xn--stdyo-lva.com
Issued by R3
About this certificate
This digital certificate with serial number 04:8b:54:77:79:82:e6:4e:9f:e6:2f:ab:63:9d:9a:bf:3f:61 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=xn--stdyo-lva.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:8b:54:77:79:82:e6:4e:9f:e6:2f:ab:63:9d:9a:bf:3f:61Serial Number (int): 395860668228566031357998164718829745160033
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 84:75:f7:a1:73:e5:ae:6f:df:36:b6:64:f1:fc:f0:b8:fb:a4:30:0f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 1a:d5:31:c5:c9:28:76:a9:90:e0:bf:14:47:a8:99:23:bc:21:9e:83
Fingerprint (sha256): 21:aa:0f:6b:a5:44:6d:48:c8:24:1e:8e:0b:b8:70:64:3f:3a:60:1a:c1:f8:82:fb:39:4a:4e:12:57:ae:cc:67
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate xn--stdyo-lva.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for xn--stdyo-lva.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.xn--stdyo-lva.com
xn--stdyo-lva.com
xn--stdyo-lva.com
Other certificates including the domain name xn--stdyo-lva.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for xn--stdyo-lva.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGBTCCBO2gAwIBAgISBItUd3mC5k6f5i+rY52avz9hMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjUwMTIyMDFaFw0yNDA2MjMwMTIyMDBaMBwxGjAYBgNVBAMT EXhuLS1zdGR5by1sdmEuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKC AgEAs9LMY3aVcUlYhswMM3OOMeJS9VpP6jrtDCk5rbvAPWtEfsFoqfvnigvkk5q1 VY0SpqLc/mehAWvWwQDf8GbU+bM27lGBHwGs6/yPpSq0fxSPj+B7wrYt7Qh/ttab sMU8mn+cL8eTl1bTQW5a0AviUAoOLUKYO0oxEcfdzGUIAw4EBYsCodcCFcqJHufi U7XRsa95U7iS0L1rNRnDqQ6zh0gUwzf3/p5jj2klxyyYBBO57VJPhAhmOO0uQQqf 8Z0jUtQCilcxgVXW+p13zsmPeg/8UsJgDD9ndKVoeqSgw2D+ism0dAOzDOvikdQJ trwwSEPH49bufu7uE27fzd+bQUHcCk5z/EhlNB3j/Q7fVQLVXT4D/NSyCggZJeCn ETkGG6enDviMmCG1fGa8YAYipuJ3Qy3mvO3ZRIPRm7kAcz1qSWdF0vlQhfX/l/Gz Yiqrr4Lr1ynq6DOhgI+drQuiWfIT70yMM0d1xduh0YoNuA8CbA9Dd1Y5t/5HZ+cV 0C5MmFd9lLscAQZz4yclP+ZiGJr3gV2yclBnDXFqsRu+uQpxhs3IjFrOOsL1sIhv fVV0ogc4SrGzcORUsphg7VpWrdWB+EP4EBf5iPJXylPJih2RsS60P9Gb7MeNsVxd 1quZPdSJ4B5mAnqVsFTZPGpr5uqu8YF/IRuTWazW7dn4JbUCAwEAAaOCAikwggIl MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw DAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUhHX3oXPlrm/fNrZk8fzwuPukMA8wHwYD VR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEG CCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0 dHA6Ly9yMy5pLmxlbmNyLm9yZy8wMwYDVR0RBCwwKoIVd3d3LnhuLS1zdGR5by1s dmEuY29tghF4bi0tc3RkeW8tbHZhLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCC AQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AD8XS0/XIkdYlB1lHIS+DRLtkDd/H4Vq 68G/KIXs+GRuAAABjnNqLZcAAAQDAEYwRAIgYElbPKWF9fkJSd9RwRsdVEQCJDmM 0opqHPDg1S/gZlsCIFT2bJHGqsAMUmPp6IIr4mIQYgraw0swPJ+sjzhvyWjhAHYA ouK/1h7eLy8HoNZObTen3GVDsMa1LqLat4r4mm31F9gAAAGOc2o12gAABAMARzBF AiEAgUtMDSZ4++BnOrZh4SCIhNu1gctswacrIptj/e3BxyMCIGaePL99W8gFRhtT Ox/7IMTplRZShFGrtKYtHWLO1nUyMA0GCSqGSIb3DQEBCwUAA4IBAQAaEcemWjmc /t30imcf1YVY57cyQY9Wxe1FP3l7ag2Y9QoP0FuS/WsUAcKS55xiVA6qSTNSYuXX AJ1ibXDYBlXlk+x24EWtbHcqETbTkAV/Sw/X9WE4iUTUo1P3A6HZUQI7rlHp8CVv +FW1kBACDYJCfOI9FapQuUf4dEv7bJQXabC2cbNeOjBletSQgB41dzVZ3W8uzeV9 l02jd9WSIr6Z/DFnMzYfPww+8oO5OsCyjB/laOW/E92KmjvvWSTXPNoQKkwg2p83 ED/VEuFsE6i1r/dtU6kRj/u2tzdZhHmM3NYuSauhwmJYUoygNBUBOEIrnJeKr724 CtEeDGHKtl3z -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAs9LMY3aVcUlYhswMM3OO MeJS9VpP6jrtDCk5rbvAPWtEfsFoqfvnigvkk5q1VY0SpqLc/mehAWvWwQDf8GbU +bM27lGBHwGs6/yPpSq0fxSPj+B7wrYt7Qh/ttabsMU8mn+cL8eTl1bTQW5a0Avi UAoOLUKYO0oxEcfdzGUIAw4EBYsCodcCFcqJHufiU7XRsa95U7iS0L1rNRnDqQ6z h0gUwzf3/p5jj2klxyyYBBO57VJPhAhmOO0uQQqf8Z0jUtQCilcxgVXW+p13zsmP eg/8UsJgDD9ndKVoeqSgw2D+ism0dAOzDOvikdQJtrwwSEPH49bufu7uE27fzd+b QUHcCk5z/EhlNB3j/Q7fVQLVXT4D/NSyCggZJeCnETkGG6enDviMmCG1fGa8YAYi puJ3Qy3mvO3ZRIPRm7kAcz1qSWdF0vlQhfX/l/GzYiqrr4Lr1ynq6DOhgI+drQui WfIT70yMM0d1xduh0YoNuA8CbA9Dd1Y5t/5HZ+cV0C5MmFd9lLscAQZz4yclP+Zi GJr3gV2yclBnDXFqsRu+uQpxhs3IjFrOOsL1sIhvfVV0ogc4SrGzcORUsphg7VpW rdWB+EP4EBf5iPJXylPJih2RsS60P9Gb7MeNsVxd1quZPdSJ4B5mAnqVsFTZPGpr 5uqu8YF/IRuTWazW7dn4JbUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 395860668228566031357998164718829745160033 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-25 01:22:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-23 01:22:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'xn--stdyo-lva.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 733615594473566938289309338733651688408835030628218758568760972291213892786792454181312971101908906192885711599115354124036496781302906979418214780185998518097923644013926400702268596214566602142141638422216690079796357424576028573343437425716299051434009431788805003155645276593717447623814601524481790242871271951053902711182596652804626461110743248907010377191757251970964037456982094319123990886796633398344739619434782856539500990671101163324997521088417935054377879678326336240311251754600920286422444190383822543216339546557406949373977899781089063019122106006347314120474292301359078754007179053687800827533368058780607228186766105182034046950396541701420963460473817243987412735645441242428179024404908188691117509768388415573353621476593499084831454403139090431374132591837657294323255209567830898586280242005122304989590028597279608929412611319471278994251797172886662549083847494919114288446051187909447539123923398568383545776776393886407630551630517673105813252301858561224237464629413406131847195420685992142900272718051507611612705038497041698756786305974028531941277915878381151687532405508732454326190140145508907685018774371279304664154469255086712723140115881936844286797975369457657340585630964694173334889833909 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8475f7a173e5ae6fdf36b664f1fcf0b8fba4300f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.xn--stdyo-lva.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xn--stdyo-lva.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018e736a2d970000040300463044022060495b3ca585f5f90949df51c11b1d54440224398cd28a6a1cf0e0d52fe0665b022054f66c91c6aac00c5263e9e8822be26210620adac34b303c9fac8f386fc968e1007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e736a35da0000040300473045022100814b4c0d2678fbe0673ab661e1208884dbb581cb6cc1a72b229b63fdedc1c7230220669e3cbf7d5bc805461b533b1ffb20c4e99516528451abb4a62d1d62ced67532 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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