boavista.net
Issued by R3
About this certificate
This digital certificate with serial number 04:95:12:10:ae:93:09:dd:bd:7d:29:f6:61:f7:0c:61:30:9f was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=boavista.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:95:12:10:ae:93:09:dd:bd:7d:29:f6:61:f7:0c:61:30:9fSerial Number (int): 399175229119723547043010909847719401042079
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 41:b6:ea:6f:08:3b:e4:ea:43:de:6f:d8:cd:e0:d8:29:7b:b5:e2:5a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 9d:b4:b1:b5:59:71:b8:56:d2:e8:a2:b0:40:cb:d2:76:8b:bf:30:d1
Fingerprint (sha256): 4f:f0:8a:7f:aa:10:b5:36:6e:be:62:d5:b2:cb:66:5c:03:84:e7:3e:eb:c7:fc:16:15:fa:a8:8e:d8:24:4b:2d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate boavista.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for boavista.net
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
boavista.net
Other certificates including the domain name boavista.net
(limited to 100 certificates)
Certificate
The complete raw certificate details for boavista.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5jCCBM6gAwIBAgISBJUSEK6TCd29fSn2YfcMYTCfMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMDUwMzA3NDZaFw0yNDAyMDMwMzA3NDVaMBcxFTATBgNVBAMT DGJvYXZpc3RhLm5ldDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAOey ex+s4EuSpqhfhKYUIly2nUM9y084A6JtgUFn7RmmgNSeDoKwr8gRyIIxeFjW21rE ZrBp2fznj9N0RwEMo87cRlFCOjxDFDcVTFTRSx5ci/UliidPyzEABfnCtN6yRT2F btjZhM2heCxVhtayS3ijD3AhZDNcMHxG1yvK9hTFh5ocISwjAhmSfO/8OZMD6Dzd 6VRYMJbmMskga9FvXOmYFaRChG+l9HKOWRAVrweB/SOQyxzYPDhChryW9pQr7PBQ XRANKNkmIq7u5/meFwi36lWXs+6GOMMgPrqWTca8s6jyTmD3+bcKGlU56PShV+GN 5jj3JgIL/HAXCVAniqwMt9uLwzsLzlNNkAbJo8697P9+OgBp7uHEG1HOcQLHQuf2 FPEqedWVqEsrDlOYdGFzrRYspiH3ZhosVkURWfUr2sFBRD3ea5ePszwiD8+H5Dyu qNoecNvhd2g6FheUexvk1QKFZmZT8Stt12E1G1XATv77sn3r/btoyuL/TH6LqNiw qL4rkPwJdthYFsrAB6+juaSXfUy+KKne2ZptGq7g+/RupPC7kaY3AnUvqsmxS0MV n3cFPJk+LgzPA7YiAWvdTS4AQ2yxT5n4TBTpREkJI3Nl9uUL4wPCTCbA4bwHhiqj TJI2LyhKtV5iygjDacZ4/kVutV1Yxyqwx3s4D7A/AgMBAAGjggIPMIICCzAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFEG26m8IO+TqQ95v2M3g2Cl7teJaMB8GA1UdIwQY MBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEF BQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8v cjMuaS5sZW5jci5vcmcvMBcGA1UdEQQQMA6CDGJvYXZpc3RhLm5ldDATBgNVHSAE DDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB3AEiw42vapkc0 D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABi52qUq0AAAQDAEgwRgIhAJi6vgwX k+wqbX1KS9BPUrEMA0otdWC+/tURqBRQKwvWAiEA85puXCoDAAt7psFSBupMv0v0 0N15sZks8gDQuZ5sdIUAdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1 mwAAAYudqlKpAAAEAwBHMEUCIFba1L11Cu7yDtPiA0c0uxGOY9CXnj3JsHJNexBq wL0pAiEA1J4sxyG2Hjt4DUkd/xrKCkqDKcW3jgKHolVFYj6DfPwwDQYJKoZIhvcN AQELBQADggEBAIQN0CalBS4jWzV/PNY+6TZFhb8WYo2f8Bll2XddASRYNiAESwA5 4D/Wte/8Lnq3JrRzEofFtHp85J1tHEtdbrTVlSDHgcu9XelDZU3LJuO0nm6z53YJ Y11PFN7wKDgfQAmAhHSR3Xoig9NIfy1TrZ5R8iMBZ9pi7iiC/2naVIzOa1bBkaL+ bsIOM2FAf0r6+MVEcZFJl1H3/657h3kOtcxakKpL0uiMIGd6te3ZDszo95gPkyqe GzcVkbToStqddrnuDNo2ti0yiNd0/8ov2afdGtK+WZm525Gm2qL1zUKMbewbxwB2 eG3mZETpIN4AD1c7U79jkc1/yim8AmdQWcs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA57J7H6zgS5KmqF+EphQi XLadQz3LTzgDom2BQWftGaaA1J4OgrCvyBHIgjF4WNbbWsRmsGnZ/OeP03RHAQyj ztxGUUI6PEMUNxVMVNFLHlyL9SWKJ0/LMQAF+cK03rJFPYVu2NmEzaF4LFWG1rJL eKMPcCFkM1wwfEbXK8r2FMWHmhwhLCMCGZJ87/w5kwPoPN3pVFgwluYyySBr0W9c 6ZgVpEKEb6X0co5ZEBWvB4H9I5DLHNg8OEKGvJb2lCvs8FBdEA0o2SYiru7n+Z4X CLfqVZez7oY4wyA+upZNxryzqPJOYPf5twoaVTno9KFX4Y3mOPcmAgv8cBcJUCeK rAy324vDOwvOU02QBsmjzr3s/346AGnu4cQbUc5xAsdC5/YU8Sp51ZWoSysOU5h0 YXOtFiymIfdmGixWRRFZ9SvawUFEPd5rl4+zPCIPz4fkPK6o2h5w2+F3aDoWF5R7 G+TVAoVmZlPxK23XYTUbVcBO/vuyfev9u2jK4v9Mfouo2LCoviuQ/Al22FgWysAH r6O5pJd9TL4oqd7Zmm0aruD79G6k8LuRpjcCdS+qybFLQxWfdwU8mT4uDM8DtiIB a91NLgBDbLFPmfhMFOlESQkjc2X25QvjA8JMJsDhvAeGKqNMkjYvKEq1XmLKCMNp xnj+RW61XVjHKrDHezgPsD8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 399175229119723547043010909847719401042079 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-05 03:07:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-03 03:07:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'boavista.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 945242071733720515335680828449666284420336084599309993879445989237168349600014739733962029779832533189532870681845485575857788383090207864844138430322558487426785283266053019470549521278203234880955487816711469788753355220716755323221413429612104287193268848444376912042320560757781300983470636000330024323814950849309688088478949653380959412455155662858150080695108795669940703626953307275730720666291984614572481911583761487085992815152485532930470325549946496489128690679299950601824800542393120250005734421426679493287848900009265819933154462777079287879249600954151240485132395813418544819324818839535348509093438139159296786362343892334452295509033267461928970292349989328471754176296864945925702902725348654026067167830954594959518519326913025606058620907272890415109450799399995842047609213428217711925916347192117814866779644324152140129766932405990524239290057298493491068039988765748588222673258422611176732519442157052945901032169801093542372864400525459529805995324282440696835327882112247840567318835717509435593693374102443265493956935349355459843845290846548057977289143145730591888242081176380264520957775818278726181109717484067665526320922449246438305406856353040934921195072455661716486114110122190422188244316223 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 41b6ea6f083be4ea43de6fd8cde0d8297bb5e25a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'boavista.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018b9daa52ad000004030048304602210098babe0c1793ec2a6d7d4a4bd04f52b10c034a2d7560befed511a814502b0bd6022100f39a6e5c2a03000b7ba6c15206ea4cbf4bf4d0dd79b1992cf200d0b99e6c7485007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018b9daa52a90000040300473045022056dad4bd750aeef20ed3e2034734bb118e63d0979e3dc9b0724d7b106ac0bd29022100d49e2cc721b61e3b780d491dff1aca0a4a8329c5b78e0287a25545623e837cfc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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