notvalid.com
Issued by R3
About this certificate
This digital certificate with serial number 03:1c:0b:58:96:34:e1:e5:a7:62:0d:ca:66:e5:56:e7:4a:4b was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=notvalid.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:1c:0b:58:96:34:e1:e5:a7:62:0d:ca:66:e5:56:e7:4a:4bSerial Number (int): 270879845545695418816438220892780880153163
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 2c:79:ae:a7:32:f7:18:e9:44:72:13:9c:97:a8:2d:90:a4:4f:70:3a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c7:b7:f9:88:c2:35:44:db:d8:64:f7:4f:70:9e:f4:46:08:c4:b1:1e
Fingerprint (sha256): 66:ab:6d:2b:c4:c9:ff:ee:e6:d7:14:36:02:24:0c:08:9a:30:d5:4f:11:f6:8e:37:dd:7b:36:bb:c9:e9:c0:d3
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate notvalid.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for notvalid.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
notvalid.com
Other certificates including the domain name notvalid.com
(limited to 100 certificates)
qh.org
www.notvalid.com
al-karama.com
www.notvalid.com
www.notvalid.com
notvalid.com
notvalid.com
notvalid.com
notvalid.com
www.orlandosportsdoctor.com
notvalid.com
www.culturepeace.net
www.notvalid.com
www.esportscanberra.com
notvalid.com
notvalid.com
bilocali.org
newyorksportsmedicine.org
www.notvalid.com
notvalid.com
casinolist.co.za
notvalid.com
www.notvalid.com
www.notvalid.com
www.notvalid.com
al-karama.com
www.notvalid.com
www.notvalid.com
notvalid.com
notvalid.com
notvalid.com
notvalid.com
www.orlandosportsdoctor.com
notvalid.com
www.culturepeace.net
www.notvalid.com
www.esportscanberra.com
notvalid.com
notvalid.com
bilocali.org
newyorksportsmedicine.org
www.notvalid.com
notvalid.com
casinolist.co.za
notvalid.com
www.notvalid.com
www.notvalid.com
Certificate
The complete raw certificate details for notvalid.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5DCCBMygAwIBAgISAxwLWJY04eWnYg3KZuVW50pLMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTkwMjIxMDlaFw0yNDA3MTgwMjIxMDhaMBcxFTATBgNVBAMT DG5vdHZhbGlkLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALF4 QGdsN1Xm78umy1aIwM55+7Ki7NEi/Omuq1GgEaHGnFZlWBq5YaSXU5lQ7V4vHsuB I/TGETVTg8rR8+ZsYlGweoAkz96jcUM4Jfts+dAk2JMqOv5Cdao5axvUUIMTX+zF hz+PA05wq23hkZtjEW+fb6jXG6YGRjvJownjqoUvH2zcE12+lN9VFzKnHqHnlV0h cwBN62VDZgElgt5Q9H6RfohnskxZKGC34dCEyLcGK1GGPt7ldI5dcnnyN0NgRlyN 7oXafByhaA/7Cp5U8aCGWVBjynrTA/ZJvhrKOITnA/BocwDTfvoUeXmyOIh073Kr sygHe22M5xvf6ykzocBIIQ890hNV4FDuC2JsuR5kKeS0bNe92/bOEklb6zYzIBKf 42nwx1KYXZNli6cJwdXA4Py3KXNoCmRxwxmRY7319Exj7ZZtE9BOMQfE3OW8mO8J Kbe6zInOJUblcH6NIBtboE5w4LD0zMcRU6ymE7hVxLyR2I9nq3dp1SvtH6QxF3Tc OFBREDghfAI6TEgHB7tkcfEzBHwiLMQiV77ZcrCDk4kEWDYVm3HiiACWT5+ASB8O oZtbGS4eed/n3+ZHhs09aObztKDeIAHfg4QbEcB47dgnw+4iSvbP5JsdD0sq48is 8SrxUWU3WaXyiutPHqVVVraj2HuVaqIb2QDlq/8DAgMBAAGjggINMIICCTAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFCx5rqcy9xjpRHITnJeoLZCkT3A6MB8GA1UdIwQY MBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEF BQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8v cjMuaS5sZW5jci5vcmcvMBcGA1UdEQQQMA6CDG5vdHZhbGlkLmNvbTATBgNVHSAE DDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2ADtTd3U+LbmA ToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjvRfSgkAAAQDAEcwRQIhAP+ygx5u GL6ZyvdC+cYVFyt3PfbULbqhUS00su2OBGPsAiAqeI9A1ibkKlSmMTXeH5m6+H8b w8lm+fdjRiquGOhIqAB1AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0 AAABjvRfSlYAAAQDAEYwRAIgFaUUNMk7zSHM9FrYmK4qr/qPwLVxQoa5vUk4HPzn SeoCIBOcqOXnX0yu+0Q+HzJnP/FmRujHf6poJYq1ngw07NYaMA0GCSqGSIb3DQEB CwUAA4IBAQCYA+Bp3rrKXr/LGhFb7ofGkv6O6wwWfa+P/LNvLiarKp+/LKdLtpSf OjG3AnjOQZ+HHOQv5qwZEeBANk9yCkE1A5hQLosVE2WAZg8ak7EtKZWorgXvhuxL B9R4FZw1ifAZn0+K1KtA0M0K8fYVOfMlQZlFSw/NNvzb0ylOYfNR7eehtoRf9BpU Gv4owA2PSsrzqGacWnJyelKM1QQkjtOvzoU37uYg/xQAap4b11AiFYQPv/LK5zd8 gfCWM4nhUK9fFA3goA8Win+jsglKsh9YRidLwxaJbdepLdV19386XK2uHdvb3VoG AzR2WeEOp4YU5QFsmTrZo0o12T2miXfi -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsXhAZ2w3Vebvy6bLVojA znn7sqLs0SL86a6rUaARocacVmVYGrlhpJdTmVDtXi8ey4Ej9MYRNVODytHz5mxi UbB6gCTP3qNxQzgl+2z50CTYkyo6/kJ1qjlrG9RQgxNf7MWHP48DTnCrbeGRm2MR b59vqNcbpgZGO8mjCeOqhS8fbNwTXb6U31UXMqceoeeVXSFzAE3rZUNmASWC3lD0 fpF+iGeyTFkoYLfh0ITItwYrUYY+3uV0jl1yefI3Q2BGXI3uhdp8HKFoD/sKnlTx oIZZUGPKetMD9km+Gso4hOcD8GhzANN++hR5ebI4iHTvcquzKAd7bYznG9/rKTOh wEghDz3SE1XgUO4LYmy5HmQp5LRs173b9s4SSVvrNjMgEp/jafDHUphdk2WLpwnB 1cDg/Lcpc2gKZHHDGZFjvfX0TGPtlm0T0E4xB8Tc5byY7wkpt7rMic4lRuVwfo0g G1ugTnDgsPTMxxFTrKYTuFXEvJHYj2erd2nVK+0fpDEXdNw4UFEQOCF8AjpMSAcH u2Rx8TMEfCIsxCJXvtlysIOTiQRYNhWbceKIAJZPn4BIHw6hm1sZLh553+ff5keG zT1o5vO0oN4gAd+DhBsRwHjt2CfD7iJK9s/kmx0PSyrjyKzxKvFRZTdZpfKK608e pVVWtqPYe5VqohvZAOWr/wMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 270879845545695418816438220892780880153163 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-19 02:21:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-18 02:21:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'notvalid.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 724013342372718703159131771585706562720213614679782013424484937350762862002622645311002851352012843118799917865719672746238546364474775754346646753187414623644053270352720560472012054306431749901881048090277778298355546601405594650899656111583017038508865360510555111036090466475776747248312353388475719532411729670417554809078119266721922455755971868441252937078897173806409628862600137627817157084368475217448694479346059751235508012484134653810618627590792000983603377832747022013097261469461993604407563595582004523523859463006850925518884802795151536958652622389209549079910846160119132195743819391580449441451383639398741480452633234536431320457826617147102102770606434165179701001024500900969978550130395170115214291783886932506490970752154073193577013911268016340430017456725093825938537551397480217379158787326756998060877767217415315440067523225496876593553862037466810930617006643488930346793667982635962989004721163506001103491455617552904874468878525557019540744984689367825692087603036332658177318729380667763634522966409702229237848121208496048847472152370784344842731443674427945348049739496688741686251073582537554975505628545090781804554652791376701051016604364590725933929218866657904497816268629142375511395925763 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2c79aea732f718e94472139c97a82d90a44f703a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'notvalid.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018ef45f4a090000040300473045022100ffb2831e6e18be99caf742f9c615172b773df6d42dbaa1512d34b2ed8e0463ec02202a788f40d626e42a54a63135de1f99baf87f1bc3c966f9f763462aae18e848a800750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ef45f4a560000040300463044022015a51434c93bcd21ccf45ad898ae2aaffa8fc0b5714286b9bd49381cfce749ea0220139ca8e5e75f4caefb443e1f32673ff16646e8c77faa68258ab59e0c34ecd61a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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