dgaviation.co.uk
Issued by R3
About this certificate
This digital certificate with serial number 04:8c:99:8e:10:ba:df:34:af:3c:a6:07:bb:30:95:29:4e:25 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=dgaviation.co.uk
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:8c:99:8e:10:ba:df:34:af:3c:a6:07:bb:30:95:29:4e:25Serial Number (int): 396292784624805446280391153231240700186149
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 57:8e:e5:af:eb:ca:7c:cf:bc:a8:a0:41:57:d3:20:37:07:95:3b:c8
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 84:50:08:4d:ec:99:07:0c:48:7d:41:20:13:49:df:e1:a7:f5:ec:5f
Fingerprint (sha256): 3f:99:a9:00:bf:bb:0e:a1:b0:74:c6:44:ae:b2:5d:1d:27:26:7c:10:46:48:e1:94:52:3e:8e:75:96:ad:40:e9
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate dgaviation.co.uk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dgaviation.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dgaviation.co.uk
www.dgaviation.co.uk
www.dgaviation.co.uk
Other certificates including the domain name dgaviation.co.uk
(limited to 100 certificates)
Certificate
The complete raw certificate details for dgaviation.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgISBIyZjhC63zSvPKYHuzCVKU4lMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MjgxODIzMTVaFw0yMzEyMjcxODIzMTRaMBsxGTAXBgNVBAMT EGRnYXZpYXRpb24uY28udWswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjpRKZ3ZQwxTypZECboVHKs5zAPu4V2Yz+uScYlpb1PxPrjcD0cAYDii740M35 ACBYrRsfqcdGdXXLtVxF61+jpwiGMhBsZXu4rbkKKBrrfCkH3HnJmXc6U/fUzUYO g6UiYTv2scAqHHLThBxfjA/bht0lJ3mFMkmJy7HPkkqqNd9e4eMTlje4X9E6M4KV bVhYjrZGtv3bXyld4L3lk5Bb2DSM0Bp2wDN0Nqju6bHGhe3C1R/2l5Ql8PJ8/gt4 GRxxTgpg4Og0n39R7rglKxqvb+ercFF1LWxJdA+FqIayDYM/4kEIhQOMpNqHP5Yg AHT+N7TF7uxyKEz0iZhO3bLzAgMBAAGjggInMIICIzAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFFeO5a/rynzPvKigQVfTIDcHlTvIMB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMDEGA1UdEQQqMCiCEGRnYXZpYXRpb24uY28udWuCFHd3dy5kZ2F2aWF0aW9u LmNvLnVrMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB 8QDvAHUAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGK3T7QnwAA BAMARjBEAiA0Eh0sn/EuctmI9BnmWljNdZnwA3qu8SqP2oV52ILmzAIgVkjWnAan RRfhqo29oqiH+CuGZHTROVkLWB0pSaYdci4AdgDoPtDaPvUGNTLnVyi8iWvJA9PL 0RFr7Otp4Xd9bQa9bgAAAYrdPtCLAAAEAwBHMEUCIDkYN9WKbjQspJhCK0+W7m0t X/InEAyLobYQx0thkxUnAiEA+xmWWkzZnp8jguDKIxb9LjV7e5LvCJaxewpaYy2c 55gwDQYJKoZIhvcNAQELBQADggEBADSF9BqYDtTVrdAyfs9b8kbznCXppAusK+zX OPlu5UQ7DfHkOQRm3Mx0QJnCSvsaxRwW4IqP5FpVqmlX0IFV3E6hpoyPTrW8MKtV Hs4iHSmtJ3aV+hWeDNooWCC0tm4oKgl65flDefGyOt/kOF3RHYPk6wAr4XQGujDt m1BS2MD1Y3f25pGW9NKJvW6xb6toVINWZl10H4yvjM+PC3T1JM6m4vDRXNbHgrrb Rmygfnzp5/NVq3CNGLijdHQiKtRWRI0V2wYJ5KJiId2i5FHWi8A5ip3qnrrBWNku DE2MO9y5S1sPpfoUNEHmfrhD5xqVJuCzm9+DxMcM/zgPQGPv/1Y= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo6USmd2UMMU8qWRAm6FR yrOcwD7uFdmM/rknGJaW9T8T643A9HAGA4ou+NDN+QAgWK0bH6nHRnV1y7VcRetf o6cIhjIQbGV7uK25Ciga63wpB9x5yZl3OlP31M1GDoOlImE79rHAKhxy04QcX4wP 24bdJSd5hTJJicuxz5JKqjXfXuHjE5Y3uF/ROjOClW1YWI62Rrb9218pXeC95ZOQ W9g0jNAadsAzdDao7umxxoXtwtUf9peUJfDyfP4LeBkccU4KYODoNJ9/Ue64JSsa r2/nq3BRdS1sSXQPhaiGsg2DP+JBCIUDjKTahz+WIAB0/je0xe7scihM9ImYTt2y 8wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 396292784624805446280391153231240700186149 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-28 18:23:15 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-27 18:23:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dgaviation.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20658244072095463009477834003134170956277803032122992420253451673766106170316707990128618164649403201400426594064923287310468703492073864084213591498828661020557138930792936354835530272806164458787355021196433478383055646968376787930631902943539461085571029716756471576428952511878491732928438572942277552917732935787599797175788930075411640777317556717749245664521334704970579233292390047919419790474321489572593893404982745065494342041862798985168921725374528072070363058915957171563536314067196096972533220787634766489899347513645025732227615881181052365273660256470989299823321665141537945184503781853790035882739 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 578ee5afebca7ccfbca8a04157d3203707953bc8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dgaviation.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dgaviation.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018add3ed09f0000040300463044022034121d2c9ff12e72d988f419e65a58cd7599f0037aaef12a8fda8579d882e6cc02205648d69c06a74517e1aa8dbda2a887f82b866474d139590b581d2949a61d722e007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018add3ed08b00000403004730450220391837d58a6e342ca498422b4f96ee6d2d5ff227100c8ba1b610c74b61931527022100fb19965a4cd99e9f2382e0ca2316fd2e357b7b92ef0896b17b0a5a632d9ce798 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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