vzh.org

Issued by R3

About this certificate

This digital certificate with serial number 03:fe:db:bc:22:3d:e1:6e:5f:07:c4:04:db:26:2f:ea:27:67 was issued on by Let's Encrypt.

With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=vzh.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:fe:db:bc:22:3d:e1:6e:5f:07:c4:04:db:26:2f:ea:27:67
Serial Number (int): 348060656770590022778673893268284081055591
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 90:ce:82:a2:60:80:56:45:74:87:78:1f:98:5c:7e:d6:d2:b7:55:ad
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): de:5c:c6:81:ca:4d:5f:17:5a:fd:02:29:02:df:07:f1:25:99:9b:f0
Fingerprint (sha256): 53:5e:95:36:f5:64:d2:b5:32:42:e7:71:7e:dc:04:08:1c:d0:1f:09:8e:16:71:af:58:54:8d:a1:01:8e:3e:51

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate vzh.org

8

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for vzh.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

astroexpert.in.digitalstorebuilder.com
dufourcapital.com
murjite.org.sportsson.com
poisonivycontrolquote.com
shipwrecks.site.altassetira.com
shop.talosdevices.com
vzh.org
xn--tk8h.tk.halfmarathonsclub.com

Other certificates including the domain name vzh.org

(limited to 100 certificates)
artisan.ninja
vzh.org
www.vzh.org
vzh.org
pup.co.za
vzh.org
crossroadsofpeace.com.vzh.org
vzh.org
zinnia.ltd
wiwak.vc
vzh.org
canadianbiblesociety.ca
vzh.org
vzh.org
vzh.org

Certificate

The complete raw certificate details for vzh.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1OJ59Z2r7PS6pYaDluBe
7vOdqPxi2RpXsw1dl6+zZqjvmI6CODxFXb+d00KeEDeLO/JV8KATDoohLXK+K7dO
u4SVJWyzlFSrCrU4WkMiNNb8sUd6PbSXSHGSviQZ9k8WbPX5ofq/WfudIU3ycS4+
2Zs/owcAuTOsfPbOmV6bUsN6MiXpL+iPzdw0LZLd2/j04/MIfZ/qtY61CsAcRh8X
Nm2RjNpmy1T12rkJf2p46MEYQcrXmSk+8MMPlNiXjVF/VDK0BRA5SjiCd3jyHyij
ODIQ3hyZwqZURPXHWVr3425oM7xLE1oGPl7JoGLzRFrS/tR9x0t2/U7AvEVhtSw8
ZQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 348060656770590022778673893268284081055591
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-11 14:50:55 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-10 14:50:54 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vzh.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26874200330000684501148020243203462089867274351661383120374876062115942146868456623849271072280588453536942052448723787259176559630057085802413434822709851052811851377836571805584840828836766246302577962125049122625507305907484370102663577517324715642094356433702793972353696372959749550321362466883874280702770288233388577000289836770123888774697072404367445591880909901816226070580936211635300141389009519075293182339309172556170830380033827880677110258221778452263729924979494391157595201938886247036973376249390390308326092020776048119932054619457439892091165569924234190635615982342219618842391127240090562870373
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							90ce82a2608056457487781f985c7ed6d2b755ad
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (216 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'astroexpert.in.digitalstorebuilder.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dufourcapital.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'murjite.org.sportsson.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'poisonivycontrolquote.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shipwrecks.site.altassetira.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.talosdevices.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vzh.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xn--tk8h.tk.halfmarathonsclub.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018cf938245600000403004730450221009279adffe83032b09b16f14e4db074ffa806be175b8c6c5d4583c6f08b9dbbc702202d77e4be04f31541183b478c69b44851424ad196fce576bb92ca10547541be3000750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018cf938256c000004030046304402206afd91fd61149405f048723ae29e0dc8646c45ce9045e6102281bf6e84f0806a022030b66c0c42a59a4419ca488285ad4d7a5bf60e65d7a8585d50834d7be9daaa9b
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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