*.natanaelvalenzuela.com

Issued by R3

About this certificate

This digital certificate with serial number 04:01:ab:3b:4d:3a:f0:a5:b3:eb:8b:3f:43:c3:f5:14:31:43 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=*.natanaelvalenzuela.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:01:ab:3b:4d:3a:f0:a5:b3:eb:8b:3f:43:c3:f5:14:31:43
Serial Number (int): 349017031993171048850827539482817403826499
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 4b:0c:de:92:6e:91:7e:0f:15:b0:51:9a:94:c0:b0:de:bd:e2:ab:71
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 61:91:03:5c:91:6d:b3:2c:7c:b1:95:9a:71:83:8e:ab:60:77:96:80
Fingerprint (sha256): 43:82:56:d3:c8:0a:e9:b1:ee:ae:98:7b:a7:95:47:86:ee:9d:4a:de:57:1b:7d:32:96:bd:10:09:d5:ce:b1:98

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate *.natanaelvalenzuela.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.natanaelvalenzuela.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.natanaelvalenzuela.com
natanaelvalenzuela.com

Other certificates including the domain name natanaelvalenzuela.com

(limited to 100 certificates)
bakingdevs.com
tls.automattic.com
portal.goswitch.dk
tls.automattic.com
experimental.genesis-hexa.com
*.natanaelvalenzuela.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
*.natanaelvalenzuela.com
tls.automattic.com
bridge.arianee.org
frimi.cl
mrbrand.estore.business
rousehillhighschool.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
landingpage.shotcut.app
www.advancedpathologysolutions.com
frimi.cl
landingpage.shotcut.app
tls.automattic.com
www.dawnsnight.xyz
natanaelvalenzuela.com
handwave.co.nz
avalande.com
tls.automattic.com
www.advancedpathologysolutions.com
avalande.com
tls.automattic.com
www.dawnsnight.xyz
www.pingg.xyz
silentdiscobenelux.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
www.filmsetapp.com
www.firefeed.app
tls.automattic.com
tls.automattic.com
natalinazlatevska.com
tls.automattic.com
donatedoughnut.com
tls.automattic.com
tls.automattic.com
tls.automattic.com
loupetcie.co
www.nataliewinberg.com
tls.automattic.com

Certificate

The complete raw certificate details for *.natanaelvalenzuela.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFFDCCA/ygAwIBAgISBAGrO0068KWz64s/Q8P1FDFDMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yNDAzMTUwMjE5MDlaFw0yNDA2MTMwMjE5MDhaMCMxITAfBgNVBAMM
GCoubmF0YW5hZWx2YWxlbnp1ZWxhLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKEYLt8ihjy6e5cvk/00GTJEbCSLC1fv9YQTWWMYjZL7L2kJMdZu
jVeX1SbFddAcDGWuiDD/pY+Rd/NrjyYNnRWlCqWVj8XQ+LKvxcNo1CSnKccQs42A
FKcAo1Io1IQET3MOj9rNyHlo3h0oJBGzU8xJshwVhuHF4pqXJwuAOIuqwf5XIxMy
ES14xPmPdassLzwDS7LaDIOnR2dR9AaoF1aKbxlNRL0EOEEUqBBPkN3UPLih+F1m
ZHjnI2LCNNlUoRiIEyRzVmPuwiamRKmhpm7XCX/MZWdk2V1spKnxDbEMZ8KdDMWF
y0ZNx7YZ3c2Zn80BHw2Ofq0BtEeFz4kxrgkCAwEAAaOCAjEwggItMA4GA1UdDwEB
/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/
BAIwADAdBgNVHQ4EFgQUSwzekm6Rfg8VsFGalMCw3r3iq3EwHwYDVR0jBBgwFoAU
FC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzAB
hhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5p
LmxlbmNyLm9yZy8wOwYDVR0RBDQwMoIYKi5uYXRhbmFlbHZhbGVuenVlbGEuY29t
ghZuYXRhbmFlbHZhbGVuenVlbGEuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIB
AwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB
2bu/qznYhHMAAAGOQB7kFwAABAMARzBFAiEAvY/2VUKJmhyaactDMhzXp45EnN19
EBlhwI/EptOj3jwCIByGZNjMwKoy1K15Ubdpgvc/VSRhbRRaKYei4prmCgv7AHUA
7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGOQB7kFgAABAMARjBE
AiAwrRejScIZ7yH1V7s6iTUjK23ffuQE0B+xAMtkj4BSZAIgeOEDKp6X7TRRbabw
ssS8e+8FjBJp2H5d364PPl8axMswDQYJKoZIhvcNAQELBQADggEBAB5gI5rc0odw
zeAje7KXlEzmJqQCCs6zXy3A1eoxpUdvCNi0wFHV4bxs7MaaepZhPnKewP/nl+QO
117hIH8Cu5bDTWBdPLCmuxzUXGxpUVtzRVT3BvwND+NnqvzSG1Y91iC986btlbB7
XBpNOF0Wc7/J+L9ithE6W5+T+X6pswIjDJIPY5iDX5sVolAem+HQY8fBo/gCRPLl
/1WVAGVgGMq7lG3rt/CDuKA2DU8tK1/596DoCd8vaZlTW+YRS6ekWIgv0jtY0qPj
g+213Eq0y6Sxf+mMGZ31ZS9nLmbhbTQLcon7N0snLI5SuKu1hAUx56WKHVoZFkEr
Z8sz6U/WVUw=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoRgu3yKGPLp7ly+T/TQZ
MkRsJIsLV+/1hBNZYxiNkvsvaQkx1m6NV5fVJsV10BwMZa6IMP+lj5F382uPJg2d
FaUKpZWPxdD4sq/Fw2jUJKcpxxCzjYAUpwCjUijUhARPcw6P2s3IeWjeHSgkEbNT
zEmyHBWG4cXimpcnC4A4i6rB/lcjEzIRLXjE+Y91qywvPANLstoMg6dHZ1H0BqgX
VopvGU1EvQQ4QRSoEE+Q3dQ8uKH4XWZkeOcjYsI02VShGIgTJHNWY+7CJqZEqaGm
btcJf8xlZ2TZXWykqfENsQxnwp0MxYXLRk3HthndzZmfzQEfDY5+rQG0R4XPiTGu
CQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 349017031993171048850827539482817403826499
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-15 02:19:09 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-13 02:19:08 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.natanaelvalenzuela.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20336292226788256593254224811165851015242670735369166454059285768985412434372886944227881727835881846199102609204147218393595623931267459532008496801050941926771764076976124456482820206965442876227495369296315358824974567107251295320052280906685102026577713450053106710761049215845078038855661464635864819516074033624396062690868280136725540932173297214128669540617832117276279114394958742975041664178232460243288656050447672561802207348300759271486023654420859885556202146051467657984070744279779749286856228714182587201671719358896667766471629529393815611646191341661064333472723179023107931907105687003679522139657
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							4b0cde926e917e0f15b0519a94c0b0debde2ab71
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.natanaelvalenzuela.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'natanaelvalenzuela.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e401ee4170000040300473045022100bd8ff65542899a1c9a69cb43321cd7a78e449cdd7d101961c08fc4a6d3a3de3c02201c8664d8ccc0aa32d4ad7951b76982f73f5524616d145a2987a2e29ae60a0bfb007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e401ee4160000040300463044022030ad17a349c219ef21f557bb3a8935232b6ddf7ee404d01fb100cb648f805264022078e1032a9e97ed34516da6f0b2c4bc7bef058c1269d87e5ddfae0f3e5f1ac4cb
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		001e60239adcd28770cde0237bb297944ce626a4020aceb35f2dc0d5ea31a5476f08d8b4c051d5e1bc6cecc69a7a96613e729ec0ffe797e40ed75ee1207f02bb96c34d605d3cb0a6bb1cd45c6c69515b734554f706fc0d0fe367aafcd21b563dd620bdf3a6ed95b07b5c1a4d385d1673bfc9f8bf62b6113a5b9f93f97ea9b302230c920f6398835f9b15a2501e9be1d063c7c1a3f80244f2e5ff559500656018cabb946debb7f083b8a0360d4f2d2b5ff9f7a0e809df2f6999535be6114ba7a458882fd23b58d2a3e383edb5dc4ab4cba4b17fe98c199df5652f672e66e16d340b7289fb374b272c8e52b8abb5840531e7a58a1d5a1916412b67cb33e94fd6554c