curante.net
Issued by R3
About this certificate
This digital certificate with serial number 04:16:66:00:f4:e7:dc:cd:2c:19:39:17:4d:b2:b3:7c:88:2f was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=curante.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:16:66:00:f4:e7:dc:cd:2c:19:39:17:4d:b2:b3:7c:88:2fSerial Number (int): 356070942022149677773731797725438042474543
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: eb:86:81:98:2c:b4:0e:fb:b2:72:ca:de:35:a2:82:8b:ef:96:9f:0b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): e1:9a:2e:e8:6d:b3:05:9a:52:12:7c:46:5a:66:56:62:79:33:e5:2c
Fingerprint (sha256): 28:75:03:73:0a:d1:cf:c4:f1:3b:dc:a6:7b:a9:88:33:e0:56:dc:ef:12:9c:8b:88:25:f4:ab:c5:6c:35:4e:55
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate curante.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for curante.net
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
curante.net
www.curante.net
www.curante.net
Other certificates including the domain name curante.net
(limited to 100 certificates)
personal.lrsocialjustice.life
curante.net
curante.net
blog.curante.net
curante.net
blog.curante.net
curante.net
blog.curante.net
farmacia.curante.net
personal.lrsocialjustice.life
personal.lrsocialjustice.life
rh.curante.net
curante.net
rh.curante.net
curante.net
curante.net
blog.curante.net
blog.curante.net
curante.net
rh.curante.net
curante.net
blog.curante.net
blog.curante.net
blog.curante.net
curante.net
curante.net
loja.curante.net
blog.curante.net
blog.curante.net
www.loja.curante.net
curante.net
blog.curante.net
curante.net
curante.net
curante.net
loja.curante.net
blog.curante.net
blog.curante.net
personal.lrsocialjustice.life
loja.curante.net
curante.net
curante.net
blog.curante.net
farmacia.curante.net
rh.curante.net
farmacia.curante.net
curante.net
curante.net
curante.net
blog.curante.net
curante.net
blog.curante.net
curante.net
blog.curante.net
farmacia.curante.net
personal.lrsocialjustice.life
personal.lrsocialjustice.life
rh.curante.net
curante.net
rh.curante.net
curante.net
curante.net
blog.curante.net
blog.curante.net
curante.net
rh.curante.net
curante.net
blog.curante.net
blog.curante.net
blog.curante.net
curante.net
curante.net
loja.curante.net
blog.curante.net
blog.curante.net
www.loja.curante.net
curante.net
blog.curante.net
curante.net
curante.net
curante.net
loja.curante.net
blog.curante.net
blog.curante.net
personal.lrsocialjustice.life
loja.curante.net
curante.net
curante.net
blog.curante.net
farmacia.curante.net
rh.curante.net
farmacia.curante.net
curante.net
Certificate
The complete raw certificate details for curante.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgISBBZmAPTn3M0sGTkXTbKzfIgvMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMDcwODQwNTVaFw0yNDA2MDUwODQwNTRaMBYxFDASBgNVBAMT C2N1cmFudGUubmV0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAw/Sx oWNgJesILsoGZQSoD0wkLKX35Q4ycQw/Q7F7W3gjmnwBR2yCEbISTuQ4739QC+NT 9jUBSHZ8Bj481tg0oJZy8rrXUaxqY3mP5t1G+C4KtNxq/QlPn+DdGMr6NZC5Xg7B BGf4CoveIQ52mkeEd1aU/8K+dl+j3v/I9KAxvxZ5AbMFNELM6NQ21Y3FWJiHJSi0 9a6dNUGQLPALWTbpYD5cPqyjTAFril9wBT9R14TVvJzLTrtWzafN7u+ChW8EhREV aAtIekUaSF5EcGA/GBNytjJ4o41A5/eFJ4uJV+53i/ZJ/XEPXmpEMtSt4jMR2+8d /XngmUA6briSWxauAMvgpNsqUPT67vQvNXkEnQvo9mLEPABSeVWWAfy7S1hhEqmO i+we/6i88Fg2DExQixkGkdC1io4nkiTld55HRfo1mva23Zq8g3nSLKlSK6i0MJFd 9cccBkjg9zr/buhWP4dY2NJeeDyptTSx0c8xfoPN9AepQWOHDBV6BTMm4qe5j3xI eA59Ro6YS9HQnSlJ15K5zvKFVJpsOlNI7hDSbhy7U+0Aiq/i6YzyJlPOA1HttCYP flX5hEvxszwG1Pn5iYB0u3WayMjz6M7kwND8FyfHfuVCWjwZYj9C//taChzOYhyg 6uftwhdOBZHE/mQZ8zLTP/8lwtktLrrLWAD8rSECAwEAAaOCAiAwggIcMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQU64aBmCy0DvuycsreNaKCi++WnwswHwYDVR0jBBgw FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y My5pLmxlbmNyLm9yZy8wJwYDVR0RBCAwHoILY3VyYW50ZS5uZXSCD3d3dy5jdXJh bnRlLm5ldDATBgNVHSAEDDAKMAgGBmeBDAECATCCAQYGCisGAQQB1nkCBAIEgfcE gfQA8gB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjhhJiJkA AAQDAEgwRgIhAKoEp5+CymxPEv4KNKzHFNTU9tGdTHpAgl6p4kqFqnUlAiEA8bBq SIWynXYAe+Euf70h9vKAK5i8WVDK0PS/Nt1o570AdwDuzdBk1dsazsVct520zROi ModGfLzs3sNRSFlGcR+1mwAAAY4YSYigAAAEAwBIMEYCIQCDFQs2W9Ry2Y9l7Lu0 PJIuDBFC/zZs+bnKqh15m3OtbgIhAKBROwrhbXaOQR0pHnQUjo5h50GTD9rVEeuq G17wl8c0MA0GCSqGSIb3DQEBCwUAA4IBAQAa9mtuPST+ehwvmjUl8/E4fWRMTq8A Qi81jPJOWGPlgXBdFKa2Vgmy8HvTZCJH7V0rkZiBBAn9Xzgcktc7onlm29EZfR2e 0NhZ6ls7fQmPKxpmc0OeTKJm231pblTdiUu+qH0X9wAIaeZLNmf364PDRMsITdwB ZhrnE+HDl4Nw+ZWda/Bue+g3O/lVAXQ7/d5tm731YrAhfd72wqQ2lMvYJgaejxTO VLm4NmlbirZmt6z2hfEbLhyREb1HcItswoB3ZAk4hu7TpldMYBH+RqOaUEXivoWF CwSHceT/79njScLWXDiUKbl/3AQID7c+dekIEsBEo5WF089Kv3AcC2WE -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAw/SxoWNgJesILsoGZQSo D0wkLKX35Q4ycQw/Q7F7W3gjmnwBR2yCEbISTuQ4739QC+NT9jUBSHZ8Bj481tg0 oJZy8rrXUaxqY3mP5t1G+C4KtNxq/QlPn+DdGMr6NZC5Xg7BBGf4CoveIQ52mkeE d1aU/8K+dl+j3v/I9KAxvxZ5AbMFNELM6NQ21Y3FWJiHJSi09a6dNUGQLPALWTbp YD5cPqyjTAFril9wBT9R14TVvJzLTrtWzafN7u+ChW8EhREVaAtIekUaSF5EcGA/ GBNytjJ4o41A5/eFJ4uJV+53i/ZJ/XEPXmpEMtSt4jMR2+8d/XngmUA6briSWxau AMvgpNsqUPT67vQvNXkEnQvo9mLEPABSeVWWAfy7S1hhEqmOi+we/6i88Fg2DExQ ixkGkdC1io4nkiTld55HRfo1mva23Zq8g3nSLKlSK6i0MJFd9cccBkjg9zr/buhW P4dY2NJeeDyptTSx0c8xfoPN9AepQWOHDBV6BTMm4qe5j3xIeA59Ro6YS9HQnSlJ 15K5zvKFVJpsOlNI7hDSbhy7U+0Aiq/i6YzyJlPOA1HttCYPflX5hEvxszwG1Pn5 iYB0u3WayMjz6M7kwND8FyfHfuVCWjwZYj9C//taChzOYhyg6uftwhdOBZHE/mQZ 8zLTP/8lwtktLrrLWAD8rSECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 356070942022149677773731797725438042474543 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-07 08:40:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-05 08:40:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'curante.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 799430061586139623859855670954513879171700131432688896745582864485731781866191678447635118078098562838851206387848173244378888613760384565867355632916098208851832363182483223651018741542947138382757054098003111141949398678571999178039997925300149221049691119953405805335217245160735128777054384600322603631265561820546899460508280151448863000027788174422771682768427764479878074538170565615627845677125030683652904828686249597461983241523684256748335551120173994459658237948777259201610430769974168553618487276131442645320283852316682750738448548000818491740488167986065437665637149357836105770197915456670854235079151021725437675858753319259831438231375714284389358348113695079858390243253026420848134776635437446233601435233172177163378347887277460109017128438834157476797584533675839646433207832350421640138537686581366671034155093386452517058622330933585430930017230736360468240959380208477209873794198967819087293110165811009467569682742153070710323988242545482423429633682598350044373849119158703129479912548441524005000467393348543478528221306921365782879878984423848254253152689109991986582526908938733290115282500169555012120996728292047961870958154017632885508642698923931579141442515235684263772908550568635018052468780321 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) eb8681982cb40efbb272cade35a2828bef969f0b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'curante.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.curante.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e184988990000040300483046022100aa04a79f82ca6c4f12fe0a34acc714d4d4f6d19d4c7a40825ea9e24a85aa7525022100f1b06a4885b29d76007be12e7fbd21f6f2802b98bc5950cad0f4bf36dd68e7bd007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e184988a0000004030048304602210083150b365bd472d98f65ecbbb43c922e0c1142ff366cf9b9caaa1d799b73ad6e022100a0513b0ae16d768e411d291e74148e8e61e741930fdad511ebaa1b5ef097c734 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 001af66b6e3d24fe7a1c2f9a3525f3f1387d644c4eaf00422f358cf24e5863e581705d14a6b65609b2f07bd3642247ed5d2b9198810409fd5f381c92d73ba27966dbd1197d1d9ed0d859ea5b3b7d098f2b1a6673439e4ca266db7d696e54dd894bbea87d17f7000869e64b3667f7eb83c344cb084ddc01661ae713e1c3978370f9959d6bf06e7be8373bf95501743bfdde6d9bbdf562b0217ddef6c2a43694cbd826069e8f14ce54b9b836695b8ab666b7acf685f11b2e1c9111bd47708b6cc2807764093886eed3a6574c6011fe46a39a5045e2be85850b048771e4ffefd9e349c2d65c389429b97fdc04080fb73e75e90812c044a39585d3cf4abf701c0b6584