dkrsjeans.com

Issued by R3

About this certificate

This digital certificate with serial number 03:2b:3f:ae:f6:15:1e:60:0b:12:ad:7a:e2:54:19:ce:24:4a was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=dkrsjeans.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:2b:3f:ae:f6:15:1e:60:0b:12:ad:7a:e2:54:19:ce:24:4a
Serial Number (int): 276053649387414883199371482772733147620426
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: ad:5c:92:72:6d:1f:74:03:28:8a:82:39:37:25:3f:08:d5:0d:53:a1
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 89:67:ff:c9:a7:79:4a:b3:7c:4e:44:08:66:d0:45:d5:4b:0b:07:10
Fingerprint (sha256): 54:33:ea:1c:43:a8:26:b8:f5:60:fd:b2:ef:e7:cc:59:6d:8c:27:39:c8:d1:c8:59:0b:ca:5a:81:e1:3a:4a:1e

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate dkrsjeans.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for dkrsjeans.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

dkrsjeans.com
www.dkrsjeans.com

Other certificates including the domain name dkrsjeans.com

(limited to 100 certificates)
dkrsjeans.com
dkrsjeans.com
dkrsjeans.fabricando.co
dkrsjeans.com
dkrsjeans.com
dkrsjeans.com
dkrsjeans.com
dkrsjeans.com

Certificate

The complete raw certificate details for dkrsjeans.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA7/NDosqohHmkV/tinCAy
AyNGQouw8aJ3+su2ozSp5ZlG3qVeDo0KW7pJTgmAOyDQihVopaJvS9KvPQAwKy1n
cVzZ+bxIhArfKncOAq6K2+t5j9H2b/UCOuNNQY3GL2Fgjfm/zWeyTMi/BuODStbn
y22BmNFznF39DSwEvvvGwBuBqI8ISDTFY3vyF3mrJSI5z/E4D2I6rnUCbMcxCFpf
yBaFllNbUrRypab1rwYUQy6/uFJ+JT8hOEzNcxpEXH4eZAOn+JHAcjT/gdxP2tcH
uYSpW2Fws5H9f8nTZ6JW+ni5vZjQ2N9mL76gjo21SHsifHOwhTizKR31lPc3biP5
uxG7u/TH8p9KaaV5jRf7pfX/rmH5glM21GmW1+c/Y1xK3V8eauPQI/Z4cXsHWmMD
HnSGHl2vSHyORpaCKsNsu1G/uu9SE0n6om+SQvAU0zE6c+12JTrnJAUplVdIxSGG
ZN1wHPjLZE03/x45dd7JNJAEvjYSnX5RD9OYj9dJi2fBDaZeFMc62I2tQuoLk1SC
0O6E2Zo5npNS9GQkXOyw5myPRrNvKD4a4wUrhXfteGeGmdxWkfjTZ0WQrbbASRHI
ueUGVK26dsdXzIa5vEAx5LBkan5uvgUIpmJHIx+TrdsdYus1Deu1fwugnu35lfYp
H2w+EuTtHyG9BwI/e8g6ofUCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 276053649387414883199371482772733147620426
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-19 21:46:50 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-18 21:46:49 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dkrsjeans.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 978911617263543737207825969763506569110878541669960709016598380040517184096624628352369741801002025252040090304154259588220478877547480564945899516747188429896350256878234160558125522873913630216752464984956460570521266014038552334347562330266504014813808524327758743297587308606453184521172476644476230064106861738351730051856967602111388568272557965685796782967095880178511283849482692464207576383200471896767864747221480330920379607954775229143375804238213846074957793008110814455480935973162657532490297626696141142303069539329994998727469903701164759508412764772051313621358728024101607986584508193677974370506299551835534441132695772646503667864681081079916953743898794700131458912034187713711657610762593950895786229133143521506322174519736581072109523145420654749253074163367000472493995398101529451827779907772696886995553733488797881727513478873739541958669942027982634683844755372380096990283066272416880775526277833808715132568464877538785770088270692186601342284969472059797173901532472197871134611880482205793048745021495332682291611995040472505885920527074202635998334675263503643571438867010697211640727274434943815516042541627561098674000643172821046308156267698959499453494055158388882057293121914784805460427579893
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ad5c92726d1f7403288a823937253f08d50d53a1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dkrsjeans.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dkrsjeans.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d23e7cfba000004030047304502202c89c438aa883ed6af4356b834e231290d073736a560e3d459da8a4fb5c5e76f022100caeb86be55b819246c184b630e846bdecbb4634fa90d90fc1f27bb31713d7be20076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d23e7cfba0000040300473045022041c890084148234b7abfce10690d1e77246caf6086e6d5eacadc8790c643c822022100b9bd9384d53286cd805432fdc8d680814708f70eb0ea15c18540b43b8efb6f8c
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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