www.jih2000.cz
Issued by R3
About this certificate
This digital certificate with serial number 03:cd:40:69:10:7f:41:d6:82:8c:25:48:3c:01:78:f7:39:fb was issued on by Let's Encrypt.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.jih2000.cz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:cd:40:69:10:7f:41:d6:82:8c:25:48:3c:01:78:f7:39:fbSerial Number (int): 331180359131574411872625288409257543678459
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 4d:6c:eb:32:09:99:0e:15:fc:3c:1a:0d:44:02:20:01:fe:c7:ce:b8
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): e8:a5:35:3d:25:ee:74:e8:ba:3a:42:b2:3f:f6:98:5a:c6:f1:39:1e
Fingerprint (sha256): 54:9a:b5:fd:fd:f5:47:76:6a:22:99:61:da:65:06:16:1a:09:06:00:69:14:4f:f2:9a:74:1b:65:20:f8:34:31
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.jih2000.cz
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.jih2000.cz
Public Key Algorithm
ECDSA
Key Size
384
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dacia.jih2000.cz
jih2000.cz
jih2000.cz.vhost.omnio.cz
jih2000.dacia.cz
jih2000.renault.cz
renault.jih2000.cz
www.jih2000.cz
jih2000.cz
jih2000.cz.vhost.omnio.cz
jih2000.dacia.cz
jih2000.renault.cz
renault.jih2000.cz
www.jih2000.cz
Other certificates including the domain name jih2000.cz
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.jih2000.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEsTCCA5mgAwIBAgISA81AaRB/QdaCjCVIPAF49zn7MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MTgwNjM2MjRaFw0yNDA4MTYwNjM2MjNaMBkxFzAVBgNVBAMT Dnd3dy5qaWgyMDAwLmN6MHYwEAYHKoZIzj0CAQYFK4EEACIDYgAEkP7R92GzwxV6 iHlVVHyG12fxTcMLrY0vpd5f0RjMC2WJF/+tLj2TACw41tqbz4wWR0tClQiDHDMt Pjx2P9aGXZjPXL5fAPCKSpxNUqKiScXl93mANp2YfpLGrfNI0j8So4IChjCCAoIw DgYDVR0PAQH/BAQDAgeAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAM BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRNbOsyCZkOFfw8Gg1EAiAB/sfOuDAfBgNV HSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYI KwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0 cDovL3IzLmkubGVuY3Iub3JnLzCBjgYDVR0RBIGGMIGDghBkYWNpYS5qaWgyMDAw LmN6ggpqaWgyMDAwLmN6ghlqaWgyMDAwLmN6LnZob3N0Lm9tbmlvLmN6ghBqaWgy MDAwLmRhY2lhLmN6ghJqaWgyMDAwLnJlbmF1bHQuY3qCEnJlbmF1bHQuamloMjAw MC5jeoIOd3d3LmppaDIwMDAuY3owEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgor BgEEAdZ5AgQCBIH1BIHyAPAAdwA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF 7PhkbgAAAY+KoWbRAAAEAwBIMEYCIQCeiSd5KQEUHMc7e4Amm3HVF/EgATuv8zaF gAMVPLhfzgIhAPNWZPfMzKU9zQw5E1jz2KFj9FkK2uIVcGquwsY6V0KqAHUAdv+I Pwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGPiqFnHQAABAMARjBEAiBC UAsIprRznS0NgkPjxqe3ujmxjrAGAAOj89zNsTDAqAIgP+kwOqjTwGjp62TyeLOj DzRWAuGgIJIhmw3OZfadmFUwDQYJKoZIhvcNAQELBQADggEBAGh1M4Js5ap1J1h/ UEpCP7C2uJah8ECO2iLyPEf6TRRKyWM3DkwPZR+Y7SXzB5tcrO+ZvxezKZPF2x7T D5i317UBs5nzanyAgEWqOlSPG7IEK2s2ZZmquKQmf2H3D1YvoOpEF7Ah7le3Jr9I LwwNNDIEqz6VKTHMsBsJ6EiEDhPBiNzfL5szNlOxLg23ptmhmM9laV6IdXmy+WmU ZaxhMyISXFLdBfP2YiQkTOsiyJxyXQWoPMIiBtePYcLVyHHr/VAr6+YzUhz9Y8dO 9wxF/giWhj4LEVRNn9MadWI7aNMI+n74618hguNBLurVY5d1K2lZT3GUva4vB1wL Qeeme20= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MHYwEAYHKoZIzj0CAQYFK4EEACIDYgAEkP7R92GzwxV6iHlVVHyG12fxTcMLrY0v pd5f0RjMC2WJF/+tLj2TACw41tqbz4wWR0tClQiDHDMtPjx2P9aGXZjPXL5fAPCK SpxNUqKiScXl93mANp2YfpLGrfNI0j8S -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 331180359131574411872625288409257543678459 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-18 06:36:24 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-16 06:36:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.jih2000.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.2.1 (ecPublicKey) . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.132.0.34 (secp384r1) . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (776 bits) 000490fed1f761b3c3157a887955547c86d767f14dc30bad8d2fa5de5fd118cc0b658917ffad2e3d93002c38d6da9bcf8c16474b429508831c332d3e3c763fd6865d98cf5cbe5f00f08a4a9c4d52a2a249c5e5f77980369d987e92c6adf348d23f12 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1 bits) 0780 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4d6ceb3209990e15fc3c1a0d44022001fec7ceb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (134 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dacia.jih2000.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jih2000.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jih2000.cz.vhost.omnio.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jih2000.dacia.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jih2000.renault.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'renault.jih2000.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jih2000.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00077003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f8aa166d100000403004830460221009e8927792901141cc73b7b80269b71d517f120013baff336858003153cb85fce022100f35664f7cccca53dcd0c391358f3d8a163f4590adae215706aaec2c63a5742aa00750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018f8aa1671d0000040300463044022042500b08a6b4739d2d0d8243e3c6a7b7ba39b18eb0060003a3f3dccdb130c0a802203fe9303aa8d3c068e9eb64f278b3a30f345602e1a02092219b0dce65f69d9855 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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