526878465792641494210547319453396359157457264861299304206490883323470130633399902869794805336114047899631158013392250798449317346464828050375970639842502036213770707859627456940541027287744443249234247855753210237394513177829731553777755860906028669336527773170598152100962580342976477233594730933565975731425089337277042234495125549974879606850123567084589907478485955954565704696792533167569777030865930032098278997913365520587993397119455048684957706881151871411574612138051128808195552500764153312420600082794534855091950083055609926597679345566718520538003328686899679114267735053883711469982160852482963233358107139637371582002182731313450855480215620512739246847926243998659813621690808684574771969491854944557576056894873804780162316503577984978513674041617169242281550723368806481880076648035017355027387925301389660048142426868714982359940653322024879513669834363084642615991840430776596830395717380340214594131093654392044925519660517329973136541939608128834313377353570232915025714505800601767931761491048012030143894718652205346988772051604735495495366244158249905979047 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1a5cd2e576d9315138457b19574d85b24ee64757 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saumal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.saumal.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018edb4135af0000040300473045022100bd815e0d3e4f565b853cb22b5b3cd89a229e5bf320b7bed1c07105fb28a9932102204cb402c4718edf278e570ee2d96dbdc07ed84360513a94a10db012fa87c550e0007700dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018edb41366c0000040300483046022100e1c4f7c4394de135158de77a844160db82328c37845be285a71b8e45cec6e3fa022100ef343532a8a1b226722bc90eaf1f82f6f25625d34e7fcd3c7ccd9d323b422a66 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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