bryanc.co.nz

Issued by R3

About this certificate

This digital certificate with serial number 04:84:75:74:0c:cd:a6:be:38:81:f3:7b:e2:fd:1d:d9:00:1e was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=bryanc.co.nz

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 04:84:75:74:0c:cd:a6:be:38:81:f3:7b:e2:fd:1d:d9:00:1e
Serial Number (int): 393522538402229581994425703402304846757918
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 63:e3:60:19:46:38:2b:c6:b7:b6:06:bb:0d:41:3e:d7:92:12:1c:b8
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): f4:c9:ca:32:70:68:c9:17:e0:1b:5d:71:48:8c:7c:57:93:54:a4:ff
Fingerprint (sha256): 5d:ed:09:00:4b:2c:f1:82:99:6c:2c:1a:83:88:20:c5:f8:de:09:c9:54:ac:bb:1c:bd:e8:27:66:e3:7f:5b:60

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate bryanc.co.nz

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for bryanc.co.nz

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

bryanc.co.nz
www.bryanc.co.nz

Other certificates including the domain name bryanc.co.nz

(limited to 100 certificates)
bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
webmail.bryanc.co.nz
bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
www.whatroute.net
webmail.bryanc.co.nz
bryanc.co.nz
webmail.bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
webmail.whatroute.net
www.theremarkablesmusic.com
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz
www.whatroute.net
www.whatroute.net
bryanc.co.nz
bryanc.co.nz
webmail.bryanc.co.nz
bryanc.co.nz
webmail.bryanc.co.nz
bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz
webmail.bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
www.bryanc.co.nz
bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz
webmail.bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
www.theremarkablesmusic.com
webmail.bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
www.theremarkablesmusic.com
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
www.whatroute.net
bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz

Certificate

The complete raw certificate details for bryanc.co.nz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApCOYq1FYDJF1dpgVlN3G
/fog29lCiFwg8O0rtIhHN/i6ao1BBUrFcBKRf2W4Xao5IcFfPqwkFGkFJ1PNigjI
2VvJ53FdDU2TIkzoaozXtd4j+gXDBJauQmTnhDKjqfZp4SnppdGTS8jwlv7XJ6YC
7K3fbeI3JO2HU115Grqk+JNA466FITWIFRsuwdytubDCTUvplkiANsbpO1jkE0u6
vcNJuvH6EGSn4dyMjRKKivY4faskFcCmvR8RnlSJ7xyIsKboCQKzk4Bk29UlvF36
ZhEohdT+FrzO5Sry5mvHW7OTBzLoLHhEedC5ERXD6pc06Ek7oRAajCiQCGmOHtQ+
SwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 393522538402229581994425703402304846757918
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-19 20:03:58 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-19 20:03:57 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bryanc.co.nz'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20720635235789536738236006162083481443311362175877426856301836393263509121251390412422595170015929725941362394837123924936388042819492068075233175220623792110757027207584142629762663455518738579892243644013991830758029902008245002604800764378976530372591233825051429045946969754861397211804889071562520613559453959670044171428496626258846754867381589412772492718872261906972438937216231958514758208697889882035913294183479877571762654471226931846435125929902766525045741621126799426598418981146603130249909449593698811038700961800703798727012606155422606282226420816245942509699899510583199747074179792843458840116811
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							63e3601946382bc6b7b606bb0d413ed792121cb8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bryanc.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bryanc.co.nz'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018dc32ec43200000403004630440220659f27a945b57b0fb6f2a636e8d3cb243c72b999b528fa3d47d28043a53af80a022047f7fd53d2c44c81e66c840760ec2b45d1ab438b596bd35de03a478a0cf3c1f800760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018dc32ec43a00000403004730450221009be685a6c9f99117628266c687eab3d3f01569a15f6ed13f559b864ce8a549fe02201777b44cec4faaaaff9587c5a9e4122f39eedc6d7553b5cbd0595152b843e36b
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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