www.duzco.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:94:15:67:bf:93:73:b6:29:90:81:d9:91:dd:3f:fa:04:35 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.duzco.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:94:15:67:bf:93:73:b6:29:90:81:d9:91:dd:3f:fa:04:35Serial Number (int): 398839386511450376683629005259359158666293
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b9:6f:17:25:03:59:1b:cf:0f:59:35:05:b8:ff:f9:40:69:5f:6f:1a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 3a:6e:ed:3e:23:0a:b0:de:7b:e9:dd:8a:9a:b6:61:31:bc:a3:fa:fb
Fingerprint (sha256): 25:44:53:ed:4d:f9:e0:01:4a:90:f0:9d:07:36:5b:cd:04:0d:ec:c6:ea:7c:51:97:00:cf:97:41:4d:f4:b0:ec
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.duzco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.duzco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.duzco.com
Other certificates including the domain name duzco.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.duzco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISBJQVZ7+Tc7YpkIHZkd0/+gQ1MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMjMyMzQxMThaFw0y MDA1MjMyMzQxMThaMBgxFjAUBgNVBAMTDXd3dy5kdXpjby5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQC/cIx93ojQd24bKjOQADUvCK/lWdp3bUD4 NO8SALRhsPDAdTR8/kGFapBzyjGNts6s3maipCxi5EsYuwnGcRnru9fA1C5EuLg1 mjgNzP5IvIElgTiqRST39OXlHntjvc5GWj/XGe3hwe31yUXZBjyg+BWKb8F84oc9 BrPd/Nq7I+4/WS9yMrwNfaQoK9fHxHmXElSv7ziQbNh/NEfsT27+pq4ww04JBC1P TT4xJLzvjJawOj8uCK57+x6MXjLo8kR0/5JQPaf7AMJzbiKIvSOn4/HvOboqOGh5 84IFFAhMr3BNCFfObXYp7qtf4tQbS35yWU/hpemDzCkU9rdp1/OpGMAa9dpHWyxw I6ug1Aq0rzNrHDPZKBzULY+kn4MxmqTn9ipNgHHKJ69hSkDRrIo9EqWx5Na6FLfk gwys5/E3UNdWMNHlGgrsnk3HEs0/N0PfNBgFvOnm2iALL0Ved6AvIS4TvHK0qRtG CjyaqKZOnPu3o7m1QUx37gWzkSrdVvfHaULpuEzlEhGN0xlCI9MJSkuf1Ctlx7Kq 0vs+qYsAf3nGsU6adJE3Gc/7Bg3NVjAneDQJpLpB2ytXBtIH86fyxXAHwsIhi43d /KHL0Z+iR3xUkIW/w8kzdhmg6QyCZe8vzvYjPYneurUxfi0r0ndIzsNcKXWLrxye bk8kcH7RmwIDAQABo4ICYTCCAl0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS5bxcl A1kbzw9ZNQW4//lAaV9vGjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXd3dy5kdXpjby5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHx AO8AdgDwlaRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAXB0pCIuAAAE AwBHMEUCIAFOgInQzksB7zkEV2p+21j/sIJnXSmCcZbBd8mnDWIeAiEAgHpHxxkG eINH6DhHsz0m+guPUcaI0AMdZzBO6NLOfksAdQAHt1wb5X1o//Gwxh0jFce65ld8 V5S3au68YToaadOiHAAAAXB0pCJSAAAEAwBGMEQCICSS+e/hJkyXiwqSatUlGXqG 2kFN3S96ZVpn6KLU3Cp2AiBS8x7XyGKP6tDyYW+OAbuV//UNr/Jbtlt7YjjQAE3Y SzANBgkqhkiG9w0BAQsFAAOCAQEAjSYVulV9zQIGcz+wlGyE0vrscQV252mexYOr /QGf8SN66KYYIA3uSQURxOH8fl3CSJFGSeJL3dKSIlPszxuSoxFYV/SPEWIIC123 xL6YNC4Vt7NZYoIQaHK2y0sWySNEvhnLv4D77qml5UN8kt9UaHskchBybjHleyn1 xcEsQpyqxUecwBPFhsIhhTK1TB06hdRrPxN2l97RFIw5M8E2DLFdXMurAOojRThs 47yTDVfazrUP0gbTxOwxhN5Gplsl1ZYk89uvMFlA/ZhS6Xrj2OsjFDXDrH4bcWYz g2Z0ZHZqCsxQ09hqZoPRtDetlOAzNVHpdroDtOWnM1CHJm6VbQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAv3CMfd6I0HduGyozkAA1 Lwiv5Vnad21A+DTvEgC0YbDwwHU0fP5BhWqQc8oxjbbOrN5moqQsYuRLGLsJxnEZ 67vXwNQuRLi4NZo4Dcz+SLyBJYE4qkUk9/Tl5R57Y73ORlo/1xnt4cHt9clF2QY8 oPgVim/BfOKHPQaz3fzauyPuP1kvcjK8DX2kKCvXx8R5lxJUr+84kGzYfzRH7E9u /qauMMNOCQQtT00+MSS874yWsDo/Lgiue/sejF4y6PJEdP+SUD2n+wDCc24iiL0j p+Px7zm6KjhoefOCBRQITK9wTQhXzm12Ke6rX+LUG0t+cllP4aXpg8wpFPa3adfz qRjAGvXaR1sscCOroNQKtK8zaxwz2Sgc1C2PpJ+DMZqk5/YqTYBxyievYUpA0ayK PRKlseTWuhS35IMMrOfxN1DXVjDR5RoK7J5NxxLNPzdD3zQYBbzp5togCy9FXneg LyEuE7xytKkbRgo8mqimTpz7t6O5tUFMd+4Fs5Eq3Vb3x2lC6bhM5RIRjdMZQiPT CUpLn9QrZceyqtL7PqmLAH95xrFOmnSRNxnP+wYNzVYwJ3g0CaS6QdsrVwbSB/On 8sVwB8LCIYuN3fyhy9Gfokd8VJCFv8PJM3YZoOkMgmXvL872Iz2J3rq1MX4tK9J3 SM7DXCl1i68cnm5PJHB+0ZsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 398839386511450376683629005259359158666293 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-23 23:41:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-23 23:41:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.duzco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 781005606938657678040282730331116141508383363292544680529167161539845955405451601577844013758743009244131999667380429416973496753746687425328667160186788291148194590172956733222668850041335594393855944108708231583811433172371587664377923462432336824507384287999775938228050720445787301425441848944741547865658328858983340906558034194512509090349783679727165496871288939909302850326767087957216810968729107812300043349833973775725160810493567127288703868642227343097919218580953118854256587261831172845967107588382071119829476684952113441936153780466571491989466893336321573848564524997230333776670977328286734029226530192363782407294367385445131134906366487891702255425323925672007323461484123347245356413716658156625055526744261077291985966810157825318127892427804318058060837556741144126551086425368613510371246241397901909114822343356129042297495863478488377791797830990803822468414365531009128729343236461766614327585393946681042782070951543272155223569652039383942466421166206133478388709020874026466211643381258162753680547856639400595025146793023746446554818303403482278347380578995885947380866410947629307162077295035789363841132674461043231688949046556690289630048431282064111527307986136461654383295098576556618172900233627 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b96f172503591bcf0f593505b8fff940695f6f1a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.duzco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000017074a4222e00000403004730450220014e8089d0ce4b01ef3904576a7edb58ffb082675d29827196c177c9a70d621e022100807a47c71906788347e83847b33d26fa0b8f51c688d0031d67304ee8d2ce7e4b00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000017074a42252000004030046304402202492f9efe1264c978b0a926ad525197a86da414ddd2f7a655a67e8a2d4dc2a76022052f31ed7c8628fead0f2616f8e01bb95fff50daff25bb65b7b6238d0004dd84b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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