scottishluxurytour.com
Issued by R3
About this certificate
This digital certificate with serial number 03:fd:aa:95:1e:76:fd:ce:d9:94:c5:37:9a:22:e9:79:5c:4e was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=scottishluxurytour.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:fd:aa:95:1e:76:fd:ce:d9:94:c5:37:9a:22:e9:79:5c:4eSerial Number (int): 347655039655693289643750573804735092579406
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: fa:fe:98:ea:69:25:8f:c0:7c:de:8f:35:9b:63:ad:b2:9a:cc:35:66
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 4f:65:f6:68:21:14:47:4d:d2:96:19:89:31:4b:06:aa:86:72:ab:0c
Fingerprint (sha256): 62:20:36:c3:b0:29:04:c6:c0:0e:09:c2:99:1a:d1:a7:91:f5:8a:51:2e:30:84:22:18:73:18:b1:9d:51:61:8d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate scottishluxurytour.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for scottishluxurytour.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
scottishluxurytour.com
www.scottishluxurytour.com
www.scottishluxurytour.com
Other certificates including the domain name scottishluxurytour.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for scottishluxurytour.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISA/2qlR52/c7ZlMU3miLpeVxOMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMDEwODI3MjNaFw0yNDA1MDEwODI3MjJaMCExHzAdBgNVBAMT FnNjb3R0aXNobHV4dXJ5dG91ci5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQC1eSZ7qS9r2+AfDPk61BoABfIQDaOTnENxPAa4GCAW29Cuj7veUgmE 9R1qZ47ny1zn8y6fEz9lZlJ9GQEi9DyfbmdrerkUJq9f4rL5CFb5x1Xn3PSfZzLZ etfamUf9qV/cuIfdYFZhH19p9fE1LkBzH/0R2R1d9P5oqWxV9yqwRTDt6nrsxmTc XClXbFKl3aPDokNvROr5jP4DpGG2bdeDDMj2yhxPUWNaeO4Npqr/Zv8wzPqodnL5 ybAz5UfdXurAcvyrosQLxS392BlN2BOfmmetYxBlAmqWarcQCG5mWZhs8joUIMr2 FA2NudrTbQ6R7L+DdYVpsejoLKE0lMo1AgMBAAGjggI1MIICMTAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQC MAAwHQYDVR0OBBYEFPr+mOppJY/AfN6PNZtjrbKazDVmMB8GA1UdIwQYMBaAFBQu sxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYV aHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5s ZW5jci5vcmcvMD0GA1UdEQQ2MDSCFnNjb3R0aXNobHV4dXJ5dG91ci5jb22CGnd3 dy5zY290dGlzaGx1eHVyeXRvdXIuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIB BQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB 2bu/qznYhHMAAAGNY/6QZAAABAMARzBFAiAFdbIf8DYbGNuLMhFY84QzsSCHlavd ZC2sha31W0/J7QIhANuflXKgLJGP1mHYUDkw1kIwJ3DRzES/AsNXkbQHJCgBAHcA ouK/1h7eLy8HoNZObTen3GVDsMa1LqLat4r4mm31F9gAAAGNY/6QcQAABAMASDBG AiEA+o6kHBRxpF2FCGuBgZdBrm4m0HQ4lGJwq0V6Kc3KFcoCIQCWLAHRQWaw3BfG GbapA/CTAkkDHes7axuukZ0fV4QsUTANBgkqhkiG9w0BAQsFAAOCAQEAR45pgYUh YDSiox9L5kjscjOwYre9J028Qwq8xdzxD1BmjzcfyrOfW6iTxSj/jQ88uMdHvjlU Fufr//kODaUGUyKF5r5X2btR9Qu5RbJ7sO7WZsKi4WOEmFTuF5mGjKbAmhg+cUpI rL/bopXBHLUa3Dri779bsIwM7lux38EKLJCDzhvO4u2s+UMqE8POFC+LUnvCAeE1 LfYtOl6J3u7H30gd80R6z9kg2cKC8wGV1nwcQiVlhUaH+t8RQ4iGmzHsDDWJa7da ZPki5MDyDMewONlbXpjbsSh2BAmk7mPXQQ40IoyySgjbvmJPVkfSismv/4C2XEXu 1LmnJcnvm2ZuPA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXkme6kva9vgHwz5OtQa AAXyEA2jk5xDcTwGuBggFtvQro+73lIJhPUdameO58tc5/MunxM/ZWZSfRkBIvQ8 n25na3q5FCavX+Ky+QhW+cdV59z0n2cy2XrX2plH/alf3LiH3WBWYR9fafXxNS5A cx/9EdkdXfT+aKlsVfcqsEUw7ep67MZk3FwpV2xSpd2jw6JDb0Tq+Yz+A6Rhtm3X gwzI9socT1FjWnjuDaaq/2b/MMz6qHZy+cmwM+VH3V7qwHL8q6LEC8Ut/dgZTdgT n5pnrWMQZQJqlmq3EAhuZlmYbPI6FCDK9hQNjbna020Okey/g3WFabHo6CyhNJTK NQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 347655039655693289643750573804735092579406 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-01 08:27:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-01 08:27:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'scottishluxurytour.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22908874650420177639734978337520189518186998912691307691315619830145330067628604947224055248004040961995105234549628455172625036554170836082868350138969982791743921969141616748598101572884943331561294677142206788114241597111590140640858645566863116364115371648838731454599056276589380618131268916054461451457045446559065876524022710426722200228498729583447540919975195765648728580978425252337243670568960984126511429773659860182065681946726133605083468698729112664337018950898406484404536990892900593084776872079764677688712452092908300905764057530530610927839645276513151283919709678787145952219198629521858099464757 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fafe98ea69258fc07cde8f359b63adb29acc3566 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'scottishluxurytour.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.scottishluxurytour.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d63fe9064000004030047304502200575b21ff0361b18db8b321158f38433b1208795abdd642dac85adf55b4fc9ed022100db9f9572a02c918fd661d8503930d642302770d1cc44bf02c35791b407242801007700a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d63fe90710000040300483046022100fa8ea41c1471a45d85086b81819741ae6e26d07438946270ab457a29cdca15ca022100962c01d14166b0dc17c619b6a903f0930249031deb3b6b1bae919d1f57842c51 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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