baboba.nl
Issued by R3
About this certificate
This digital certificate with serial number 03:87:46:68:75:47:78:c4:78:e3:07:9f:07:1d:47:ad:99:ac was issued on by Let's Encrypt.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=baboba.nl
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:87:46:68:75:47:78:c4:78:e3:07:9f:07:1d:47:ad:99:acSerial Number (int): 307368565666890163127873255637851189385644
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d6:53:2c:1f:95:37:2b:df:b0:77:25:4a:02:59:b3:a7:78:89:04:31
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 03:a1:82:4c:94:98:51:a3:44:c8:7a:05:3a:08:4c:11:65:ce:01:5e
Fingerprint (sha256): 27:8b:73:c9:47:05:3e:4a:ac:4a:d7:0a:76:f1:27:24:da:92:7e:cb:80:55:9a:ca:96:d1:a6:5b:df:00:82:c0
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate baboba.nl
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for baboba.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
baboba.nl
mail.baboba.nl
pop.baboba.nl
smtp.baboba.nl
www.baboba.nl
mail.baboba.nl
pop.baboba.nl
smtp.baboba.nl
www.baboba.nl
Other certificates including the domain name baboba.nl
(limited to 100 certificates)
Certificate
The complete raw certificate details for baboba.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGHTCCBQWgAwIBAgISA4dGaHVHeMR44wefBx1HrZmsMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMTIyMjE5NThaFw0yNDAzMTEyMjE5NTdaMBQxEjAQBgNVBAMT CWJhYm9iYS5ubDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAM83M+VS 5pNsK7vnzqqUWw+YPVIBUN+HWNZJFDXdVbG8fx/eBSNE/9RqFeLsbyytvu+g4Ucc IXQGyTfOjMvvb8TkfF6Yw4iW9pAm769dXlXGgMBxt/Kef+lWzYO2WluWX336oRuG 0+zIw2TBbuVkNNV8pKmYA5dgBqude0RyCZpp4nTJWLR6DoHZI4Y2i4cB4PzcFuHP ixjFjroiIkGAJNFnbOABF+I6+QTxgLBNpruYN9fMQQhM7JAZwhF9SEQBaJACrYso Y3KXCIdKsPxbfiQJBderO2AhfaU5J7MkCy0GDZAwK4cPtF3U9YOwHkHD53+dsWVR 8UaEOJsL/WHH2yhFvxi+Gc8bPbWfjz9Mu/b4/tPFsOkdb8ng4o1N+2DC8QpdRMtI 9Z4G2EiyIDTZaVW+U9ohrTdPo2epNXKZd1LUgeqI0ScExN2enodBBGwJlKl9x0cD PC2j6x012OwsNlqR1kCW6p8OP/GZKl3fmOhPn4fgJJCPApHlo7/BDcX0Rf1h0Vou CSuMAARvNJ2JAY+6q3cs7vEo/G53WAGkpIwYsS/dPEp+FY1COJG7YBOLQ4mDP45Y wCqQBNvFiKbkE0Rztg55aiDCOM70Gas+1xkxjtQkOoHQut76xjTeat13tJcEmoRF sxlVBmAKA4d2AlnCK8HwwmBqaoWXnBl9fNnxAgMBAAGjggJJMIICRTAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFNZTLB+VNyvfsHclSgJZs6d4iQQxMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMFIGA1UdEQRLMEmCCWJhYm9iYS5ubIIObWFpbC5iYWJvYmEu bmyCDXBvcC5iYWJvYmEubmyCDnNtdHAuYmFib2JhLm5sgg13d3cuYmFib2JhLm5s MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHUA O1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGMYFR8YAAABAMARjBE AiAe176ZkbiHFxa+8PWGSzfZpif0OzSXJz8aPJ9oMKATIgIgZA00vAUeGNIsuBqB 7oDV1PDOCa5RkobE0/vOhn7mzp0AdwB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIK n+ZnTFo6dAAAAYxgVHytAAAEAwBIMEYCIQDh87sbPkjvHim2q0Kd51zjTW4Ko58+ sl3f1rqV198gHAIhAJ05IEdQu0H8XvB9sDH+cg5nj0EQmBOX123kwMg2M8TGMA0G CSqGSIb3DQEBCwUAA4IBAQBMCDX0qVvp+Uq/nYS0F2bfpLAv+pNhqYR5Rykz98Hx pXHXcUYONi+jM+V/mSTd4rSYB/qBUSJE7PxCNuWhgSVZu/tis+fMzBjPKo7SUDwl mJ0ktrfYHRrdYb8TGeC5StPmQMR4Ehf7FiVPPYFHZsFzHXHOvF95oxmcLOKjqWTP qYh3K8czqlKDN9lr0TTOVRf79XOf9VVyq86VZrlYcRq13aXBgGgvX4bsZIQgnFnh uck76m1IEu4VCfNkknDLvm6gFQ4ylpm4Wv6MhNhjhz1EJe29U36ZDQ7QIh2bMp4y GEI5PUr7HHAyQIfVJbKoyUDpnqAeXXa8lw80AWJoZ9Ye -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzzcz5VLmk2wru+fOqpRb D5g9UgFQ34dY1kkUNd1Vsbx/H94FI0T/1GoV4uxvLK2+76DhRxwhdAbJN86My+9v xOR8XpjDiJb2kCbvr11eVcaAwHG38p5/6VbNg7ZaW5ZfffqhG4bT7MjDZMFu5WQ0 1XykqZgDl2AGq517RHIJmmnidMlYtHoOgdkjhjaLhwHg/NwW4c+LGMWOuiIiQYAk 0Wds4AEX4jr5BPGAsE2mu5g318xBCEzskBnCEX1IRAFokAKtiyhjcpcIh0qw/Ft+ JAkF16s7YCF9pTknsyQLLQYNkDArhw+0XdT1g7AeQcPnf52xZVHxRoQ4mwv9Ycfb KEW/GL4Zzxs9tZ+PP0y79vj+08Ww6R1vyeDijU37YMLxCl1Ey0j1ngbYSLIgNNlp Vb5T2iGtN0+jZ6k1cpl3UtSB6ojRJwTE3Z6eh0EEbAmUqX3HRwM8LaPrHTXY7Cw2 WpHWQJbqnw4/8ZkqXd+Y6E+fh+AkkI8CkeWjv8ENxfRF/WHRWi4JK4wABG80nYkB j7qrdyzu8Sj8bndYAaSkjBixL908Sn4VjUI4kbtgE4tDiYM/jljAKpAE28WIpuQT RHO2DnlqIMI4zvQZqz7XGTGO1CQ6gdC63vrGNN5q3Xe0lwSahEWzGVUGYAoDh3YC WcIrwfDCYGpqhZecGX182fECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 307368565666890163127873255637851189385644 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-12 22:19:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-11 22:19:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'baboba.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 845366038645945450442736400220699817773209866376675817901868818752519281919431913866719119319210303194312424477323356063381348098703860545556390390764333575491374930504300972926565453963729410797792255702190750516560615638959249442098121846070782328215613418783565097321141369298732726143431696425723753062698689347095494605235087543376391993600269593017855727005349824323130158710913611990292648298560769329220815691629520352379435109836940561071170312982415691471171563652812819105670348199150394974405097385365372733255766500183103164281903221776380516741159179090630850998817900782029704849682179748018884936614246061309099904992149156801209586456333230521953836571624063536924639583110131911424427107696067767821687589227464155501713060347640087453311763949157813426243038168174491170469829623697304138226784143830662076922483157919043600974078037971875971472782105223016082690167973716697053993422142304131987275446341637586000698196301177674972514851410849821318832779956705555450863722734975277551334276213654228397626891160429553882884931684822891885149630047169389994182913924126818224181784549604205210890041754038442408564792676607108529182857988598003368531518427675559572135804260395035819635767773057543200656158677489 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d6532c1f95372bdfb077254a0259b3a778890431 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'baboba.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.baboba.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pop.baboba.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smtp.baboba.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.baboba.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c60547c60000004030046304402201ed7be9991b8871716bef0f5864b37d9a627f43b3497273f1a3c9f6830a013220220640d34bc051e18d22cb81a81ee80d5d4f0ce09ae519286c4d3fbce867ee6ce9d00770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018c60547cad0000040300483046022100e1f3bb1b3e48ef1e29b6ab429de75ce34d6e0aa39f3eb25ddfd6ba95d7df201c0221009d39204750bb41fc5ef07db031fe720e678f4110981397d76de4c0c83633c4c6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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