is.nibowaka.cz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:4e:d1:3f:52:70:09:ec:81:6e:6d:cd:57:ce:13:da:29:02 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=is.nibowaka.cz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:4e:d1:3f:52:70:09:ec:81:6e:6d:cd:57:ce:13:da:29:02Serial Number (int): 288157019852969288185431142931353772370178
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 22:cb:13:43:38:b7:5f:dd:bb:af:85:86:0a:90:d4:ef:bc:12:83:73
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 48:83:42:99:9c:e0:c7:1b:33:61:e3:c7:e4:5f:87:da:de:06:f6:4f
Fingerprint (sha256): 49:e7:a2:da:9d:41:03:29:9b:af:4e:fe:3c:38:c6:81:10:01:cb:6a:ae:28:fa:66:23:2f:aa:ae:07:93:bc:78
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate is.nibowaka.cz
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for is.nibowaka.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
is.nibowaka.cz
Other certificates including the domain name nibowaka.cz
(limited to 100 certificates)
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is2.nibowaka.cz
is.nibowaka.cz
is2.nibowaka.cz
is.nibowaka.cz
is2.nibowaka.cz
is.nibowaka.cz
is2.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is2.nibowaka.cz
is2.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is2.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is2.nibowaka.cz
is.nibowaka.cz
is2.nibowaka.cz
is.nibowaka.cz
is2.nibowaka.cz
is.nibowaka.cz
is2.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is2.nibowaka.cz
is2.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is2.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
is.nibowaka.cz
Certificate
The complete raw certificate details for is.nibowaka.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgISA07RP1JwCeyBbm3NV84T2ikCMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAyMTAxOTEwMDdaFw0x OTA1MTExOTEwMDdaMBkxFzAVBgNVBAMTDmlzLm5pYm93YWthLmN6MIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmmIgqv8hTSB7SkfIfU0gYGrTRq3C6WS t7Tvs/UZ7utFfEe4+F5pNu0gjQJH+v3hQ208tpJw1x+EnZ/EV4OEOV39R4kSi9St FWx189yWOPxGfc3q64tC7vY71J3mAmHNQJiiWQxxXc6izEZnJflSt3XbQRZp9nga MD/15UAcWR+QI7t9iD+WBIyfWY+rWaKuFdyQuE3y17bK/jfa6J+OTFhUt+qKRHZH A0TA3rbnTBT1zGPBqZSrEPV1m2qBPj67cx4a9Ji0439cNTBRZpMAL9eRmZcTPBK/ XX6SwEAMNUkZbK9vyjjk8IbhrOHJspZdNKd3t0tBULDLtX9Wq+BgzQIDAQABo4IC ZDCCAmAwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQiyxNDOLdf3buvhYYKkNTvvBKD czAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRj MGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5v cmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5v cmcvMBkGA1UdEQQSMBCCDmlzLm5pYm93YWthLmN6MEwGA1UdIARFMEMwCAYGZ4EM AQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0 c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcA4mlLribo6UAJ 6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4AAAFo2QgBgAAABAMASDBGAiEAnH+0LARE vbrI6Ayims0WFEUUJELv7eoJogJoHgUFgOwCIQCGtcj1sbbW4LxadevIsvKWJ4Hq NUW6N/9ZzLKmQUuEcgB2AGPy283oO8wszwtyhCdXazOkjWF3j711pjixx2hUS9iN AAABaNkIA9MAAAQDAEcwRQIgS8YIZIlGjG2b4/lObTfSIoe+pNI7It098KVCQxfU AuECIQDMV7Mnvffz/sMYgBC3XmwEvca4mt1+aNxDWeRUxr8ZLjANBgkqhkiG9w0B AQsFAAOCAQEAVJGrt8l+7HjSkcT62T5qj39kMn3PBEhz9W8FFBvtUr1wnTxKeeva COyOlvDgX+d/SIxgU3yromfCtv6z0+M1b74+Qj3vswp5dhi5U9laTp1k4xPUVTgb edzU7O1TvG2SRwsU2qx6LmHk1Qb0rFsSgoVvO5cJNJu5/wGmr0AfG/m1EiHTYIU+ 6nYORmpmJMx/ItFZDKTLg2ZBniw0qDUXaBZ8fS0axuMgsTjynVIvyR6JXYkLaihh 9Vjm/qmXByJKhNx55uPBHhn4IHmDsPn37FtsiovyQFjol6uWPsNwZxlMuWYscuZt HaIxJqqYjZdbx/nAgyDJk/glPwXGMsObzQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmmIgqv8hTSB7SkfIfU0 gYGrTRq3C6WSt7Tvs/UZ7utFfEe4+F5pNu0gjQJH+v3hQ208tpJw1x+EnZ/EV4OE OV39R4kSi9StFWx189yWOPxGfc3q64tC7vY71J3mAmHNQJiiWQxxXc6izEZnJflS t3XbQRZp9ngaMD/15UAcWR+QI7t9iD+WBIyfWY+rWaKuFdyQuE3y17bK/jfa6J+O TFhUt+qKRHZHA0TA3rbnTBT1zGPBqZSrEPV1m2qBPj67cx4a9Ji0439cNTBRZpMA L9eRmZcTPBK/XX6SwEAMNUkZbK9vyjjk8IbhrOHJspZdNKd3t0tBULDLtX9Wq+Bg zQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 288157019852969288185431142931353772370178 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-10 19:10:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-11 19:10:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'is.nibowaka.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23027411885958289502501763796139823231786287581392765740346627139517240309110622590910364213123849016288220740826782093877535213269508201111389559079669648197801837202034898432903875136129478253891642266021622003955753185288210364776976383999119339026760199013820110407641054306316104083131608614783660440748186490701377191952102136386437764706516865719371735242110799176480576363561760000036897267090264085161365884503100653845814732094633054089905194013695194016002765248589772660208541169870994462332526895443706492292851907018849261721521089770230215158912054262156682978379236839753191624710007217077610933674189 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 22cb134338b75fddbbaf85860a90d4efbc128373 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'is.nibowaka.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000168d908018000000403004830460221009c7fb42c0444bdbac8e80ca29acd161445142442efedea09a202681e050580ec02210086b5c8f5b1b6d6e0bc5a75ebc8b2f2962781ea3545ba37ff59ccb2a6414b847200760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000168d90803d3000004030047304502204bc6086489468c6d9be3f94e6d37d22287bea4d23b22dd3df0a5424317d402e1022100cc57b327bdf7f3fec3188010b75e6c04bdc6b89add7e68dc4359e454c6bf192e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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