levisweed.com
Issued by R3
About this certificate
This digital certificate with serial number 04:88:d7:fb:02:c7:f3:8f:b1:23:3f:3e:48:c4:05:10:cb:f1 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=levisweed.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:88:d7:fb:02:c7:f3:8f:b1:23:3f:3e:48:c4:05:10:cb:f1Serial Number (int): 395014632970300468889853420736458605513713
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: bf:33:62:74:d0:92:b7:e3:2a:fd:b8:0e:9f:2f:46:fa:c6:cd:97:53
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): cc:79:b7:1e:cd:c6:80:74:cd:1f:4d:14:80:0d:6e:21:7d:3b:aa:2d
Fingerprint (sha256): 2f:c5:db:ed:76:fb:6a:fa:e9:fe:4d:53:a5:82:56:46:98:50:60:91:ba:3b:47:1b:68:0c:cd:82:c0:78:58:90
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate levisweed.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for levisweed.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
levisweed.com
www.levisweed.com
www.levisweed.com
Other certificates including the domain name levisweed.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for levisweed.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgISBIjX+wLH84+xIz8+SMQFEMvxMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDUxNTAyMTlaFw0yNDA3MDQxNTAyMThaMBgxFjAUBgNVBAMT DWxldmlzd2VlZC5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCj IM/YkPqIoWCpJi3qchfgPlMU1heAV5vK4j3aWcOfpOllygSDnbu79VqbTi+mRqPo fSCocnvejRTZcqDcLgc1ZJ1tS2yBLYrD8iDX6z45YWgLEcQye0WZXhwtbMNOwIzN LtR78EvrTN0YnyTc2F7oCQyVoA8Njy6lgTj17Ef9PBdeDFbU73mNFj4KmHD0qkIm oaThfV2mUk08RBysYR0kVm3HKzC5cL0GcqIyJP2i0UU9u8p9hQjFNcATiXmrgQK6 P+z8GGlkbgSOd+a9oNE/LpBqSVPZ9q7MtkwAg6xyeCXLnxx51g3QABaWbPp3zyyC ihXhAoSd2c8IYx7dLXnx/KxhAaK4ZasXk9BMGcT8siU1xQQ7hC6uDmxjKnluBvOQ b/4TGmdVCbmPclDrh5H1B/jB5f18q5QSaWBrkAyvJ+vUKzGkP1v274peo/uZ6x7d VMSYKEhYRUK4CobPkTUIDXnrKot7CJd+fqBCifAZw00EfE7Tt4YKUbU4rWfLm8nA /WGKJo09XecXRdzji5twtU4GwDSQESvNcwi3gV7cdkylc8pAJQafdKiVZu9f+Xpt fjGglWJn5Kdq4pcGv5a1PVUI1tI1YVGWBWxlpOnoMVtYvg1AtntGz5KOQuEV5e5Y TTEmsDja/0V3CdGDhrSz2TohJNP0XYUrhIz70XpPjQIDAQABo4ICITCCAh0wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNV HRMBAf8EAjAAMB0GA1UdDgQWBBS/M2J00JK34yr9uA6fL0b6xs2XUzAfBgNVHSME GDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYB BQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDov L3IzLmkubGVuY3Iub3JnLzArBgNVHREEJDAigg1sZXZpc3dlZWQuY29tghF3d3cu bGV2aXN3ZWVkLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkC BAIEgfQEgfEA7wB1ABmYEHEJ8NZSLjCA0p4/ZLuDbijM+Q9Sju7fzko/FrTKAAAB jq7/IRgAAAQDAEYwRAIgXXVJNHGmJqog52x+r/7DZn8nTejF1KrvKYIJHbXOETgC IBIjyuOIPq12Nut1uWKdmQYI1rrlMcrYlJeZX/Z3QoPSAHYAdv+IPwq2+5VRwmHM 9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGOrv8hRwAABAMARzBFAiB6DszTkDtgHenb yvAPhopwF/7C4c3uwyGNjeDYNLxOAwIhAPAz5nz83InoWuQQ4LGUhkXAvQUACiKu QLBNYF61gsiqMA0GCSqGSIb3DQEBCwUAA4IBAQCej+tydt1/apuoH7cZ5xDmi1/X yClb53zRXQFZ1/CQqWrDptdYF4rS5z8xvz1DzHAydrVMzmiKFsMR58zaEsRlGtTU O3YeYYc+TsnVANpz6NnvblVXwn5wdhFQpPB1gRWg1rC/ZpMc05ybCQElloLO+gQS deyBbLofU80f1VZQ7YbMN6uy59gYk+MAddGaQzSkMNSCOvOkVXW5pSvNHv3nKtsi NBpTl9mXGvALDjPPqXCFKgXuMdqSc302lQiESmWCWb92ibtyRx4XwMJ9Ab4phpnG GFvOyT97YKkn/hR6TrR+z01OZdHr6Ge5ksYlK73c2dtlpK3EvBYUxdInDcsg -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoyDP2JD6iKFgqSYt6nIX 4D5TFNYXgFebyuI92lnDn6TpZcoEg527u/Vam04vpkaj6H0gqHJ73o0U2XKg3C4H NWSdbUtsgS2Kw/Ig1+s+OWFoCxHEMntFmV4cLWzDTsCMzS7Ue/BL60zdGJ8k3Nhe 6AkMlaAPDY8upYE49exH/TwXXgxW1O95jRY+Cphw9KpCJqGk4X1dplJNPEQcrGEd JFZtxyswuXC9BnKiMiT9otFFPbvKfYUIxTXAE4l5q4ECuj/s/BhpZG4EjnfmvaDR Py6QaklT2fauzLZMAIOscngly58cedYN0AAWlmz6d88sgooV4QKEndnPCGMe3S15 8fysYQGiuGWrF5PQTBnE/LIlNcUEO4Qurg5sYyp5bgbzkG/+ExpnVQm5j3JQ64eR 9Qf4weX9fKuUEmlga5AMryfr1CsxpD9b9u+KXqP7mese3VTEmChIWEVCuAqGz5E1 CA156yqLewiXfn6gQonwGcNNBHxO07eGClG1OK1ny5vJwP1hiiaNPV3nF0Xc44ub cLVOBsA0kBErzXMIt4Fe3HZMpXPKQCUGn3SolWbvX/l6bX4xoJViZ+SnauKXBr+W tT1VCNbSNWFRlgVsZaTp6DFbWL4NQLZ7Rs+SjkLhFeXuWE0xJrA42v9FdwnRg4a0 s9k6ISTT9F2FK4SM+9F6T40CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 395014632970300468889853420736458605513713 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-05 15:02:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-04 15:02:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'levisweed.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 665504877095947175980469331611198311328155619510646616266802823309472600164305965244299252741591058495225114821305019822881355138464627396271060979229047440176467175033187579149366529113488829700551837691727407999085526818044420706003619182765290515516196322256550507774027659968600301987484175667197217101876869012254021791314916431602687368046203390327195765124801677329682194333062527337874141554222727147022707523287784196021035377987144282952146776143347535731109007164324145940838025766969833762039302597422651239541872480716824211294433379503928050736470668408266849381499022960830347671417701300371652815793480931038795065838162600445383868786938290886756608431152324978628424822837496713450419834758242314006178592364881580722863419308140738466666123759364050554053134174161211621450776942008478693589950889178947775877866583851272242691812908567516183831853126632892892342400501051226965938856587754825631575390572516843440017977894027323487915016439124386946463091197878374531909813278467909965790052088742852367947803328144280453298178442421082026724536489792743018600507735098006026583391275600468739168389677256943431823187123447327691614088906922505282039301553680785866608151586241526043246598250279007474906140659597 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bf336274d092b7e32afdb80e9f2f46fac6cd9753 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'levisweed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.levisweed.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018eaeff2118000004030046304402205d75493471a626aa20e76c7eaffec3667f274de8c5d4aaef2982091db5ce113802201223cae3883ead7636eb75b9629d990608d6bae531cad89497995ff6774283d200760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018eaeff2147000004030047304502207a0eccd3903b601de9dbcaf00f868a7017fec2e1cdeec3218d8de0d834bc4e03022100f033e67cfcdc89e85ae410e0b1948645c0bd05000a22ae40b04d605eb582c8aa . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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