donnal.net
Issued by R3
About this certificate
This digital certificate with serial number 03:9e:44:70:7a:7a:50:ee:e7:33:6b:38:b1:6a:23:a6:fc:6a was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=donnal.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:9e:44:70:7a:7a:50:ee:e7:33:6b:38:b1:6a:23:a6:fc:6aSerial Number (int): 315192443293895402436326725183601289657450
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 41:46:b8:6c:22:fa:ad:d5:6c:a3:22:f9:eb:4e:90:b1:8b:d9:1b:71
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 93:6e:b5:8e:cc:17:97:3d:4b:49:8c:22:a6:80:49:d4:40:60:de:23
Fingerprint (sha256): 69:98:bd:1e:66:68:8e:f1:1a:b3:d4:c8:e1:64:be:3f:ca:7f:a8:a1:b8:90:d0:b4:a5:c9:49:cc:28:6b:6a:5a
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate donnal.net
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for donnal.net
Public Key Algorithm
ECDSA
Key Size
384
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
donnal.net
mail.donnal.net
www.donnal.net
mail.donnal.net
www.donnal.net
Other certificates including the domain name donnal.net
(limited to 100 certificates)
1in7b.net
dhs66.org
porel.info
porel.info
1in7b.net
ogsort.net
dhs66.org
1in7b.net
cova.donnal.net
dhs66.org
dhs66.org
donnal.net
dinah.donnal.net
earth-day.org
dhs66.org
health.donnal.net
donnal.net
ogsort.net
earth-day.org
dhs66.org
cova.donnal.net
tinyapp.org
donnal.net
tmstiny.info
webofchange.net
cova.donnal.net
ogsort.net
donnal.net
cova.donnal.net
1in7b.net
1in7b.net
donnal.net
donnal.net
1in7b.net
dhs66.org
webofchange.net
webofchange.net
ogsort.net
cova.donnal.net
donnal.net
spirituscenter.donnal.net
mindwrapper.org
spirituscenter.donnal.net
donnal.net
dhs66.org
webdisk.webofchange.net
donnal.net
mindwrapper.org
ogsort.net
arppc.org
porel.info
1in7b.net
tmstiny.info
lrcoding.donnal.net
dhs66.org
itssm.donnal.net
donnal.net
earth-day.org
dhs66.org
tmstiny.info
porel.info
porel.info
donnal.net
dhs66.org
1in7b.net
tinyapp.org
1in7b.net
donnal.net
dinah.donnal.net
dhs66.org
dhs66.org
webofchange.net
itssm.donnal.net
1in7b.net
dinah.donnal.net
dhs66.org
porel.info
porel.info
1in7b.net
ogsort.net
dhs66.org
1in7b.net
cova.donnal.net
dhs66.org
dhs66.org
donnal.net
dinah.donnal.net
earth-day.org
dhs66.org
health.donnal.net
donnal.net
ogsort.net
earth-day.org
dhs66.org
cova.donnal.net
tinyapp.org
donnal.net
tmstiny.info
webofchange.net
cova.donnal.net
ogsort.net
donnal.net
cova.donnal.net
1in7b.net
1in7b.net
donnal.net
donnal.net
1in7b.net
dhs66.org
webofchange.net
webofchange.net
ogsort.net
cova.donnal.net
donnal.net
spirituscenter.donnal.net
mindwrapper.org
spirituscenter.donnal.net
donnal.net
dhs66.org
webdisk.webofchange.net
donnal.net
mindwrapper.org
ogsort.net
arppc.org
porel.info
1in7b.net
tmstiny.info
lrcoding.donnal.net
dhs66.org
itssm.donnal.net
donnal.net
earth-day.org
dhs66.org
tmstiny.info
porel.info
porel.info
donnal.net
dhs66.org
1in7b.net
tinyapp.org
1in7b.net
donnal.net
dinah.donnal.net
dhs66.org
dhs66.org
webofchange.net
itssm.donnal.net
1in7b.net
dinah.donnal.net
Certificate
The complete raw certificate details for donnal.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEUzCCAzugAwIBAgISA55EcHp6UO7nM2s4sWojpvxqMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjgwMzM0MDJaFw0yNDA2MjYwMzM0MDFaMBUxEzARBgNVBAMT CmRvbm5hbC5uZXQwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAR9EQxQYxPwaUlmsdV0 ViPQALzL3KKxNV16tqcVtefUzJgxGY9XcS2JCNtAzGRRqvmtUR1VTblaS1vsZsSK e94U8P7IYOxz7az+CyH2ifgS9NyTgZ88XrsDcGHEZ9vDPJqjggIsMIICKDAOBgNV HQ8BAf8EBAMCB4AwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFEFGuGwi+q3VbKMi+etOkLGL2RtxMB8GA1UdIwQY MBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEF BQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8v cjMuaS5sZW5jci5vcmcvMDYGA1UdEQQvMC2CCmRvbm5hbC5uZXSCD21haWwuZG9u bmFsLm5ldIIOd3d3LmRvbm5hbC5uZXQwEwYDVR0gBAwwCjAIBgZngQwBAgEwggED BgorBgEEAdZ5AgQCBIH0BIHxAO8AdQBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZ u7+rOdiEcwAAAY6DVh4AAAAEAwBGMEQCIH4G/NUW/Mw9glRFMROAu8YK/00RDuGp mBjhJPjmg/k0AiBmT8uIP/xKNt9C8m+CxkrseVAZ4Y4IskFkcqeOGKFS8AB2AO7N 0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjoNWHhMAAAQDAEcwRQIh AMT61IQnR6DQGOnkxIPhRZNi55INs0m0shhH49lgyFygAiAGCdHXMzDlGUwOPkIq qKd90ryd6ohNYFrj3kFpB2pjFDANBgkqhkiG9w0BAQsFAAOCAQEAdXH1LBrQpG0e mxOZO9xUuafpXsLC8yJocI+Fqv9zVel48PIfSQU2Tf4Opowo7B0ZnlbBVSC5c1Ex gPweSdDtzP00bQ8phYHHIJ3pWQfzFwJd96UXzUiMiM2weElZ/x/o34N2CGrbzLyL XAnIZJZN2eVO+bTf2iMuefmmDehsnIqS0prUtRIJVSfrF7OllHKCTBhfMZ7DkPWC AmybSIq6N2Uy74EG6yUBLzlSJsoWeVl9n8W0X+N9CF4B9s0fAHrXJmaViIv7T1Yk eEEkEc2LbG3oWaafy80GDsy03uruWo/zGdvwDG4un4P53yXO7PxHloLw46euduGK +CIuSD9TbQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MHYwEAYHKoZIzj0CAQYFK4EEACIDYgAEfREMUGMT8GlJZrHVdFYj0AC8y9yisTVd eranFbXn1MyYMRmPV3EtiQjbQMxkUar5rVEdVU25Wktb7GbEinveFPD+yGDsc+2s /gsh9on4EvTck4GfPF67A3BhxGfbwzya -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 315192443293895402436326725183601289657450 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-28 03:34:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-26 03:34:01 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'donnal.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.2.1 (ecPublicKey) . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.132.0.34 (secp384r1) . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (776 bits) 00047d110c506313f0694966b1d5745623d000bccbdca2b1355d7ab6a715b5e7d4cc9831198f57712d8908db40cc6451aaf9ad511d554db95a4b5bec66c48a7bde14f0fec860ec73edacfe0b21f689f812f4dc93819f3c5ebb037061c467dbc33c9a . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1 bits) 0780 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4146b86c22faadd56ca322f9eb4e90b18bd91b71 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'donnal.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.donnal.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.donnal.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e83561e00000004030046304402207e06fcd516fccc3d825445311380bbc60aff4d110ee1a99818e124f8e683f9340220664fcb883ffc4a36df42f26f82c64aec795019e18e08b2416472a78e18a152f0007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e83561e130000040300473045022100c4fad4842747a0d018e9e4c483e1459362e7920db349b4b21847e3d960c85ca002200609d1d73330e5194c0e3e422aa8a77dd2bc9dea884d605ae3de4169076a6314 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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