covidcure.org
Issued by R3
About this certificate
This digital certificate with serial number 04:35:d2:ce:b3:ee:56:20:8f:af:9e:38:b4:81:68:72:0a:d0 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=covidcure.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:35:d2:ce:b3:ee:56:20:8f:af:9e:38:b4:81:68:72:0a:d0Serial Number (int): 366764320315552692464908498870965439171280
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: ce:8d:b1:f8:ae:80:26:35:5d:a5:13:9a:f4:0b:20:a9:83:19:e9:9f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 0d:4d:83:6a:d5:fd:34:24:5c:c8:19:75:84:01:ff:50:4f:10:d8:ce
Fingerprint (sha256): 4c:18:63:cb:f3:05:cd:48:07:f8:9a:5a:98:4f:fb:b4:ce:6b:ce:d1:ef:84:ef:3d:c4:32:db:f9:5c:9e:a3:d1
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate covidcure.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for covidcure.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.covidcure.org
covidcure.org
covidcure.org
Other certificates including the domain name covidcure.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for covidcure.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE+DCCA+CgAwIBAgISBDXSzrPuViCPr544tIFocgrQMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMTcyMzA1MzlaFw0yNDAzMTYyMzA1MzhaMBgxFjAUBgNVBAMT DWNvdmlkY3VyZS5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo ENSX2GWreETTi3IXm11Yvxo1Zm93pdZJv8HGg3tt9g4NS3mt9M5Kaz4FEk+Va3i3 ricOFS72vn8gLAt7gEh/v13XP/yT77EQ1HE0LEh5+oNM+0Yh26X6pk3a008luF4l JFeZLAuMujHb5MNsH5roekJARRH/THJKcGbh7Ay6hZSJLb6fYZJRr0l5FjqqEh24 pH9O0178vilJw5N18o8S5ld+KLoPRR6oXBAMYkxnvPSQvM7AkXbw4zEF7y6Vhtgu UAwLA/wS69XaTnAEIaEAtq9OBwOGDaWTOpfN/r59ae1i20GEWgJ6Yvv6TJt53+If tX6djJ1/A1mBQusz0t4ZAgMBAAGjggIgMIICHDAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFM6NsfiugCY1XaUTmvQLIKmDGemfMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MCkGA1UdEQQiMCCCDyouY292aWRjdXJlLm9yZ4INY292aWRjdXJlLm9yZzATBgNV HSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB3AEiw42va pkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjHo+GxsAAAQDAEgwRgIhAPnU R+EpDj/vIWFjgvugD9wiYAvy/Sen53AbySi2dAXLAiEA285Viff3nVi84GeXYT46 HFqGdXyEsg/7SDC4yB+ybwwAdQAp0DobtnSqcRzTA1tlV8FPiqeLT+g4lEnspFP5 RL0kaAAAAYx6PhxnAAAEAwBGMEQCIEe4l7Bfw+zjgZYjpaLyBrb4wDbx54Iwf0N6 JwU21JqpAiBisqMsPB6Bik/D7DxN0A9rtW49SdU4LLdNuhC8K3BTPTANBgkqhkiG 9w0BAQsFAAOCAQEALGK83ahwB97gZyJCtR8eRU4CpiIle1Ekru7ygfbPo1ku+a5p V5bR0eCB/BKF3hwAvzQPKNlG1fgg3pBe7ZiJFCQwFHBlxZif0eVr8tS3XpgqYw6N tRK7piZ3UzTImvDOn+XBcs/MdsDGIGKXyqxW6Y3uQ9jnvPrfwj/IvgkJU1L2Fwge CE0mnYKqg6ox9sqAh/wxFZnpdwxHgDcwJznSF10mW/7R/LjHkUKAbCMDhW+f3252 D5fsNrMjRhSP0jRqK8fECE7Vt8VEN0idP+I1R+RROpBdGaZPub4KRrlTQr0ZLaDc 1FZecXCxidv7jBnHZyLDWX4B0jb3QRRG2LG/pQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBDUl9hlq3hE04tyF5td WL8aNWZvd6XWSb/BxoN7bfYODUt5rfTOSms+BRJPlWt4t64nDhUu9r5/ICwLe4BI f79d1z/8k++xENRxNCxIefqDTPtGIdul+qZN2tNPJbheJSRXmSwLjLox2+TDbB+a 6HpCQEUR/0xySnBm4ewMuoWUiS2+n2GSUa9JeRY6qhIduKR/TtNe/L4pScOTdfKP EuZXfii6D0UeqFwQDGJMZ7z0kLzOwJF28OMxBe8ulYbYLlAMCwP8EuvV2k5wBCGh ALavTgcDhg2lkzqXzf6+fWntYttBhFoCemL7+kybed/iH7V+nYydfwNZgULrM9Le GQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 366764320315552692464908498870965439171280 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-17 23:05:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-16 23:05:38 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'covidcure.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21216334634558813669356485453514538683541599703491268093258636586614666914863710730137725075143767461511698941557534051034640144914474071372306878675199173004144034489836038883528751093906230803106431628553405325782201141264919039911536764538573230913632904850502325732620688427624091427036588712721749279511253482705513873253466193612028865972011262829878237604525511872920882620218230311320566474594990635208985812669821008156880614818046652709159535909851882646361826911546920105063352988825494180238722448569364851524089563414394787419057279613271859576960249946590893528093648318935115573343657649303964559269401 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ce8db1f8ae8026355da5139af40b20a98319e99f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.covidcure.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'covidcure.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c7a3e1b1b0000040300483046022100f9d447e1290e3fef21616382fba00fdc22600bf2fd27a7e7701bc928b67405cb022100dbce5589f7f79d58bce06797613e3a1c5a86757c84b20ffb4830b8c81fb26f0c00750029d03a1bb674aa711cd3035b6557c14f8aa78b4fe8389449eca453f944bd24680000018c7a3e1c670000040300463044022047b897b05fc3ece3819623a5a2f206b6f8c036f1e782307f437a270536d49aa9022062b2a32c3c1e818a4fc3ec3c4dd00f6bb56e3d49d5382cb74dba10bc2b70533d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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