sushibars.lv
Issued by R3
About this certificate
This digital certificate with serial number 04:96:95:59:0f:36:8e:c7:d2:4f:30:61:2d:00:30:67:de:96 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sushibars.lv
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:96:95:59:0f:36:8e:c7:d2:4f:30:61:2d:00:30:67:de:96Serial Number (int): 399690016159532771442059200792789726518934
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e4:a1:7e:bb:88:b0:b2:f4:78:c8:2c:0a:19:3a:9c:21:66:80:50:48
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): b2:72:c0:8c:65:92:a6:1a:86:be:5b:50:3a:ce:01:a6:b7:6a:70:dd
Fingerprint (sha256): 4c:46:32:73:44:77:03:ae:14:22:2b:cb:1c:92:d5:9f:1a:dd:77:7a:03:e7:e5:57:50:ad:f2:5d:dd:e5:db:ef
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate sushibars.lv
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sushibars.lv
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sushibar.lv
sushibars.lv
www.sushibar.lv
www.sushibars.lv
sushibars.lv
www.sushibar.lv
www.sushibars.lv
Other certificates including the domain name sushibars.lv
(limited to 100 certificates)
Certificate
The complete raw certificate details for sushibars.lv in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGFTCCBP2gAwIBAgISBJaVWQ82jsfSTzBhLQAwZ96WMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjEyMzE5MDZaFw0yNDA2MTkyMzE5MDVaMBcxFTATBgNVBAMT DHN1c2hpYmFycy5sdjCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMTq xnGrcGQL44C5frFQTGd184vNe825/LC7KStIPcbMYNZfHhn7yF9l3N55WjlyyJQF +fEhyuV7NdZ4VUuGzwBEim4jgPs1go3Io42xx3+A9yZomHcl+kLebyeEFAMvNDce Lr/SN7/GOS9Jk65QZr0IWLyudHiEaYffDL6jz8TQOzNUDKzniKToOFLOy4/Lj4Fp 8HabDvetV97uMFusiz8059k0jsYyH6UBshn75jweewoj/5yFSGehM9ka+uou0Joc k+mMgfTNRJLpyw4aX+6hIafgFF0sUsPlyCXBv3bhcBiP26IWOBJh2OoiHswaOE+x +RHm4tEHAlDtyXuTJ5oSTJabnHFInA8/py8v8z3POx7cFCqTootzEHXt09HzxLxY nY3QWtX0fJV6Lr8CiewnUBpA/sVqLELKbr/4wtjonI6gCOxf4QDvnyQ2vqyt5B4f XbAW97MCWpZeEL8L1DiVh9eqrMWyHCGpPOYztNRiQHhmvjagWBht8zmPPmkwLAIY K81PNwxVCRkeBbmVSjLzRHEyWGMn2S4A8WWm/ebC0rqcFFJv+jPGPoxRX4m/Hi5K VGtNTuic3Wcy/dqGAdY0Ito1d8VSRV7HHEQ8Zi7BezGljrjedV6qpT/pnSHy+/BI Jj82G864YxfVHEWWRB/mDoKvuWI9VNLvZwl0ATLVAgMBAAGjggI+MIICOjAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFOShfruIsLL0eMgsChk6nCFmgFBIMB8GA1UdIwQY MBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEF BQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8v cjMuaS5sZW5jci5vcmcvMEcGA1UdEQRAMD6CC3N1c2hpYmFyLmx2ggxzdXNoaWJh cnMubHaCD3d3dy5zdXNoaWJhci5sdoIQd3d3LnN1c2hpYmFycy5sdjATBgNVHSAE DDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB1AEiw42vapkc0 D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjmOGjlAAAAQDAEYwRAIgT+F/H1Gk ab7t06C2yRbC463rFC9E1X2ds9AjDy2UIrICIBzt3V8PApXexVe3l0xPGrxOe+Jm xKEohbFqj7MRylA8AHcAouK/1h7eLy8HoNZObTen3GVDsMa1LqLat4r4mm31F9gA AAGOY4aOXQAABAMASDBGAiEAyATymducDE+BkQr1o407h1otZ8drtArUQk443LLv VTQCIQCCXHs9pwGqE1P3NWDL0Z7l35JqOpX726OwG6qP2tKqdTANBgkqhkiG9w0B AQsFAAOCAQEAPJO80SV9/rt0TzyGjJcM0uS1Hnj/YfDrjRPHkhVrYSrM1Eyowqus 3uFOTm7YH2pomQxjSzJD/lfm8NSFvYPUtvv2BRgYE9dUq7VXc05i+KflORKF1gqp fydkPAz+AaHaslfWb3dPN+92e5Xjaob/bfFIkTmcfBh4gs+wTiV4ffVW/oDEdq/f iiCSQUIBriauAC/L7GRY4HmP5GEGv6xojtqc6KiBljBF99CuwCs4Y8DxECIoMcEG 0j2jdQtDDimBQBQpNzZszzck1FgKLIDseaSnQrTduY+3D8KxoC6G2XJOIp1zzYTU ew7F7P/aj8p/VDcX1i+pcQPTyV1kQpR42w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxOrGcatwZAvjgLl+sVBM Z3Xzi817zbn8sLspK0g9xsxg1l8eGfvIX2Xc3nlaOXLIlAX58SHK5Xs11nhVS4bP AESKbiOA+zWCjcijjbHHf4D3JmiYdyX6Qt5vJ4QUAy80Nx4uv9I3v8Y5L0mTrlBm vQhYvK50eIRph98MvqPPxNA7M1QMrOeIpOg4Us7Lj8uPgWnwdpsO961X3u4wW6yL PzTn2TSOxjIfpQGyGfvmPB57CiP/nIVIZ6Ez2Rr66i7QmhyT6YyB9M1EkunLDhpf 7qEhp+AUXSxSw+XIJcG/duFwGI/bohY4EmHY6iIezBo4T7H5Eebi0QcCUO3Je5Mn mhJMlpuccUicDz+nLy/zPc87HtwUKpOii3MQde3T0fPEvFidjdBa1fR8lXouvwKJ 7CdQGkD+xWosQspuv/jC2OicjqAI7F/hAO+fJDa+rK3kHh9dsBb3swJall4QvwvU OJWH16qsxbIcIak85jO01GJAeGa+NqBYGG3zOY8+aTAsAhgrzU83DFUJGR4FuZVK MvNEcTJYYyfZLgDxZab95sLSupwUUm/6M8Y+jFFfib8eLkpUa01O6JzdZzL92oYB 1jQi2jV3xVJFXsccRDxmLsF7MaWOuN51XqqlP+mdIfL78EgmPzYbzrhjF9UcRZZE H+YOgq+5Yj1U0u9nCXQBMtUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 399690016159532771442059200792789726518934 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-21 23:19:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-19 23:19:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sushibars.lv' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 803351640213242005564082126907441476563391873484692470098552997900001932204757014771167011399707394051089471913557066326372121447070700689688255539283704270404129318436223229389256066108130322402300285186377808415908318661878844851307188095873742632654520151779904053811904609450979826538848764832710801599850679485742006606658050823095442738715826603027454517802887497917261593512039450236869906974764919101377358455334636935031280496992703835041561707501148187832390928333864073470159099430172976483861408880358537937905086523537214886301760698262918178382836202033973573329853846319960512296707601874646384816596042511834970030353121245296880628250005501766272287704265998309137016718487722105301486736641310935984856256564504771459325630499828012107476091558075156342164234554524488151764129165452491269451622488529634539358306041218675207427999536692892728531434929148725786941661954565502007118574309964265799378456741850408352474625143920525234556364382633460641969863743688859484080974363167635079490606728050543569903507916827497028060415779780528610273004933557093345523007343534156067069868316897242516930974219696646150612564122108899787690288690152064796256041959640928472802330104860193892373481273119321164914228277973 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e4a17ebb88b0b2f478c82c0a193a9c2166805048 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (64 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sushibar.lv' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sushibars.lv' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sushibar.lv' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sushibars.lv' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e63868e50000004030046304402204fe17f1f51a469beedd3a0b6c916c2e3adeb142f44d57d9db3d0230f2d9422b202201ceddd5f0f0295dec557b7974c4f1abc4e7be266c4a12885b16a8fb311ca503c007700a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e63868e5d0000040300483046022100c804f299db9c0c4f81910af5a38d3b875a2d67c76bb40ad4424e38dcb2ef5534022100825c7b3da701aa1353f73560cbd19ee5df926a3a95fbdba3b01baa8fdad2aa75 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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