emina.org
Issued by R3
About this certificate
This digital certificate with serial number 04:a0:fe:f5:67:2e:91:08:ed:aa:d4:c2:b5:f8:ce:8c:ac:45 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=emina.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:a0:fe:f5:67:2e:91:08:ed:aa:d4:c2:b5:f8:ce:8c:ac:45Serial Number (int): 403233220550828421177083091260792107740229
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 7d:1c:3e:89:2b:fe:15:72:9c:76:46:c3:59:b0:5e:bb:04:c9:13:71
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 4a:cd:56:c2:60:80:6d:0b:a9:f4:63:60:f1:a5:7c:cc:bc:14:20:73
Fingerprint (sha256): 62:a1:81:4e:c7:65:11:77:f8:8e:0d:fe:a3:6a:7e:98:76:d3:f6:2a:43:55:29:04:d8:d7:b6:b7:33:bc:74:9c
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate emina.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for emina.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
emina.org
Other certificates including the domain name emina.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for emina.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4DCCBMigAwIBAgISBKD+9WcukQjtqtTCtfjOjKxFMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MjMwNTE2MDVaFw0yNDA4MjEwNTE2MDRaMBQxEjAQBgNVBAMT CWVtaW5hLm9yZzCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBANqzFin0 mGahrYE4TCTohib4V8vAXUEXf4J/WZ3i7dcYyNYqi8X500RL1zrZm4DIgh0KHZZ6 Pz46GUqkQU7BPz8vtczFsSxT9Udx4yUNcQmjsZ/Ibd3ms2p/J1aj2wGVhftifg1m TartO6fJFU4uPbAK8Wj1GGKlF4hmonxYstHwMNIy1ji8Q6ZQylfVBNLgHUp4wbkw HvKAzE6qG88+vfDU+AE90yKfQFVQZtziptHxrb1HiIvQ3hnNY/D20uuU6PD8h6E+ nvlbNeELb1q8TjjMl5+CThkDOhcr2py4o19jl1QkHUfgCkFkOE846puljGtk0Ryn GgjsxHM4oUabnMEcnmWk2NcNJ4XG6eLhy0wHvBUBOB6z1A2Tptz7BgK2NhV+5a7J Wri4XvWKcSRotpoICoGiWEDkVyJkvHNWHzpwY+da4w8tIQ0FYi4NWnLZFf9Sbxj9 XjBYPvHI6f5CpPomNEApLjQGteZI+d1omeeVvoNw9Rx16nYU6xdeizhF+68SAnPO svySQ6a2lP6xK9bsHsYkFRtbgjxlJ58OA1FoPS9Jm0Z8rzbaF8cvvIBhJPXN+qs+ GOVcAKaBAYApnbHAYVDe/cFNODImKuvs6Jc6duu4NoGwmF5evR9tdCQnoexXScoy Rif+S1RUUo+WatikYLq9AVKiOy/Yj67zCHlBAgMBAAGjggIMMIICCDAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFH0cPokr/hVynHZGw1mwXrsEyRNxMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMBQGA1UdEQQNMAuCCWVtaW5hLm9yZzATBgNVHSAEDDAKMAgG BmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB3AD8XS0/XIkdYlB1lHIS+ DRLtkDd/H4Vq68G/KIXs+GRuAAABj6QXq8gAAAQDAEgwRgIhAKZBDVsdzoMf3rLO l6AxK2B+cP1gcL4o3G6Dxoc8a3RUAiEAtGWgUM4+sIo2XIJjSbGviRkl7gjB2eF0 zSoMamSJNKIAdgDf4VbrqgWvtZwPhnGNqMAyTq5W2W6n9aVqAdHBO75SXAAAAY+k F6yKAAAEAwBHMEUCIC/clg3KaQD2aiLOjyGffDEeIVmLXj6weYaV6Fk0kVvyAiEA 1P0Il76iogzt0ETbxn5IrtxSuI5fVx46Lhj7b4H/8iswDQYJKoZIhvcNAQELBQAD ggEBAFQU2tJlywKfanIK9Xq2Tz+ekhLi+QpmB2yFfhyNcyehIoFKJ6KXNhS4ToQx pqZSn6MyogxaKHuT9QavDbFLq+y1Ib/iKON2XRR586GT035PAkEgd+e9jbsSRgJQ +UlMZWUJ0g3XtNZat22jpzT4Kn6/2d70L5PRbv/oNeysrr0FDZvD9esr+MBinYUo pSbe6Os6WM42TL5ee3EkHUBBn78P8W9cuiToJJcPie+4zQpYW1uehh2hMFAdQXs6 /8mSdaK+BGtOT3VDASSDeiJ4qP2QWkZFQL3lHljqtNfb5LfLDU7cwJyp8VZE4GR5 VLrqMRb/vL4ze+YS7NPYt5FuErI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2rMWKfSYZqGtgThMJOiG JvhXy8BdQRd/gn9ZneLt1xjI1iqLxfnTREvXOtmbgMiCHQodlno/PjoZSqRBTsE/ Py+1zMWxLFP1R3HjJQ1xCaOxn8ht3eazan8nVqPbAZWF+2J+DWZNqu07p8kVTi49 sArxaPUYYqUXiGaifFiy0fAw0jLWOLxDplDKV9UE0uAdSnjBuTAe8oDMTqobzz69 8NT4AT3TIp9AVVBm3OKm0fGtvUeIi9DeGc1j8PbS65To8PyHoT6e+Vs14QtvWrxO OMyXn4JOGQM6FyvanLijX2OXVCQdR+AKQWQ4Tzjqm6WMa2TRHKcaCOzEczihRpuc wRyeZaTY1w0nhcbp4uHLTAe8FQE4HrPUDZOm3PsGArY2FX7lrslauLhe9YpxJGi2 mggKgaJYQORXImS8c1YfOnBj51rjDy0hDQViLg1actkV/1JvGP1eMFg+8cjp/kKk +iY0QCkuNAa15kj53WiZ55W+g3D1HHXqdhTrF16LOEX7rxICc86y/JJDpraU/rEr 1uwexiQVG1uCPGUnnw4DUWg9L0mbRnyvNtoXxy+8gGEk9c36qz4Y5VwApoEBgCmd scBhUN79wU04MiYq6+zolzp267g2gbCYXl69H210JCeh7FdJyjJGJ/5LVFRSj5Zq 2KRgur0BUqI7L9iPrvMIeUECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 403233220550828421177083091260792107740229 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-23 05:16:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-21 05:16:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'emina.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 892216350165623844652125015346990499056015210657106786436843580823082540171622871368925747882348956008562653095012088598769508218916931842602435960677637645058997745193970440644771423528577677466801974501427756779409159545287147208138754958190365814945710854326391348113362856567365790109707741145722674907174453975637370631769944310524216562194948879274482865160611722910083821818633536305250731159703667529397044943695734017289781442765333151488298227734306843002171703065460581092121035092714359831009803703366922107939061366009046591481210024303372235516234430493583448857033586008193297918085739581535241461938477895884531617763805303440929062432002896884328930088470183530280200175085892790188557423809076228807027986991440336301506109786488752868231836696217812685956497704395209586125734603519677026472071189996636343795805661539126832101103116673697850349141475692872127558753390841546389814197166667497195308071454942591154550457172439591428080525909688583657589344409560177786699033902397071099310438014382449519776516545745138955036656687868564260524098834407149036673067634640544737514718152362261918025748270553386371018594845242964944503908207479637099473717775583264367457898615597316921957062190391285995389130930497 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7d1c3e892bfe15729c7646c359b05ebb04c91371 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'emina.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018fa417abc80000040300483046022100a6410d5b1dce831fdeb2ce97a0312b607e70fd6070be28dc6e83c6873c6b7454022100b465a050ce3eb08a365c826349b1af891925ee08c1d9e174cd2a0c6a648934a2007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018fa417ac8a000004030047304502202fdc960dca6900f66a22ce8f219f7c311e21598b5e3eb0798695e85934915bf2022100d4fd0897bea2a20cedd044dbc67e48aedc52b88e5f571e3a2e18fb6f81fff22b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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