baralib.hu
Issued by R3
About this certificate
This digital certificate with serial number 03:0a:e3:f2:eb:7d:d5:79:77:11:d0:f1:90:4a:41:e5:61:b8 was issued on by Let's Encrypt.
With 15 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=baralib.hu
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:0a:e3:f2:eb:7d:d5:79:77:11:d0:f1:90:4a:41:e5:61:b8Serial Number (int): 265042677531708910227772686945695268430264
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 78:f1:ee:1d:fe:c9:1b:9b:30:3b:69:51:6e:67:90:21:a8:00:ed:e4
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 20:a8:ac:54:f8:d1:c0:21:90:31:c8:9f:ce:ef:77:d4:66:29:33:ea
Fingerprint (sha256): 32:df:bf:5e:77:f2:bf:a6:38:61:fc:7d:0c:fb:3f:73:a1:47:ed:20:fd:ba:8a:83:27:77:a2:59:76:1d:1c:7c
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate baralib.hu
15
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for baralib.hu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
archiv.baralib.hu
baralib.hu
bertoklaszlo.csgyk.hu
bibliobus.csgyk.hu
csorba100.csgyk.hu
csorbagyozokonyvtar.hu
filmpakk.csgyk.hu
gyermekkonyvtarak.csgyk.hu
korbirodalom.baralib.hu
korbirodalom.csgyk.hu
paletta.baralib.hu
regi.bkszr.csgyk.hu
regi.csgyk.hu
www.baralib.hu
www.csorbagyozokonyvtar.hu
baralib.hu
bertoklaszlo.csgyk.hu
bibliobus.csgyk.hu
csorba100.csgyk.hu
csorbagyozokonyvtar.hu
filmpakk.csgyk.hu
gyermekkonyvtarak.csgyk.hu
korbirodalom.baralib.hu
korbirodalom.csgyk.hu
paletta.baralib.hu
regi.bkszr.csgyk.hu
regi.csgyk.hu
www.baralib.hu
www.csorbagyozokonyvtar.hu
Other certificates including the domain name baralib.hu
(limited to 100 certificates)
Certificate
The complete raw certificate details for baralib.hu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGFDCCBPygAwIBAgISAwrj8ut91Xl3EdDxkEpB5WG4MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMjcwMzM2MDRaFw0yNDA1MjcwMzM2MDNaMBUxEzARBgNVBAMT CmJhcmFsaWIuaHUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7B15h ZKviYd56+hcEGOR3sNGQqZuZPZKKLeMngMfgQmmauSWZ0bp+rQoRbOGSeCw6M9S/ JbIQ5DR00GQdqukjuEsr2JzAroKaLwP8vFNrLsxmVYBsWRWqzlvQ1n3wnsjwwJoH ZsuqOXqYMqqwIZMe3Coc6spJ15aSjRYqPrazmHDmZS9kv7wsBiPA5mB291mVzZka 1tiWudXhyL3lNDwXBxI+wEpsiFBsAMdJnB8y93g4WrzwXPKiS4tjpiVM1r9QYDz4 OuMsFOpzm+jcIPaXCGPykNaJqKtRBxEZ6K4elkrSGOkGfE3vNPZezWv5AKXwe/XO 1oFlnIATJN8qjacBAgMBAAGjggM/MIIDOzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FHjx7h3+yRubMDtpUW5nkCGoAO3kMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMIIB RgYDVR0RBIIBPTCCATmCEWFyY2hpdi5iYXJhbGliLmh1ggpiYXJhbGliLmh1ghVi ZXJ0b2tsYXN6bG8uY3NneWsuaHWCEmJpYmxpb2J1cy5jc2d5ay5odYISY3NvcmJh MTAwLmNzZ3lrLmh1ghZjc29yYmFneW96b2tvbnl2dGFyLmh1ghFmaWxtcGFray5j c2d5ay5odYIaZ3llcm1la2tvbnl2dGFyYWsuY3NneWsuaHWCF2tvcmJpcm9kYWxv bS5iYXJhbGliLmh1ghVrb3JiaXJvZGFsb20uY3NneWsuaHWCEnBhbGV0dGEuYmFy YWxpYi5odYITcmVnaS5ia3N6ci5jc2d5ay5odYINcmVnaS5jc2d5ay5odYIOd3d3 LmJhcmFsaWIuaHWCGnd3dy5jc29yYmFneW96b2tvbnl2dGFyLmh1MBMGA1UdIAQM MAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAO1N3dT4tuYBO izBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGN6NkyCAAABAMARzBFAiEA1y/iGP58 Q5LCf9ENkpS/pDjVuLNayS/PZQX5ehFd30ACIH2hB5TvvaTXhCx99Hdsfdh89Bcb caYdVdXKeZjoJOAtAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMA AAGN6Nkz8wAABAMARzBFAiApEEjYYmzLd0AZ6IzcBVwCOi64fkyeNGqQYAzSbwni vwIhAI3dG72XVpUanmcnDYzM8Wyup6ltPhf/Zr9NewfddCEVMA0GCSqGSIb3DQEB CwUAA4IBAQAEbEOeAlGoudOSvWP8fULp+wUMVMKODjRqhietPnQ1r4uc/Rq9bC2y rv789S1OfVndTPZhvjFMzJbyu7ROleshMTUR+Wkm8hhWayTaYrMZBgFaLZ1W5j4W JOFBK3pSRxTypNdFRhyoo1SSa7+eCbkO0YeShQrGBdxFLLrCMnlEBsXM4ESjhEAN Z/POQocEqQC1Y+PNZX44IRg8D7XnFKlwCRVBlLf9qi0OhmJB+mHyQOAc7FL0YR9Z L85i1WZuAQZj8M0j1RYB4eBT4RxFvFElXV65LFLpj8l0IQ8cDg1WVGK/MkJuT+gw oNiGAtFjziYvdEjXDbaGepTAEe2b71QS -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwdeYWSr4mHeevoXBBjk d7DRkKmbmT2Sii3jJ4DH4EJpmrklmdG6fq0KEWzhkngsOjPUvyWyEOQ0dNBkHarp I7hLK9icwK6Cmi8D/LxTay7MZlWAbFkVqs5b0NZ98J7I8MCaB2bLqjl6mDKqsCGT HtwqHOrKSdeWko0WKj62s5hw5mUvZL+8LAYjwOZgdvdZlc2ZGtbYlrnV4ci95TQ8 FwcSPsBKbIhQbADHSZwfMvd4OFq88FzyokuLY6YlTNa/UGA8+DrjLBTqc5vo3CD2 lwhj8pDWiairUQcRGeiuHpZK0hjpBnxN7zT2Xs1r+QCl8Hv1ztaBZZyAEyTfKo2n AQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 265042677531708910227772686945695268430264 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-27 03:36:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-27 03:36:03 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'baralib.hu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23610196657033797611261448601559222516178517047407140023238976309062723301715824134204031308232407820831722047029396882309731708386384838600290360483875008113974811744651935037709599062332021197701693049897384680367447265885874357605059992060958220603864251047576268585016406604004681865903725938035748752008570458148846852213487295011469622393162498420331571205125068114379550710538217194661058804729420318304285273952059730301592584247513360155726673610388154998293135753908871920003768695439802259618064966066705936566657587337428859579744120348218459463594155734993497255228037045842184271482394766564069471004417 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 78f1ee1dfec91b9b303b69516e679021a800ede4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (317 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'archiv.baralib.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'baralib.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bertoklaszlo.csgyk.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bibliobus.csgyk.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'csorba100.csgyk.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'csorbagyozokonyvtar.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'filmpakk.csgyk.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gyermekkonyvtarak.csgyk.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'korbirodalom.baralib.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'korbirodalom.csgyk.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paletta.baralib.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'regi.bkszr.csgyk.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'regi.csgyk.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.baralib.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.csorbagyozokonyvtar.hu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018de8d932080000040300473045022100d72fe218fe7c4392c27fd10d9294bfa438d5b8b35ac92fcf6505f97a115ddf4002207da10794efbda4d7842c7df4776c7dd87cf4171b71a61d55d5ca7998e824e02d00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018de8d933f300000403004730450220291048d8626ccb774019e88cdc055c023a2eb87e4c9e346a90600cd26f09e2bf0221008ddd1bbd9756951a9e67270d8cccf16caea7a96d3e17ff66bf4d7b07dd742115 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00046c439e0251a8b9d392bd63fc7d42e9fb050c54c28e0e346a8627ad3e7435af8b9cfd1abd6c2db2aefefcf52d4e7d59dd4cf661be314ccc96f2bbb44e95eb21313511f96926f218566b24da62b31906015a2d9d56e63e1624e1412b7a524714f2a4d745461ca8a354926bbf9e09b90ed18792850ac605dc452cbac232794406c5cce044a384400d67f3ce428704a900b563e3cd657e3821183c0fb5e714a97009154194b7fdaa2d0e866241fa61f240e01cec52f4611f592fce62d5666e010663f0cd23d51601e1e053e11c45bc51255d5eb92c52e98fc974210f1c0e0d565462bf32426e4fe830a0d88602d163ce262f7448d70db6867a94c011ed9bef5412