tmr.se

Issued by R3

About this certificate

This digital certificate with serial number 04:ad:e9:7b:0b:c1:c2:41:f5:7c:f2:3a:6d:04:ee:bd:2d:9e was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=tmr.se

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:ad:e9:7b:0b:c1:c2:41:f5:7c:f2:3a:6d:04:ee:bd:2d:9e
Serial Number (int): 407628342218352486784633948056499915664798
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 6a:5e:07:d3:79:2f:d8:ac:61:41:4a:59:6f:65:6e:d3:d5:ed:c8:3f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): b0:de:92:43:c7:2d:d7:c5:62:7f:c0:d8:26:05:a3:3e:66:87:45:f5
Fingerprint (sha256): 1d:e9:55:ea:d5:05:e0:1f:88:b7:d2:37:f9:e4:fc:8b:f0:10:0f:90:63:f5:86:33:2b:04:a9:54:a2:50:a3:9f

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate tmr.se

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for tmr.se

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

tmr.se
www.tmr.se

Other certificates including the domain name tmr.se

(limited to 100 certificates)

Certificate

The complete raw certificate details for tmr.se in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdLWxfESYLA+Rv+60HGC
F1vSOQt3+ChjE5Z39ExeuIjxsIQQRTyDKp6fpRJjnpWhCQLPIQf4dXQe8rr2MTvE
j5/CDDae/a/ZFCmPAZ+EaGS0keNQTRphJk8B7fHn51NHMocs7vCi+ZlWXuNZRGkq
Wt61nqQCzOXkVou7VBWIgzg6Ncq8vOtucXWrkGDRwCyqE2V/pwNMUqKVyhLDQQsD
6NjSMW/BiEIFQFvYaetRo6USKVPexCPJjc3EDaVbTczoC8PtoyMRGTBwZ3MwcIuk
xLWJEFaY7IwjkBVC5SSnDQK9pleJ4FLZnDdbFRNxLYKfES6+N3TiwMib6Fwrcacs
3QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 407628342218352486784633948056499915664798
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-26 06:53:41 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-24 06:53:40 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tmr.se'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22953101763934150778698818000379051743920591542901485940779830530738157582566694391620632942827275217683924697780625091905119904710371616982861148610878388078682080683662349526571096327630352502578070131475837560138719199245912928855855988275809364740960053827122775641866342239571933002496966510736344050777781409425728142498190881874023018959921590796852086843478342537937795081874896286496931972426674661680026218971845050853413481113547981878126627940121067767746253803941057299102642609061146079747115191547222486761807556517795331022427580599497012054217454825485338062875813533763903795872685475389649814236381
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6a5e07d3792fd8ac61414a596f656ed3d5edc83f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tmr.se'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tmr.se'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b6af98d0b000004030046304402205a65249daad6a3b0ccd1998ad62e704b73aadc5fc9eb93c54ec4ae7961b9d6f6022036dcd6b32536099499b3b1bea18d28def9883d576b2c253fcc489ed7c891ceac00750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018b6af98dad000004030046304402205f88e14e7de7d2022df677e3747e3b1d0af981cd59d8233718e5b3619fef6b4e022062fbd20fd9f86d61f97dd93b22b3951d01f4fb301aff05c5373099cc10c5c066
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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