site.page
Issued by R11
About this certificate
This digital certificate with serial number 04:59:72:07:82:3e:89:e3:0b:e4:98:e3:10:2d:c0:31:f2:84 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=site.page
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:59:72:07:82:3e:89:e3:0b:e4:98:e3:10:2d:c0:31:f2:84Serial Number (int): 378885845362270068467311398256358666138244
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 10:fc:da:26:9e:2c:b6:1f:a7:80:95:97:b5:a4:dd:5f:2a:e8:a1:ef
AuthorityKeyId: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9
Fingerprint (sha1): 92:1b:6b:bf:29:97:eb:85:51:05:50:a7:9d:32:99:0c:8a:44:1a:82
Fingerprint (sha256): 73:88:38:20:20:31:b0:95:18:74:10:07:98:11:c9:b9:38:73:51:a7:dc:c9:38:31:97:ad:4d:26:a3:09:97:39
Issuing Certificate URL: http://r11.i.lencr.org/
Revocation information
OCSP Server: http://r11.o.lencr.orgCheck the revocation status for certificate site.page
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for site.page
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
site.page
Other certificates including the domain name site.page
(limited to 100 certificates)
Certificate
The complete raw certificate details for site.page in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgISBFlyB4I+ieML5JjjEC3AMfKEMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTEwHhcNMjQwNjEzMTkwMDQ2WhcNMjQwOTExMTkwMDQ1WjAUMRIwEAYDVQQD EwlzaXRlLnBhZ2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPauEa vkBXGHnEGx6U6J4SEHLxI6ngxjbo94H0drDEOO2K48D2idt3jKL8A64phpIo64z0 6cFljTD7n02g4nyGy6xVEZLa42O9FvmDBvLCz2ZPYN2VG1IEAblTWgnzbAk58U6d gkEEoOWMh+UJgynenYc2VjkbqtSmzxWeB6BdTqiMNCNmpeVH1fiZbuOc5fH4iabf 9ArIvMJmoDws5D6N/oiTf1voXIBAyJR6YYcLkEisxS4qwD0mEaa6wxOV3r2jFuGn gsyI8Cw9hh9qGtDXt8gEIUqKJcdJt3eETIvUfXfu7QiV1+Zawv+BXm4B8xrksIYo MeW9rvesnCHYmL6bAgMBAAGjggINMIICCTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FBD82iaeLLYfp4CVl7Wk3V8q6KHvMB8GA1UdIwQYMBaAFMXPRqTq9MPAemyVxC2w XpIvJuO5MFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0cDovL3IxMS5v LmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMS5pLmxlbmNyLm9yZy8w FAYDVR0RBA0wC4IJc2l0ZS5wYWdlMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYK KwYBBAHWeQIEAgSB9QSB8gDwAHcAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/m Z0xaOnQAAAGQEzA8jwAABAMASDBGAiEA+ZH95qeq0BoCUKXugE0Vi8fcnHuxYXKr akvg76qwwTACIQD1i5l4vvHOdCcANCBxiQauDUEiDWPMbvpiPA7QNW8qrgB1ABmY EHEJ8NZSLjCA0p4/ZLuDbijM+Q9Sju7fzko/FrTKAAABkBMwPGEAAAQDAEYwRAIg cPFvBs1Snk9sTVivDdhopfWJqBxPW1mg4z6rHQ0pZBsCIEjsdJ4fCP1ooTz0pOVL Ew+Bi2AylXkLFQFa5CqjZe1bMA0GCSqGSIb3DQEBCwUAA4IBAQAE3pAzdvqT/RDq /I9k3XFB5AcMpDzScEM3KOS6gxGtMaGocuNLx5GQXeDk42TjA+9SHy9ImZFYectd pNV5RSwQCiczliZC7KJ7YAFbHHLPtoNhz/PeOr5jriyU17z4KmiLfchLgD+Am+lG mVQyyBKETl3rSZ+YxkRvVysaCzIqYjvk395iJ64C5NrJO36baWmAwMecitUdItw6 G6kSLoD2WFsGAFXWsLbDEZPSRueKWtYOBfxFSdzUnlozPBCZeOrxo5nRpROaM/YE rTCGGa1uZx9l0oZpwOYUeZrYuuN0mZ6RtDlJrH1frqHgrdYKSij45QH6eO93YC8e 0XzAm/E0 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj2rhGr5AVxh5xBselOie EhBy8SOp4MY26PeB9HawxDjtiuPA9onbd4yi/AOuKYaSKOuM9OnBZY0w+59NoOJ8 hsusVRGS2uNjvRb5gwbyws9mT2DdlRtSBAG5U1oJ82wJOfFOnYJBBKDljIflCYMp 3p2HNlY5G6rUps8VngegXU6ojDQjZqXlR9X4mW7jnOXx+Imm3/QKyLzCZqA8LOQ+ jf6Ik39b6FyAQMiUemGHC5BIrMUuKsA9JhGmusMTld69oxbhp4LMiPAsPYYfahrQ 17fIBCFKiiXHSbd3hEyL1H137u0IldfmWsL/gV5uAfMa5LCGKDHlva73rJwh2Ji+ mwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 378885845362270068467311398256358666138244 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-13 19:00:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-11 19:00:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'site.page' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18104781764347502913413174712540378670296587488026188726799889060579017418724139728729434727044700368101271333735245770745149112813996495049241849053995494743693630121994755295464056441703031073888741904187662118953290031403748857476530852846845325878749743572927802955836855076492303313152042334953933703284911353511141536772059546237420261679735483502205110216406545472492287332920323308439525765455574452857268544180154660225473445957938947742828834943383535852420494933179572434989733866608600967856511856995009485416166472716052633004956635475516869431421931681710110757654860997126161253075091744400337010212507 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 10fcda269e2cb61fa7809597b5a4dd5f2ae8a1ef . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'site.page' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000019013303c8f0000040300483046022100f991fde6a7aad01a0250a5ee804d158bc7dc9c7bb16172ab6a4be0efaab0c130022100f58b9978bef1ce7427003420718906ae0d41220d63cc6efa623c0ed0356f2aae0075001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000019013303c610000040300463044022070f16f06cd529e4f6c4d58af0dd868a5f589a81c4f5b59a0e33eab1d0d29641b022048ec749e1f08fd68a13cf4a4e54b130f818b603295790b15015ae42aa365ed5b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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