damasjewellery.com
Issued by R10
About this certificate
This digital certificate with serial number 03:02:06:5d:f1:cc:3d:67:f0:5a:da:df:bf:74:bb:02:50:73 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=damasjewellery.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:02:06:5d:f1:cc:3d:67:f0:5a:da:df:bf:74:bb:02:50:73Serial Number (int): 262025885684947433973970277687626414837875
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 8b:e1:3f:2b:f4:94:31:a2:80:ee:69:92:eb:f8:e4:cb:0e:0f:d9:94
AuthorityKeyId: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8
Fingerprint (sha1): b8:78:84:b5:33:c1:11:83:34:c6:de:7f:21:51:8d:e3:d7:11:a8:4e
Fingerprint (sha256): 50:fb:83:66:83:39:11:1d:2c:0e:c1:be:37:bc:86:e7:83:92:52:d4:8b:28:ab:ec:81:72:39:63:ec:3e:20:68
Issuing Certificate URL: http://r10.i.lencr.org/
Revocation information
OCSP Server: http://r10.o.lencr.orgCheck the revocation status for certificate damasjewellery.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for damasjewellery.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
damasjewellery.com
ma.damasjewellery.com
ma.damasjewellery.com
Other certificates including the domain name damasjewellery.com
(limited to 100 certificates)
damasjewellery.com
catalogs.damasjewellery.com
damasjewellery.com
damasjewellery.com
helpdesk.fairwaylawns.com
damasjewellery.com
damasjewellery.com
damasjewellery.com
damasjewellery.com
krypcservicedesk.krypc.com
servicedesk.damasjewellery.com
damasjewellery.com
service-desk.awansoft.biz
krypcservicedesk.krypc.com
assets.damasjewellery.com
catalogs.damasjewellery.com
catalogs.damasjewellery.com
damasjewellery.com
mail.damasjewellery.com
itservicedesk.krypc.com
analytics.damasjewellery.com
ithelpdesk.ut.com.my
damasjewellery.com
mail.damasjewellery.com
mail.damasjewellery.com
servicedesk.damasjewellery.com
ithelpdesk.ut.com.my
damasjewellery.com
damasjewellery.com
catalogs.damasjewellery.com
damasjewellery.com
damasjewellery.com
mail.damasjewellery.com
damasjewellery.com
krypcservicedesk.krypc.com
servicedesk.damasjewellery.com
damasjewellery.com
dmsfs.damasjewellery.com
mail.damasjewellery.com
catalogs.damasjewellery.com
damasjewellery.com
damasjewellery.com
helpdesk.fairwaylawns.com
damasjewellery.com
damasjewellery.com
damasjewellery.com
damasjewellery.com
krypcservicedesk.krypc.com
servicedesk.damasjewellery.com
damasjewellery.com
service-desk.awansoft.biz
krypcservicedesk.krypc.com
assets.damasjewellery.com
catalogs.damasjewellery.com
catalogs.damasjewellery.com
damasjewellery.com
mail.damasjewellery.com
itservicedesk.krypc.com
analytics.damasjewellery.com
ithelpdesk.ut.com.my
damasjewellery.com
mail.damasjewellery.com
mail.damasjewellery.com
servicedesk.damasjewellery.com
ithelpdesk.ut.com.my
damasjewellery.com
damasjewellery.com
catalogs.damasjewellery.com
damasjewellery.com
damasjewellery.com
mail.damasjewellery.com
damasjewellery.com
krypcservicedesk.krypc.com
servicedesk.damasjewellery.com
damasjewellery.com
dmsfs.damasjewellery.com
mail.damasjewellery.com
Certificate
The complete raw certificate details for damasjewellery.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAwIGXfHMPWfwWtrfv3S7AlBzMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTAwHhcNMjQwNjIxMjExMzAxWhcNMjQwOTE5MjExMzAwWjAdMRswGQYDVQQD ExJkYW1hc2pld2VsbGVyeS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQCP0O7D/zoO9uW8CEi+WNmwEIF2uC5YrGhPgq4jREda8ZnC6mUPLZrPXs1+ j35MjLY2rILvSgZkyNVJGDcUCa6e5AuN2VHXbG/n3v7Qd6v5fQ/kFYpw4I2lKLQE PDhXGljQ5zlsJil1KdTUS4qGIS7p34UEr2e2M6lQT+Bq3Tmt97dt2IbYpeeskcUM lSZ6N96IQC8rrJBBUHJhJ0qBDc3P4bHThv8K8KqF2+JXWk8kguVNL7XVpPTFnNtX iksnJIJUMCjDfsG/tkAzEETgkUwoZtXkgv3eqk6msCH8/UEeWmB4KjsTepiKukGQ 8M9xHQyhIvA3vT1gu/uSRay8mPr3AgMBAAGjggItMIICKTAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAw HQYDVR0OBBYEFIvhPyv0lDGigO5pkuv45MsOD9mUMB8GA1UdIwQYMBaAFLu8w0el 5LypxsOkcgwQjaI14cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0 cDovL3IxMC5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMC5pLmxl bmNyLm9yZy8wNAYDVR0RBC0wK4ISZGFtYXNqZXdlbGxlcnkuY29tghVtYS5kYW1h c2pld2VsbGVyeS5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5 AgQCBIH1BIHyAPAAdgAZmBBxCfDWUi4wgNKeP2S7g24ozPkPUo7u385KPxa0ygAA AZA83DIPAAAEAwBHMEUCIQDX35oi26IyIibaW+L33rsZnmY/+ExCQK21hiNTA4CL FgIgcLBMLtzjVC+4gMoc4eFVetC7bLILR+sYNnOw1uKGIL8AdgB2/4g/Crb7lVHC Ycz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAZA83DJGAAAEAwBHMEUCIQCl7Ei6Dsva uxcwsTQwSakyglIjGbt6kPLgVQaa/MzMNgIgOOj4JA5kDNteVKN/oqsTzDTIOu7B C9MqutZ052njQXswDQYJKoZIhvcNAQELBQADggEBACA+gKc1JhOtxrE7uz0Y9VeO VzkgoeBguzQXHNsUDMWexForeUum4qZ2ids5zRi5GHMYOzvt5LosQLkK/Ax9S4Uk eHga/9vu6sCGUJ7mQ3uOiAH+t1ZV9zIxPed2WIFyJcDItcsXpslXG1xxngQo+k2p bVge5jp2I22NxnDYHhSCQtO+k8xY5dzxdgOA1po//029Z7/2EiU+trscSkqO/+ZT +/arweu0g2DKa28EJbkHS1BlSZhoUWWVFijkkKi6xrE3pTAnsFdLcmx+GOvDkgSv Is8+gPAsH4WvqSiCu5tHIVC//adRiukdfnEgRcPhc/Bt8sl1yLc8byRSx6IjQCw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj9Duw/86DvblvAhIvljZ sBCBdrguWKxoT4KuI0RHWvGZwuplDy2az17Nfo9+TIy2NqyC70oGZMjVSRg3FAmu nuQLjdlR12xv597+0Her+X0P5BWKcOCNpSi0BDw4VxpY0Oc5bCYpdSnU1EuKhiEu 6d+FBK9ntjOpUE/gat05rfe3bdiG2KXnrJHFDJUmejfeiEAvK6yQQVByYSdKgQ3N z+Gx04b/CvCqhdviV1pPJILlTS+11aT0xZzbV4pLJySCVDAow37Bv7ZAMxBE4JFM KGbV5IL93qpOprAh/P1BHlpgeCo7E3qYirpBkPDPcR0MoSLwN709YLv7kkWsvJj6 9wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 262025885684947433973970277687626414837875 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-21 21:13:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-19 21:13:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'damasjewellery.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18155106153681653093333133998427266999432864141747588117491759530318037707433335187919590456506297056461624002983350046805063210422511991578127651535355298851754585575707591130444810768975558772011850224243635547519329298928422952991008757812253945834016990376361605329536027270704410816016220217607965058216093025831778354900123232119518462344883247505308972525106417176574419812492985646247024696555909952235718160643889284402145132272206097524857434505926478359319366172553828230156864646283459424621838532047975779076282193766910751573670980241654442619744447136192052188964646601187301702539911538444645174934263 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8be13f2bf49431a280ee6992ebf8e4cb0e0fd994 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (45 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'damasjewellery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ma.damasjewellery.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca000001903cdc320f0000040300473045022100d7df9a22dba2322226da5be2f7debb199e663ff84c4240adb586235303808b16022070b04c2edce3542fb880ca1ce1e1557ad0bb6cb20b47eb183673b0d6e28620bf00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a74000001903cdc32460000040300473045022100a5ec48ba0ecbdabb1730b1343049a93282522319bb7a90f2e055069afccccc36022038e8f8240e640cdb5e54a37fa2ab13cc34c83aeec10bd32abad674e769e3417b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00203e80a7352613adc6b13bbb3d18f5578e573920a1e060bb34171cdb140cc59ec45a2b794ba6e2a67689db39cd18b91873183b3bede4ba2c40b90afc0c7d4b852478781affdbeeeac086509ee6437b8e8801feb75655f732313de77658817225c0c8b5cb17a6c9571b5c719e0428fa4da96d581ee63a76236d8dc670d81e148242d3be93cc58e5dcf1760380d69a3fff4dbd67bff612253eb6bb1c4a4a8effe653fbf6abc1ebb48360ca6b6f0425b9074b50654998685165951628e490a8bac6b137a53027b0574b726c7e18ebc39204af22cf3e80f02c1f85afa92882bb9b472150bffda7518ae91d7e712045c3e173f06df2c975c8b73c6f2452c7a223402c