Issued by Let's Encrypt Authority X3
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
RSA
4096
SHA256 with RSA
Digital Signature
Key Encipherment
Server Authentication
Client Authentication
9 extensions
No
unhandled critical extensions
This is not a CA certificate
-----BEGIN CERTIFICATE----- MIIHCzCCBfOgAwIBAgISA50JANbF0pCUXrFLShj7wp04MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA2MjUwMzAxMDJaFw0x ODA5MjMwMzAxMDJaMBMxETAPBgNVBAMTCGRvaW5hLmV1MIICIjANBgkqhkiG9w0B AQEFAAOCAg8AMIICCgKCAgEA7sKYWGrjBqgYkqPftactzVj/F5mMbdEf/TW+dUXB JoWJvakODCBBxexZcX+C2ue/40ngdF5FUOpliEZd0jU8fgklxT4jpE8lxBDOZ8Ki 9qn40przAC3RlScXVvSwdQQkMqSRe3okX8SZKuf/HTgjLuDPMfZbg/JURD/qmD+L LpUVCRJ7fAjroRctRm8hZcxjFedFl9dRA8qy82g4ICYf/wLrKoytG0ZRbacwALHe IWkeh9C7wZ6+DKYYHMrFnlrCWplkit/f2W3XSt5CbnvmbxwpNxI28N2Af7cXK+bf Z6D+fEeidMeykc92hxeDearpCqsO6bucatxJpU0f2u5cL5GCcNv9YyywvqgggXKs AWRXkE/Wl9MnXnhVGg/l0wRvcvugJGzAyeqo8a3ZIQx4CbABA8oKgWUtoQdN4AI4 M17Zhn2Nm0hMywivW0j0I6zCk8Xp/xrR3xLJKdLeQlGT5ejrNEsCCAt2mhiPjJH4 kXjs28e1gGl7afdBelEW9LV4utvWORSEvsIfHNTwgqC7zLwsVLEHUWadrxPbdVBd Lz3es5nUA5I3VARNCMNVBNQMk0eX5cjJU3XxF3KkJGk4W0Jt+LiebzfhnHC5xwr8 azIDxzGb1FRt/2/U55ZxyvaNRbSI87sEKRvey7go1fXwqECfehXb2ScOunYhRxeT jYcCAwEAAaOCAyAwggMcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUZ8Ecn1gr2qb8 PFnxYARGBddsX28wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYI KwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0 c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0 c2VuY3J5cHQub3JnLzAhBgNVHREEGjAYgghkb2luYS5ldYIMd3d3LmRvaW5hLmV1 MIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggr BgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwIC MIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBi eSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRo ZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlw dC5vcmcvcmVwb3NpdG9yeS8wggEGBgorBgEEAdZ5AgQCBIH3BIH0APIAdwApPFGW VMg5ZbqqUPxYB9S3b79Yeily3KTDDPTlRUf0eAAAAWQ1GiH8AAAEAwBIMEYCIQCR LBh0Q1nx0xGgKIM4wIMAkwjtS+br0w95/F1TdDcHhQIhAL/HHZ8yEI0vWGF7hfll dGWY1JMORMjji6V5ZL0W97T/AHcA23Sv7ssp7LH+yj5xbSzluaq7NveEcYPHXZ1P N7Yfv2QAAAFkNRoiNgAABAMASDBGAiEAlo3tvZn1gvevzBxuaGxEP2jwm7s2HP8U hZfmoeyCkB4CIQDUgkzuxLSyd65F8Xpexg4JkpI2eE0CrskKVCfAt7P6eDANBgkq hkiG9w0BAQsFAAOCAQEAMTxgYaHcLlKsuYJKd5iS8RuTtoYOXzSpsypDocc3rc/T cekdx/auWjsNySFJ6w1FgABua9cOw5xnTqd2xwMrsN82q242vyhbjMxxvLbNCNdn nBi0GoMGVCOVqhTLqUiEhnnFx19ot8lH6k4AFvG1hCVTjSyTrrWn8t5UtQcj4dEU mcKxTv+UfxaqjpsLASkYOpOMZYkxRS5U8DBHPEWG+P/66bfHPT5+c1gqH/8abIHF 9B75GCImo2ZTjqQRfL/DpnBzpMPbf05y1DdmBdwRwUToDOX1zThleKPh/+l4EzkY bgPzaKRhzTjP7NlgJ6n/DK36WD+OVMoYqVroseszdQ== -----END CERTIFICATE-----
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA7sKYWGrjBqgYkqPftact zVj/F5mMbdEf/TW+dUXBJoWJvakODCBBxexZcX+C2ue/40ngdF5FUOpliEZd0jU8 fgklxT4jpE8lxBDOZ8Ki9qn40przAC3RlScXVvSwdQQkMqSRe3okX8SZKuf/HTgj LuDPMfZbg/JURD/qmD+LLpUVCRJ7fAjroRctRm8hZcxjFedFl9dRA8qy82g4ICYf /wLrKoytG0ZRbacwALHeIWkeh9C7wZ6+DKYYHMrFnlrCWplkit/f2W3XSt5Cbnvm bxwpNxI28N2Af7cXK+bfZ6D+fEeidMeykc92hxeDearpCqsO6bucatxJpU0f2u5c L5GCcNv9YyywvqgggXKsAWRXkE/Wl9MnXnhVGg/l0wRvcvugJGzAyeqo8a3ZIQx4 CbABA8oKgWUtoQdN4AI4M17Zhn2Nm0hMywivW0j0I6zCk8Xp/xrR3xLJKdLeQlGT 5ejrNEsCCAt2mhiPjJH4kXjs28e1gGl7afdBelEW9LV4utvWORSEvsIfHNTwgqC7 zLwsVLEHUWadrxPbdVBdLz3es5nUA5I3VARNCMNVBNQMk0eX5cjJU3XxF3KkJGk4 W0Jt+LiebzfhnHC5xwr8azIDxzGb1FRt/2/U55ZxyvaNRbSI87sEKRvey7go1fXw qECfehXb2ScOunYhRxeTjYcCAwEAAQ== -----END PUBLIC KEY-----
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 314773156809938912781282707133476733361464 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-25 03:01:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-23 03:01:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'doina.eu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 974056377024298786898717409838464738377411190332415772219491636235485287308441863713755035867159888882408071832518666081221160945060593760749443584046212665388091837352041899475907492829527089338511750643032445966303618381456793992844267326321788778359525252659934577836512755032734393161040036797561436508691972050855975477278152663254103544600023044439254899067476140415917886831926104230734074834701194673778502000393031106797263300345307675752444793052318576922837991842355579001647739535013345298203235069997171544923169809011181879039643775185383191842733589665883595965544180939582130645247827569687215568370830158906430647764097355762124132241401131259083031496385341738263029140736767242063991352323008136968763490818648868591462713665486547911281386082768313413929008782777029630316255369803525608772609317394083643429183184583210378185582433676315640951604674394881706556699187044534430533895772261835802904633364588942298129234650983940170366530860425020209070907510525536144740184374579887351881617808907390891103671632825524015164793942192036850824424235377460308264022912240170301291869680163475331265554089574675444781627743282493916044147065651561085349765857524716096410259919045123117142434746124799619652570549639 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 67c11c9f582bdaa6fc3c59f160044605d76c5f6f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'doina.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.doina.eu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000164351a21fc0000040300483046022100912c18744359f1d311a0288338c083009308ed4be6ebd30f79fc5d5374370785022100bfc71d9f32108d2f58617b85f965746598d4930e44c8e38ba57964bd16f7b4ff007700db74afeecb29ecb1feca3e716d2ce5b9aabb36f7847183c75d9d4f37b61fbf6400000164351a22360000040300483046022100968dedbd99f582f7afcc1c6e686c443f68f09bbb361cff148597e6a1ec82901e022100d4824ceec4b4b277ae45f17a5ec60e09929236784d02aec90a5427c0b7b3fa78 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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