holdur.is

Issued by R3

About this certificate

This digital certificate with serial number 03:46:89:6a:07:36:1a:00:fb:91:a0:ac:34:de:3e:1d:e1:57 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=holdur.is

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:46:89:6a:07:36:1a:00:fb:91:a0:ac:34:de:3e:1d:e1:57
Serial Number (int): 285339278244899206348212031775000068219223
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 85:f2:ac:0d:ca:dc:57:0e:5a:8b:58:b7:72:b9:e9:cd:2f:5a:4b:f0
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): d4:d7:f1:3e:79:f1:13:1b:3e:23:26:67:9e:fb:2e:53:03:0b:9c:7e
Fingerprint (sha256): 58:92:3e:a0:d0:cf:9c:77:37:41:ab:22:94:91:84:19:5d:be:ac:8f:07:3d:6e:ac:9c:2a:91:69:1a:8b:e6:c2

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate holdur.is

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for holdur.is

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

holdur.is
www.holdur.is

Other certificates including the domain name holdur.is

(limited to 100 certificates)
holdur.is
holdur.is
bilar.holdur.is
holdur.is
holdur.is
innri.holdur.is
bilar.holdur.is
holdur.is
bilar.holdur.is
innri.holdur.is
innri.holdur.is
holdur.is
www.holdur.is
nav.holdur.is
nav.holdur.is
webmail.holdur.is
www.holdur.is
bilar.holdur.is
holdur.is
bilar.holdur.is
rentway.holdur.is
rentway.holdur.is
holdur.is
bilar.holdur.is
rentway.holdur.is
holdur.is
holdur.is
innri.holdur.is
nav.holdur.is
innri.holdur.is
holdur.is
innri.holdur.is
nav.holdur.is
bilar.holdur.is
innri.holdur.is
holdur.is
holdur.is
holdur.is
bilar.holdur.is
www.holdur.is
webmail.holdur.is
innri.holdur.is
innri.holdur.is
innri.holdur.is
holdur.is
www.holdur.is
innri.holdur.is
bilar.holdur.is
innri.holdur.is
holdur.is
holdur.is
nav.holdur.is
holdur.is
bilar.holdur.is
nav.holdur.is
holdur.is
www.holdur.is
bilar.holdur.is
holdur.is
www.holdur.is
holdur.is
bilar.holdur.is
innri.holdur.is
bilar.holdur.is
webmail.holdur.is
innri.holdur.is
innri.holdur.is
holdur.is
webmail.holdur.is
webmail.holdur.is
bilar.holdur.is
bilar.holdur.is
innri.holdur.is
rentway.holdur.is
innri.holdur.is
bilar.holdur.is
bilar.holdur.is
www.holdur.is
innri.holdur.is
innri.holdur.is
innri.holdur.is
holdur.is
holdur.is
nav.holdur.is

Certificate

The complete raw certificate details for holdur.is in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuZvnlCu8+l/Z7O0xE9ya
Rpy+7MTezLo7tAOuveKQ0iEYg5cHRfu9CzuCkFjBewOpNjv0vuf3cs6cofSFCTgE
voRL7X5AoMegSnXnRIw4KBQzGrZFXx7KTTC2qrGcpOoHiA2isWnc1Ufr5OLLqkwu
Ktwzh+CovRJnx7sgTgHUnMfssN7zhhCAZfl+0dzLgPbDJA52/Ft77FMXdcWbDsQ9
Xth6oqFjZ+n89axBluoNczgWE4CpY9LLTvq9eASpAQ3Lk1eFIC9UWUQDXMhPV6zZ
55VcqI1Q0znvW8bjFaPlMNo77owfpL5xMObnzjvGSoyiF2fIvcYSSGLc5qulU3MU
wWk+XcWc437vserpUXE22uE+IfDa/xGMwD1vv6J6sLm7GoWm9r1ARB+AmNeGJori
tEh6efb+iePPnVkYvXZF6bN4Dpz7WsTGDRW/rZ7+ZY1hUb8GvTCS2O3vyC5fZGHH
N2wpB6zD8iXsRYdv7ETeDX6H39M3kR3lspFdyDviVMiLRFFhQll8isW0i+5zjxV+
lG7Ib938zruuNHUBCvfPJm1o4z4jB4XhSDjKy1EPK/VQl3jVEtr3VGsndr0UI4j9
5xT5XFUCS6BiG1asu4ZOan5xThKuGJ3qRwjpEmUUDIBlZvHLO239+GtwjkwmPfxN
OEp46JU0VRESBFwEZJp8FasCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 285339278244899206348212031775000068219223
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-04 03:01:19 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-03 03:01:18 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'holdur.is'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 757218665457040439233341523318004254693732675882753393889491208814145930962168510978984786039920697215875845519294229988220190130745865797317202634747378977303467466920726006423650616300034255074668534936499970289661600234912669224143288271295492338165643833127344795513982138966131076996150137811436124559719256116068809175548372758093385672033923082120087092681090748169753379034938881330639996026914634864478053890067337304081508830650530184765526799910349477928100008054029162491014122568037753635960069244613448413544886511036048011035179483298317917324226927963923921126018607945080212206426307191776585136139398457556991681778615056549734580100949694509312756763642337117424661109596536182192271975540400166545636792716594226306616395625323661372016444872142892267572644987215329921019065342256286869290321823909102776304640830570023067326462184715214242964642205033005552764650299067004357888376684340870945389835150150876093419092788485507117644474451014716927691532487315789064998632385839845930745903023380348987538959682237083112951386026743532402911439831571634963675245175816188854859930936634437043464593637572071046179321106726688695864861087174263141157691765497471453390066654093164354982211896696024675000231138731
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							85f2ac0dcadc570e5a8b58b772b9e9cd2f5a4bf0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'holdur.is'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.holdur.is'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c32fcd47d000004030047304502204986cb688194120c34b6b96f384ea124a382b644a8fc0d582d279e121710c0f1022100facbf1693dc87dc25979a4eb207e5345ee4d8575b3abedf76b03830bff1a592b007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018c32fcd4840000040300473045022100d0f9237d96c09560171c02ea1c9fdf9f8573417a9ab0bfe653db8c27ddf3833f02203a8cc8209b781b40194c13247cb8337f9fdfffd690405da5eddddb956190c88c
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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