saumal.com

Issued by R3

About this certificate

This digital certificate with serial number 04:8c:a9:0d:0c:0c:b1:1f:1c:3b:a7:f2:43:85:84:00:76:22 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=saumal.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 04:8c:a9:0d:0c:0c:b1:1f:1c:3b:a7:f2:43:85:84:00:76:22
Serial Number (int): 396313382371513652857404681839464453010978
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 1a:5c:d2:e5:76:d9:31:51:38:45:7b:19:57:4d:85:b2:4e:e6:47:57
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): fa:28:1d:75:9d:60:c0:47:fb:43:8f:89:a8:2f:86:ac:e2:d5:ee:96
Fingerprint (sha256): 1c:e0:04:63:e9:5b:b6:33:c3:a7:e9:71:62:b4:fe:30:26:bc:8f:2f:41:8c:95:47:19:ea:d5:af:d0:6a:95:ac

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate saumal.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for saumal.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

saumal.com
www.saumal.com

Other certificates including the domain name saumal.com

(limited to 100 certificates)
saumal.com
saumal.com

Certificate

The complete raw certificate details for saumal.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA/nP2zh+8/VmxXug0mz2T
3SMPR2nwjprljyYFKbSwBE/DvV0OuYxu00YRtem8NdaW1KE7nOkNrSzWa4xDhJz8
SQAUKgnK+c7dJded1Rw4mEyhL0V8qA77QZ5cj0pRrFSZMMka6oZ9ScUvdxNROk25
ZtVmagYRoQTaV6A7eNAsSEQ2V25GH+IJjwmbTGEPoqz9yYsTfICjOJe6lTnt1Maw
sLR1qgKBoxvwQwLZ+B0Sw1ButzZ1mDsg/gDa0vBjf1q3JNgXlGYd2UbQOCV4L8mg
ut8pYFgbIptkm573iwSrKcQ84UDd0HdgL3pyFSw0DYQ4ztRxnHtIe5xFGwDcDVsG
+BkrqsixKnit7BRNM/hu5JSGFSRwrfpS+BUGLjECcxpBEJ/HpVECpZPJGhmLKHBF
eHhkxPVhqKE9v4ju0RVmhkjY+Zsl3NyqrvmkheiZFBsesAA/6qRCYsxp+z6h0Qvx
ztWAovzudlLnwPKnNYPVUIYNjd+bvjL8dmeGWOnbDzTXGwxJX8SpbjtNHOEZBBFD
iU1bOCywdypsacFKnSHLTvTsdZDskLDVFPMiUFvd8wNYY+K0g0So4AcD6r9pTNza
VoUaOLpqKmlvcdgDv4FTvfYqOBVzh0+XEjZUz4AWBXyqF0LSBjYDGJBa55aO6X2T
CPZcFrNrQzueuJ5TWqn4fqcCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 396313382371513652857404681839464453010978
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-14 05:17:47 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-13 05:17:46 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'saumal.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 1038077609613439623315225633393507318040846982872118125646123140770592214416054147827498287643176530962709515270915347145972421595406660433709274957424526878465792641494210547319453396359157457264861299304206490883323470130633399902869794805336114047899631158013392250798449317346464828050375970639842502036213770707859627456940541027287744443249234247855753210237394513177829731553777755860906028669336527773170598152100962580342976477233594730933565975731425089337277042234495125549974879606850123567084589907478485955954565704696792533167569777030865930032098278997913365520587993397119455048684957706881151871411574612138051128808195552500764153312420600082794534855091950083055609926597679345566718520538003328686899679114267735053883711469982160852482963233358107139637371582002182731313450855480215620512739246847926243998659813621690808684574771969491854944557576056894873804780162316503577984978513674041617169242281550723368806481880076648035017355027387925301389660048142426868714982359940653322024879513669834363084642615991840430776596830395717380340214594131093654392044925519660517329973136541939608128834313377353570232915025714505800601767931761491048012030143894718652205346988772051604735495495366244158249905979047
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							1a5cd2e576d9315138457b19574d85b24ee64757
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saumal.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.saumal.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f100760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018edb4135af0000040300473045022100bd815e0d3e4f565b853cb22b5b3cd89a229e5bf320b7bed1c07105fb28a9932102204cb402c4718edf278e570ee2d96dbdc07ed84360513a94a10db012fa87c550e0007700dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018edb41366c0000040300483046022100e1c4f7c4394de135158de77a844160db82328c37845be285a71b8e45cec6e3fa022100ef343532a8a1b226722bc90eaf1f82f6f25625d34e7fcd3c7ccd9d323b422a66
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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