gonojuarez.me
Issued by R3
About this certificate
This digital certificate with serial number 03:26:06:32:20:b7:cb:b5:0b:1e:55:03:3a:c7:d3:27:a3:75 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=gonojuarez.me
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:26:06:32:20:b7:cb:b5:0b:1e:55:03:3a:c7:d3:27:a3:75Serial Number (int): 274275823384692943170135253038271111340917
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 48:38:22:ff:71:70:8e:8b:57:8d:01:3f:d7:64:47:f4:46:23:8d:34
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f9:3a:e4:2e:a3:49:c3:a4:e2:fc:35:fe:25:5a:e3:5e:fa:8e:6a:db
Fingerprint (sha256): 4f:bc:64:9d:2c:c4:17:7d:3f:bf:43:39:73:9e:6d:7e:65:e1:56:ea:1b:60:77:f1:81:a8:79:6f:f4:96:63:e0
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate gonojuarez.me
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gonojuarez.me
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gonojuarez.me
www.gonojuarez.me
www.gonojuarez.me
Other certificates including the domain name gonojuarez.me
(limited to 100 certificates)
Certificate
The complete raw certificate details for gonojuarez.me in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgISAyYGMiC3y7ULHlUDOsfTJ6N1MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDIxMDUxNDJaFw0yNDA3MDExMDUxNDFaMBgxFjAUBgNVBAMT DWdvbm9qdWFyZXoubWUwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDO 2W05rZXsiJlj2kSIFJM7LLkGxgIZy169HfTeWAoT45VXPjNjgPWCFWX7ST28Lied uiksJdpCoSAUySPu2v4TonasAQjPSpmAXmNuDzHR/V4OA/VMvnwMQEFhmXqTXqJx QwesMp0LL01vmRQmM7njKoIc7dtqu8ymQWwBzjAvs5XY3nQAAM0TMm56A5XfyJ+8 /IS14tuH0SUiyVHWGrGlpk3U8rhyCvpBRE8qceWiVtUOp1pOqDxUgx2blHSO8+9b fCLhk9ia/ChkE6MLmgMAt0O2WO3ju5zRgqQw03zrp0NnM4IesrVSYRXWpUs7usp5 EyuCyWysJIxSIEqwvasVfgiAuBlHIonyWNvBKKs0K+zmgvtQUwDH3G+JkgphxNdN cifoHrCv4lS7pHZU1w2Xb/TMSgk5wc8QZ/5h6tqrh6oy69g1K27VqGrAzYdxJHPq H0O+RMe95k4oCAd3k5488nS1Vtqf3p5ccph894bTb9T/WHrzlnhF4+jcudCm53vg jf02ObhFVJXEFgAg5M8ExvUC77VBws9pIT1i+1iDDxOi/6X7WYrp8Z/YhqSvAXsZ r9hWtZRfg0LVvONNMQM/aAyWNrMpfLTmcAG0uypGtx8WPKDbubpsfv/1U3AzjDe6 xg4GHw3sT3ghBhyx/C3AVVc7d92524VGE92mcAzEZwIDAQABo4ICITCCAh0wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNV HRMBAf8EAjAAMB0GA1UdDgQWBBRIOCL/cXCOi1eNAT/XZEf0RiONNDAfBgNVHSME GDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYB BQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDov L3IzLmkubGVuY3Iub3JnLzArBgNVHREEJDAigg1nb25vanVhcmV6Lm1lghF3d3cu Z29ub2p1YXJlei5tZTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkC BAIEgfQEgfEA7wB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAAB jp6mm9oAAAQDAEcwRQIgLhb7xeVeopMwDSXkpM9yvIRFS0B8uXgVOU0lb57cerUC IQCuvpcAl19EwpJg7MFu6xo/o3/+TPwzMh5HqkNzmIuBZAB1AO7N0GTV2xrOxVy3 nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjp6mm/MAAAQDAEYwRAIgA0jx+SBus/Hf l/AWN2Ng/FFCQ7vNaEF03g6F/VWyCGoCIB4ubhgo/UGU3f1Ep5S/j1h2s0ZsSpNO Oe57fT/JlqpeMA0GCSqGSIb3DQEBCwUAA4IBAQB0W9iTu8xeWRVMEcmkGiuIYB+n NW2oqihAINjqKqxqpBElN5rTX4LBdumVTQiV3updUOF+80Y61ph+qNZKkrKdtl3S Fm22OkGwTP+e3VI3roFDVbzZw7maEGjctLtOLND5qH2O6+fgggbxowI+tAy0+6+2 t40uQ1QntCtoKglFSK1dvASxqGSh35ZAlJjJrWtgKkyF8vH2qIg+i1ik4JLL0dme HFjB90Y32/kenoBZKB+jPXI7kxdNqxK/851OcriZh3iH1oM/UNZ0h6WepTEcSg0F Ivxw4PKTBkwc5yNHTF6vTFZTeBtszBA0b4G5HCA4qzkXvWHwgTK7DvQcgAj4 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAztltOa2V7IiZY9pEiBST Oyy5BsYCGctevR303lgKE+OVVz4zY4D1ghVl+0k9vC4nnbopLCXaQqEgFMkj7tr+ E6J2rAEIz0qZgF5jbg8x0f1eDgP1TL58DEBBYZl6k16icUMHrDKdCy9Nb5kUJjO5 4yqCHO3barvMpkFsAc4wL7OV2N50AADNEzJuegOV38ifvPyEteLbh9ElIslR1hqx paZN1PK4cgr6QURPKnHlolbVDqdaTqg8VIMdm5R0jvPvW3wi4ZPYmvwoZBOjC5oD ALdDtljt47uc0YKkMNN866dDZzOCHrK1UmEV1qVLO7rKeRMrgslsrCSMUiBKsL2r FX4IgLgZRyKJ8ljbwSirNCvs5oL7UFMAx9xviZIKYcTXTXIn6B6wr+JUu6R2VNcN l2/0zEoJOcHPEGf+Yeraq4eqMuvYNStu1ahqwM2HcSRz6h9DvkTHveZOKAgHd5Oe PPJ0tVban96eXHKYfPeG02/U/1h685Z4RePo3LnQpud74I39Njm4RVSVxBYAIOTP BMb1Au+1QcLPaSE9YvtYgw8Tov+l+1mK6fGf2IakrwF7Ga/YVrWUX4NC1bzjTTED P2gMljazKXy05nABtLsqRrcfFjyg27m6bH7/9VNwM4w3usYOBh8N7E94IQYcsfwt wFVXO3fduduFRhPdpnAMxGcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 274275823384692943170135253038271111340917 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-02 10:51:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-01 10:51:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gonojuarez.me' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 843871613126191846676123560640323148690150293695670709216385369885532536026413081921428663131881657870208054749673233898964602184997363557695017582712335992568094369170646054901485921096585517890218929784849864378201625076875489191490230220755940414846260417186253667407429577375871331493139762661847447525234119151150602188382184046135684478374737944346404276482185980133517308383588938511104725705948322840756469940900372654655831845495701147387644358595434689478892815364031967085496930847959080843832606045050564012817933315812958342070667987956217166844540162685747295947208019320382548709247073540967277434352203389546186981003989177283827589463217910943136933267096993683888107172047886012381549843758788942039188132733598912937080488528137293976049441868021752270399509617646646355750485279020431184372636901403195810134756637735977612946419744270744766655815243971077162762062304253323914148288868923931003066087399682949624797598817685892046940288446026707015057166462451623836949469347884885274994199769000567375635063616287577748136406073096477334352384669140438433924828355612425798819080817211316947281010070701543935565276945236463687883043145603575237831488909476892966103458901842852751906552348105765377131571627111 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 483822ff71708e8b578d013fd76447f446238d34 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gonojuarez.me' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gonojuarez.me' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e9ea69bda000004030047304502202e16fbc5e55ea293300d25e4a4cf72bc84454b407cb97815394d256f9edc7ab5022100aebe9700975f44c29260ecc16eeb1a3fa37ffe4cfc33321e47aa4373988b8164007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e9ea69bf3000004030046304402200348f1f9206eb3f1df97f016376360fc514243bbcd684174de0e85fd55b2086a02201e2e6e1828fd4194ddfd44a794bf8f5876b3466c4a934e39ee7b7d3fc996aa5e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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