doina.eu

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:9d:09:00:d6:c5:d2:90:94:5e:b1:4b:4a:18:fb:c2:9d:38 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=doina.eu

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:9d:09:00:d6:c5:d2:90:94:5e:b1:4b:4a:18:fb:c2:9d:38
Serial Number (int): 314773156809938912781282707133476733361464
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 67:c1:1c:9f:58:2b:da:a6:fc:3c:59:f1:60:04:46:05:d7:6c:5f:6f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 2c:aa:7d:82:b5:97:ca:35:53:15:84:c3:43:43:01:56:a7:16:55:e7
Fingerprint (sha256): 75:00:30:51:89:40:9a:24:6f:1b:26:38:eb:2a:12:4f:7b:2d:2e:b5:68:47:82:9f:6e:20:d6:d9:bb:84:ee:60

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate doina.eu

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for doina.eu

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

doina.eu
www.doina.eu

Other certificates including the domain name doina.eu

(limited to 100 certificates)

Certificate

The complete raw certificate details for doina.eu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 314773156809938912781282707133476733361464
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-25 03:01:02 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-23 03:01:02 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'doina.eu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 974056377024298786898717409838464738377411190332415772219491636235485287308441863713755035867159888882408071832518666081221160945060593760749443584046212665388091837352041899475907492829527089338511750643032445966303618381456793992844267326321788778359525252659934577836512755032734393161040036797561436508691972050855975477278152663254103544600023044439254899067476140415917886831926104230734074834701194673778502000393031106797263300345307675752444793052318576922837991842355579001647739535013345298203235069997171544923169809011181879039643775185383191842733589665883595965544180939582130645247827569687215568370830158906430647764097355762124132241401131259083031496385341738263029140736767242063991352323008136968763490818648868591462713665486547911281386082768313413929008782777029630316255369803525608772609317394083643429183184583210378185582433676315640951604674394881706556699187044534430533895772261835802904633364588942298129234650983940170366530860425020209070907510525536144740184374579887351881617808907390891103671632825524015164793942192036850824424235377460308264022912240170301291869680163475331265554089574675444781627743282493916044147065651561085349765857524716096410259919045123117142434746124799619652570549639
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							67c11c9f582bdaa6fc3c59f160044605d76c5f6f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'doina.eu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.doina.eu'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f2007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000164351a21fc0000040300483046022100912c18744359f1d311a0288338c083009308ed4be6ebd30f79fc5d5374370785022100bfc71d9f32108d2f58617b85f965746598d4930e44c8e38ba57964bd16f7b4ff007700db74afeecb29ecb1feca3e716d2ce5b9aabb36f7847183c75d9d4f37b61fbf6400000164351a22360000040300483046022100968dedbd99f582f7afcc1c6e686c443f68f09bbb361cff148597e6a1ec82901e022100d4824ceec4b4b277ae45f17a5ec60e09929236784d02aec90a5427c0b7b3fa78
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00313c6061a1dc2e52acb9824a779892f11b93b6860e5f34a9b32a43a1c737adcfd371e91dc7f6ae5a3b0dc92149eb0d4580006e6bd70ec39c674ea776c7032bb0df36ab6e36bf285b8ccc71bcb6cd08d7679c18b41a8306542395aa14cba948848679c5c75f68b7c947ea4e0016f1b58425538d2c93aeb5a7f2de54b50723e1d11499c2b14eff947f16aa8e9b0b0129183a938c658931452e54f030473c4586f8fffae9b7c73d3e7e73582a1fff1a6c81c5f41ef9182226a366538ea4117cbfc3a67073a4c3db7f4e72d4376605dc11c144e80ce5f5cd386578a3e1ffe9781339186e03f368a461cd38cfecd96027a9ff0cadfa583f8e54ca18a95ae8b1eb3375