uklidovkaplzen.cz
Issued by R3
About this certificate
This digital certificate with serial number 04:b6:23:b3:dd:01:7e:be:23:f0:21:7f:32:f1:b1:7a:10:0c was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=uklidovkaplzen.cz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:b6:23:b3:dd:01:7e:be:23:f0:21:7f:32:f1:b1:7a:10:0cSerial Number (int): 410427991390172912272916020238870615035916
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e9:62:c2:90:2e:8d:b5:60:21:d2:01:66:83:6c:c3:d1:2a:b9:c3:0f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): b7:76:d7:af:f4:7d:d0:5a:4b:88:bf:b9:f1:05:62:ec:30:08:04:e4
Fingerprint (sha256): 72:c9:c4:b1:56:f7:95:c2:7f:0b:c8:ab:78:c5:89:87:39:02:35:ac:fa:e4:d6:86:3a:41:a3:fc:14:b1:55:20
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate uklidovkaplzen.cz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for uklidovkaplzen.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
uklidovkaplzen.cz
www.uklidovkaplzen.cz
www.uklidovkaplzen.cz
Other certificates including the domain name uklidovkaplzen.cz
(limited to 100 certificates)
Certificate
The complete raw certificate details for uklidovkaplzen.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgISBLYjs90Bfr4j8CF/MvGxehAMMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MDQxNjAzMDJaFw0yNDA4MDIxNjAzMDFaMBwxGjAYBgNVBAMT EXVrbGlkb3ZrYXBsemVuLmN6MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5gOOykdclOW41V8aNRGoXIZ62bp8NVZk2gEOO2gDATi87ROll89OQ4y5dD9D EiFTUG4IFx5zSYCRMHojtxd7O3KZJd/ALKWXtnY6hVknml4dfB8ilB2Kx8MJg7Rk xa9MShSNNkJwEVCoyNOXpuCtRVGQt3x2Se9gOUQfesjtDAOGiMm6roSEd/GA2630 lKBRk6sWKVvVUbYVUoYuHXg0P2TPeuWpKeNLqFMYvn0Bx+/Zl7o4ma3hn9SCp+tZ Gckw0U7KdAlIFLpefXsh3ucl6VtUbPmko82dm4t6+7QEYmgmVZq402MKpSz64KfO r5kPvu5aMlqxPM/kVnyU/BKmCwIDAQABo4ICKjCCAiYwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0G A1UdDgQWBBTpYsKQLo21YCHSAWaDbMPRKrnDDzAfBgNVHSMEGDAWgBQULrMXt1hW y65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6 Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iu b3JnLzAzBgNVHREELDAqghF1a2xpZG92a2FwbHplbi5jeoIVd3d3LnVrbGlkb3Zr YXBsemVuLmN6MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB 9QSB8gDwAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGPRI8k xQAABAMARzBFAiEA+BW9HcX0543ZZ57nOHXtjfh7PDX2hdUzDCdD5gXSGzUCIAzk 6wgCL6ore078OraaHAil0+UoQIM2g8IhjaH9IgNLAHYA3+FW66oFr7WcD4ZxjajA Mk6uVtlup/WlagHRwTu+UlwAAAGPRI8lhAAABAMARzBFAiEAv1KY3j2uzHVEEw3x BLdUUPG7fu7mOAHHoGSqIDCtrjsCIF0xm33aq62g/FTAhx4v+5Rel9mc7eMTkfMS JKfH/wFKMA0GCSqGSIb3DQEBCwUAA4IBAQAUOwge5/8htfbm24/HxoEzE341NoJN AMZV7DJU6G8wH6hlRHVpMbMziEyjiAAOoaTkyRkZ4AaXTVY9RaAqcdyVe506qHKm IqNLLgm3FkUJhmztKxebdA91KQUAZqJkqPcNw0wEhLn4GWUhH0tRROmXHoMg2/vi B0tzgbt2Pb2IbpHPtj4wBz7zzewbdNB0Y7V0/KYC/jJr57wVrB0TQ5twsGZtEjAT LC3rCZG0UlTe9yD6/G9TuTuN2KtpfBkiblDFRk0inxyXPjpwMhNuwsxvuS36DXAT vuV70cfIA6nvXY02INz6cc7AGsWtyeUtNumAbYsj1AEbSpecFjNn2Lqd -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5gOOykdclOW41V8aNRGo XIZ62bp8NVZk2gEOO2gDATi87ROll89OQ4y5dD9DEiFTUG4IFx5zSYCRMHojtxd7 O3KZJd/ALKWXtnY6hVknml4dfB8ilB2Kx8MJg7Rkxa9MShSNNkJwEVCoyNOXpuCt RVGQt3x2Se9gOUQfesjtDAOGiMm6roSEd/GA2630lKBRk6sWKVvVUbYVUoYuHXg0 P2TPeuWpKeNLqFMYvn0Bx+/Zl7o4ma3hn9SCp+tZGckw0U7KdAlIFLpefXsh3ucl 6VtUbPmko82dm4t6+7QEYmgmVZq402MKpSz64KfOr5kPvu5aMlqxPM/kVnyU/BKm CwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 410427991390172912272916020238870615035916 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-04 16:03:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-02 16:03:01 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'uklidovkaplzen.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29036564545954645631203038299880789799245357207461168909225123854913590159444054576444065067930679148481415258895113333442575560307261696820353226339756816959014967348829602797121181992885700163310196089547941025284360652015487783126580770865330116892157036322307193989973875221417009370772313659149548575207600825705981853174826013210319242166144859786434928485824819490255145084625868026230347375745000110400194322984018390398443005783790454037279522479019214225678682157494892788623345107139742314012010790027702052542824559895906485262745891802296217003751468191736414400086587203886903756452898429779413354849803 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e962c2902e8db56021d20166836cc3d12ab9c30f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uklidovkaplzen.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.uklidovkaplzen.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018f448f24c50000040300473045022100f815bd1dc5f4e78dd9679ee73875ed8df87b3c35f685d5330c2743e605d21b3502200ce4eb08022faa2b7b4efc3ab69a1c08a5d3e52840833683c2218da1fd22034b007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018f448f25840000040300473045022100bf5298de3daecc7544130df104b75450f1bb7eeee63801c7a064aa2030adae3b02205d319b7ddaabada0fc54c0871e2ffb945e97d99cede31391f31224a7c7ff014a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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