p010.nl
Issued by R3
About this certificate
This digital certificate with serial number 04:e0:09:25:38:a0:1c:5d:f9:8d:7c:5a:e5:6a:b3:b5:aa:b3 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=p010.nl
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:e0:09:25:38:a0:1c:5d:f9:8d:7c:5a:e5:6a:b3:b5:aa:b3Serial Number (int): 424684550232777255429401165420793834089139
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 9c:dc:bb:96:38:e8:88:df:6a:f8:d7:6c:fc:10:65:18:4e:0c:82:91
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 16:c5:b9:cb:78:e7:c9:78:14:74:3c:58:05:cd:80:fe:ee:d2:49:9e
Fingerprint (sha256): 59:0e:c6:29:60:4f:c9:c2:ba:e3:6d:8b:ab:fb:4d:02:e5:ee:06:7d:06:b6:2c:55:ae:da:ac:6f:71:dc:05:26
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate p010.nl
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for p010.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
p010.nl
shop.p010.nl
www.p010.nl
shop.p010.nl
www.p010.nl
Other certificates including the domain name p010.nl
(limited to 100 certificates)
p010.nl
vps.p010.nl
p010.nl
vps.p010.nl
vps.p010.nl
vps.p010.nl
p010.nl
p010.nl
p010.nl
vps.p010.nl
vps.p010.nl
ez.p010.nl
vps.p010.nl
p010.nl
p010.nl
p010.nl
p010.nl
ez.p010.nl
vps.p010.nl
p010.nl
p010.nl
p010.nl
p010.nl
ez.p010.nl
vps.p010.nl
p010.nl
vps.p010.nl
p010.nl
p010.nl
p010.nl
ez.p010.nl
p010.nl
vps.p010.nl
vps.p010.nl
p010.nl
pg.p010.nl
vps.p010.nl
p010.nl
p010.nl
ez.p010.nl
pg.p010.nl
p010.nl
ez.p010.nl
vps.p010.nl
p010.nl
ez.p010.nl
p010.nl
p010.nl
ez.p010.nl
vps.p010.nl
p010.nl
p010.nl
vps.p010.nl
p010.nl
vps.p010.nl
vps.p010.nl
vps.p010.nl
p010.nl
p010.nl
p010.nl
vps.p010.nl
vps.p010.nl
ez.p010.nl
vps.p010.nl
p010.nl
p010.nl
p010.nl
p010.nl
ez.p010.nl
vps.p010.nl
p010.nl
p010.nl
p010.nl
p010.nl
ez.p010.nl
vps.p010.nl
p010.nl
vps.p010.nl
p010.nl
p010.nl
p010.nl
ez.p010.nl
p010.nl
vps.p010.nl
vps.p010.nl
p010.nl
pg.p010.nl
vps.p010.nl
p010.nl
p010.nl
ez.p010.nl
pg.p010.nl
p010.nl
ez.p010.nl
vps.p010.nl
p010.nl
ez.p010.nl
p010.nl
p010.nl
ez.p010.nl
vps.p010.nl
p010.nl
p010.nl
Certificate
The complete raw certificate details for p010.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgISBOAJJTigHF35jXxa5WqztaqzMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjcyMjE4MTlaFw0yNDA2MjUyMjE4MThaMBIxEDAOBgNVBAMT B3AwMTAubmwwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDfOtQTpNzG 0gDGJ3UYBPDiNxtld4gEbWjMqkwSq3ugKcB7y5qN0ZXK0m8m6Ta3X8/nh5spN61z 1/VP1B0f6dEsFvy0FZQMhN4yW+U2p0iwo8/anUr/1jJBwHFtRGz3f5QCqPdt3Pnq pIaXpcp1ONO65FEjyfODhD0HSLwiqvXw8uQNPmIEi4cgc242/Vrb3M1rMPxzkBpJ /TI7Fd7dAYGfJAYhJ4/D7oXqv+jugYAnr+3qhCH4bthxGKlLoTn7QBC/Rx+FqoXL NWCXCiB+ZRX27/OCdht506Ok8XjiS0aZCmikIrPvrL6GacOs2GM+c0cP8njUZpEo 3/XLMXjzOofv+3JRZVWS36tB8hZU5xV/MeTDnGHX8tkW5NpRqzrg+OGwB8xrPbhz lBXyxTdQ15Hp85gImGJUBshF/ESbtT3dCYyObG0Z2K1ANo1XfEthRtKh2i3QoQ7I yPd7kY6WWkPleaIZW4AGuGoxpaTwhYlXXpterHXBKWlgFFBwlZZCQfpf8TEo3Far BZ4LX6q5UCQxlUuWodzqZbH6sDL5Vym9EMR8+GJpsp9GzmM8u49ZWiqcxoDeGxNT h8/LsXhZyQ/rTHSwKTNP+OnNjpO8uHiAn5Hyg5g34eNMb318uJBj8ZchTjGM+Kj7 AruyF+PtapBrfY9XDxHDgBGqbLUAu0+OnwIDAQABo4ICJDCCAiAwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8E AjAAMB0GA1UdDgQWBBSc3LuWOOiI32r412z8EGUYTgyCkTAfBgNVHSMEGDAWgBQU LrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGG FWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmku bGVuY3Iub3JnLzAtBgNVHREEJjAkggdwMDEwLm5sggxzaG9wLnAwMTAubmyCC3d3 dy5wMDEwLm5sMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB 9QSB8gDwAHYAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGOgjUP zQAABAMARzBFAiEAh2Tn7khjpdkgYrWDHyMq0Ib/zCcUe9vAajhpTNW6md4CIB0x BUqMuWWOzDiRTm37pBCDvaY9hTXY8W6ldzEf+YV0AHYA7s3QZNXbGs7FXLedtM0T ojKHRny87N7DUUhZRnEftZsAAAGOgjUP1gAABAMARzBFAiEAqgU7CexzD834t9AT jsuf69LJQAADP+kkNKRD8TJyPv0CIHgUWV6bRcjrT4ypV7ekXYaf8cHNSnqErGdB Hb/JpseSMA0GCSqGSIb3DQEBCwUAA4IBAQBRthggOxjeujM47wwZ/unqCOoCiQt/ ClRPr0RFlkgld7TmkuKEeFOfKPcZAbCKWJQeIsLBy746hfWN4SD5nvqsbZ+fvvLk lRWEBYjMEEDvP2R+qHdBpQ2zo5T7lyWOl6cp1pGdllMuEg/9AXYhp9vvoXlsh590 3gHk9KEhY4A+IdmQPq9Y46rb7YMBhCLL2TayyzfhidP4bR0WcvuugV6a9TZ6BxMY BlEsQ3RXBHlvNwP0kVrPfH03DkORt0v+F34G1u55zVwpSbSQqyP5NG/2sSK9UKrE dBT6Ob5FKFXnOVNtlW/AE6Scc0zyjeVrOo93DkWjPGwNn4WsSpIzzNi9 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3zrUE6TcxtIAxid1GATw 4jcbZXeIBG1ozKpMEqt7oCnAe8uajdGVytJvJuk2t1/P54ebKTetc9f1T9QdH+nR LBb8tBWUDITeMlvlNqdIsKPP2p1K/9YyQcBxbURs93+UAqj3bdz56qSGl6XKdTjT uuRRI8nzg4Q9B0i8Iqr18PLkDT5iBIuHIHNuNv1a29zNazD8c5AaSf0yOxXe3QGB nyQGISePw+6F6r/o7oGAJ6/t6oQh+G7YcRipS6E5+0AQv0cfhaqFyzVglwogfmUV 9u/zgnYbedOjpPF44ktGmQpopCKz76y+hmnDrNhjPnNHD/J41GaRKN/1yzF48zqH 7/tyUWVVkt+rQfIWVOcVfzHkw5xh1/LZFuTaUas64PjhsAfMaz24c5QV8sU3UNeR 6fOYCJhiVAbIRfxEm7U93QmMjmxtGditQDaNV3xLYUbSodot0KEOyMj3e5GOllpD 5XmiGVuABrhqMaWk8IWJV16bXqx1wSlpYBRQcJWWQkH6X/ExKNxWqwWeC1+quVAk MZVLlqHc6mWx+rAy+VcpvRDEfPhiabKfRs5jPLuPWVoqnMaA3hsTU4fPy7F4WckP 60x0sCkzT/jpzY6TvLh4gJ+R8oOYN+HjTG99fLiQY/GXIU4xjPio+wK7shfj7WqQ a32PVw8Rw4ARqmy1ALtPjp8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 424684550232777255429401165420793834089139 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-27 22:18:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-25 22:18:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'p010.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 910698123395191530468360280066813310194638081601908825047951553518616291780524481054938682187987887176571735221855917879798509007679274403270376044000411885689087200434160467807725858228887240754113269701133883236465557546931229146150575742533289240744354795831807034329739032662651299835847151442854465922075560923842125368004159734825888352810973875678412985001766458463241127718531634212133526293358069296556467161808805541157776317698962777854659012555893476341729706658303100751534743801352039905766347817833650294669285788778836475517887742962493861940625868326777414195319839766388725305587101892396906480972627689375498137776531125716564694177161689400433761063784727451481480979390446851919128997243821803415387026190851971261375452732148054629610363721538865156936028191922818668810761147496219862486677083018976926650951231486507264849415005724620711519632790998515827767838073867630293321476964237799868338920009006680644055614362242647669437548470178135629234213303188735510715923352273769605748482439824426417684251163135500060900955871896480915064027633642513389341992489661994448523753531904905927663733086007464131734070939632631334386801582888854948992731912404625009228357053915665107391973118777300478656680791711 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9cdcbb9638e888df6af8d76cfc1065184e0c8291 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'p010.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.p010.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.p010.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e82350fcd00000403004730450221008764e7ee4863a5d92062b5831f232ad086ffcc27147bdbc06a38694cd5ba99de02201d31054a8cb9658ecc38914e6dfba41083bda63d8535d8f16ea577311ff98574007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e82350fd60000040300473045022100aa053b09ec730fcdf8b7d0138ecb9febd2c94000033fe92434a443f132723efd02207814595e9b45c8eb4f8ca957b7a45d869ff1c1cd4a7a84ac67411dbfc9a6c792 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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