www.dynapal.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:1d:99:1f:ac:48:1f:e8:86:5f:3a:07:18:96:61:7f:d8:2a was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.dynapal.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:1d:99:1f:ac:48:1f:e8:86:5f:3a:07:18:96:61:7f:d8:2aSerial Number (int): 271408582774834416758283017294837811501098
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 07:e2:9e:74:42:1e:c2:c3:fb:81:23:9b:ca:be:72:b6:f8:5e:cb:05
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): cc:36:4a:a3:6b:65:37:fa:a5:56:0d:cb:76:d1:28:3c:22:1c:bd:5a
Fingerprint (sha256): 3e:d2:ed:d9:ec:81:a2:08:73:29:88:b7:49:71:95:03:5a:ef:bd:c5:46:53:5a:6b:c3:5c:da:c7:a1:32:03:92
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.dynapal.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.dynapal.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.dynapal.com
Other certificates including the domain name dynapal.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.dynapal.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVjCCBT6gAwIBAgISAx2ZH6xIH+iGXzoHGJZhf9gqMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTMwMDU3MTlaFw0y MDAxMTEwMDU3MTlaMBoxGDAWBgNVBAMTD3d3dy5keW5hcGFsLmNvbTCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAN45me6mLLdmsJRDHa8J/wLimJqQ/BEd C+Rkc2eB9XDL6KwQKB6BawkbHw5s1pclo9e/cmvSBLEMVPLR95Y6V7Dzws+g0Wkw T9UJieCTml0h/x5sDyvC3C1g+ZxeHeANnKGeeewHB153Fir5ya6W9QaWbDIf9mj1 RDqeYPymS3j0c/SM3Ude+g8dDUpF/WmQQlLzrAcniNOkjBDvOt8YpJxrAy+KqbSX PpjCxDYGzIHSByKAZCENiVuMSPnVoUf/i1YZ/I4QDxbSGKA8IncumxfDraaukqkt mIkyYPJc6J1S/PS4cPckukj2ziZDeOjZKvz1OIpofk0UV9MOQgHu6N9Qg3qE8bwT 3tsYZXN6QgXAE6hzcUiSJ2f/bcThMt+C4Xu60IEB1Bf3u993TYLdfkJvEfZnGQOQ P94ii3enHaVA2ictNi5rQFiBNHZxp3bMPMTedlG1zawwtAEhlguajA18gnxVPOR0 qhjUJIqLNg3mM7v8fj2flwPruc8eaynbt8ajVsyvKVNcTa4ppplcoCVk334sj8MT p3K7Zma/s7Sc6O3EtSH6XQ5QIFYA6fsW9Jg04+yDeTQp6YN/25Urw6Q0nfWvhlTR x38iXjgygg1ZDQwvm3WQws1UXjHv3omR5X8fPzUQcDHCXqX1ZbF1XWVrjLA2BmsU IbwL+jsfANQpAgMBAAGjggJkMIICYDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFAfi nnRCHsLD+4Ejm8q+crb4XssFMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPd3d3LmR5bmFwYWwuY29t MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB 9QSB8gDwAHYAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH9HgAAAFtwtWS SQAABAMARzBFAiEAwJ3SvKa5phKhmvHINgofSTyr+kNXeGeUZxmHumdFHgMCIHdm 1Nz/ywvtShYVb0nwE/uknXgiFwx6K8yoJE+mitdjAHYA8JWkWfIA0YJAEC0vk4iO rUv+HUfjmeHQNKawqKqOsnMAAAFtwtWUqgAABAMARzBFAiEAye5PUMqXgIOq979M NzjlTfVxSRDs0qXlbeKOY8PL0zwCIFFzoeoLuxTcC2WEOrQKxCn0YQHvf5d0jNLy xK4k4559MA0GCSqGSIb3DQEBCwUAA4IBAQBqNjgUoqUY4shAGxPQ6KIE8cJIlnQD +cEGEOfVrZdL/ukmjLhryhsKDGE2xjDIcGDSTEaSeIjBJLZGlQyHlvrVPxKfOUDV QJ9vLTiSp17FqaOJLPTT3O1koOMcCzc4eMocsfKJLPVEHkkIFza+SXxVgihguwAF 92G6asf58GalJppyGDuixnMWqB19aYQsWqG6A39h9kvgfiq23qyKFEOmeCpwH6XM 26movpX0+9G7VeONvGv1KDMZ/MEFI93Ok40G0DslSWk//CFRkLcX8JMvIPrG7/hw gFPb+5rPcfqeMWjLDD6DmsPCfKbuhWkCRcBtdTdrZjNTDh1q38J9Az9Y -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3jmZ7qYst2awlEMdrwn/ AuKYmpD8ER0L5GRzZ4H1cMvorBAoHoFrCRsfDmzWlyWj179ya9IEsQxU8tH3ljpX sPPCz6DRaTBP1QmJ4JOaXSH/HmwPK8LcLWD5nF4d4A2coZ557AcHXncWKvnJrpb1 BpZsMh/2aPVEOp5g/KZLePRz9IzdR176Dx0NSkX9aZBCUvOsByeI06SMEO863xik nGsDL4qptJc+mMLENgbMgdIHIoBkIQ2JW4xI+dWhR/+LVhn8jhAPFtIYoDwidy6b F8Otpq6SqS2YiTJg8lzonVL89Lhw9yS6SPbOJkN46Nkq/PU4imh+TRRX0w5CAe7o 31CDeoTxvBPe2xhlc3pCBcATqHNxSJInZ/9txOEy34Lhe7rQgQHUF/e733dNgt1+ Qm8R9mcZA5A/3iKLd6cdpUDaJy02LmtAWIE0dnGndsw8xN52UbXNrDC0ASGWC5qM DXyCfFU85HSqGNQkios2DeYzu/x+PZ+XA+u5zx5rKdu3xqNWzK8pU1xNrimmmVyg JWTffiyPwxOncrtmZr+ztJzo7cS1IfpdDlAgVgDp+xb0mDTj7IN5NCnpg3/blSvD pDSd9a+GVNHHfyJeODKCDVkNDC+bdZDCzVReMe/eiZHlfx8/NRBwMcJepfVlsXVd ZWuMsDYGaxQhvAv6Ox8A1CkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 271408582774834416758283017294837811501098 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-13 00:57:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-11 00:57:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.dynapal.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 906598923696804490876917116158167901129198901163527568426685177706096240222062938662556562620143331821828443939233852076634726122657713816346972156570464683014717930682533591996691951251839072695900703864038991924845711425834193603267517919325450865718458980679140179599190772413176358380140472545395337251577975148963734971948030028563848270855192506389859646028889717607197935047803536221751580235914667224868377206528788064682782719804994930179537188372132825659916132644461900642011471372283955664751302220323231775165046561714807381653611007314397782962715867178007200117374622004629458792606528901028346722325323287798474684669887837905773655380048510195509024822915715142343136065555746441984148653450832035729426319913791494382104174582402594658486962380212621083483825831001119208331708608814422681942460062333460416218122251301882213863049165393770284492781921377742413107829329473403292368439002364137213758183344379413091299720268130373370975936485060925184985011061216858815104560598638808362976210525730881777629167828626980047610015882794064168160294147432819287015779658926799309301585769282853306709646031165689051079920775147850749379327740634465215173219097175645054521441121918763262948785280855278927589731783721 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 07e29e74421ec2c3fb81239bcabe72b6f85ecb05 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dynapal.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016dc2d592490000040300473045022100c09dd2bca6b9a612a19af1c8360a1f493cabfa4357786794671987ba67451e0302207766d4dcffcb0bed4a16156f49f013fba49d7822170c7a2bcca8244fa68ad763007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016dc2d594aa0000040300473045022100c9ee4f50ca978083aaf7bf4c3738e54df5714910ecd2a5e56de28e63c3cbd33c02205173a1ea0bbb14dc0b65843ab40ac429f46101ef7f97748cd2f2c4ae24e39e7d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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