www.sunoraquangbinh.vn
Issued by R3
About this certificate
This digital certificate with serial number 04:d5:04:ac:3a:29:a9:f9:26:ad:db:22:be:3e:34:19:c6:61 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.sunoraquangbinh.vn
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:d5:04:ac:3a:29:a9:f9:26:ad:db:22:be:3e:34:19:c6:61Serial Number (int): 420935499047924402804765729122478047479393
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 94:79:d1:e1:7e:1f:94:21:5a:11:f6:dd:3d:e8:a6:84:80:ca:2a:52
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 74:a6:1d:b0:9a:0e:28:b0:41:3b:00:67:e1:23:6d:a0:d4:19:84:dc
Fingerprint (sha256): 76:e0:2c:4a:01:1c:b1:d0:70:72:b5:c9:47:6a:3a:5d:81:84:ef:99:d5:a6:ad:be:c6:0a:f9:b5:ab:1b:a3:e4
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.sunoraquangbinh.vn
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.sunoraquangbinh.vn
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sunoraquangbinh.duy6.name.vn
sunoraquangbinh.vn
www.sunoraquangbinh.duy6.name.vn
www.sunoraquangbinh.vn
sunoraquangbinh.vn
www.sunoraquangbinh.duy6.name.vn
www.sunoraquangbinh.vn
Other certificates including the domain name sunoraquangbinh.vn
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.sunoraquangbinh.vn in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgISBNUErDopqfkmrdsivj40GcZhMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjEyMjU1MzZaFw0yNDA2MTkyMjU1MzVaMCExHzAdBgNVBAMT Fnd3dy5zdW5vcmFxdWFuZ2Jpbmgudm4wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDR/iOrGTS266wJjq3zeIMg71gTqaoBpfhoRfiO3sZvguLMaUFKOgJm oIMxjAMt0PVWb2jBkBFwi8IBk8LQIUmZXmAc2LaXQItcFkBZ4LYz6Qp8iOZoijPl 5Glz/SY79Z/TMmkKWWhhszkeLDUNHtwzv59q9aSqn3mYEScO/2iH3ar/Evu6rjAN qKkEmW3hrBKvBwB1EHy6WieTrqc2VVJ8ETmaaAT/3/Q2OR3WqS55ackuBNSXZVd0 KFnks9bKKP25ZquSHwpKm2J/aeOdZBA0/mRcPUHa2VWtdqDgIPyJ7dThMrYJlHmx RShaSpos657hhjwzQodSl+qzkFuU5Kc9AgMBAAGjggJrMIICZzAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQC MAAwHQYDVR0OBBYEFJR50eF+H5QhWhH23T3opoSAyipSMB8GA1UdIwQYMBaAFBQu sxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYV aHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5s ZW5jci5vcmcvMHUGA1UdEQRuMGyCHHN1bm9yYXF1YW5nYmluaC5kdXk2Lm5hbWUu dm6CEnN1bm9yYXF1YW5nYmluaC52boIgd3d3LnN1bm9yYXF1YW5nYmluaC5kdXk2 Lm5hbWUudm6CFnd3dy5zdW5vcmFxdWFuZ2Jpbmgudm4wEwYDVR0gBAwwCjAIBgZn gQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQA7U3d1Pi25gE6LMFsG/kA7 Z9hPw/THvQANLXJv4frUFwAAAY5jcQ0kAAAEAwBGMEQCIClPDvfwkTVK62Z7uq8S JWyK0T/xMkurDkOPy3EP1/RSAiAlYGQdFGbpbzklmIw+HCII7mD5NEH/d1R4mGRl ikAKNwB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjmNxDWkA AAQDAEcwRQIgVqnwMjrz6OrISXpcyZegB8+ARhYmdjOfHZ7U/eMEh0ACIQCgyupt aAUuTSNfD95bNMhCPzZ6/Bvr55mXU1+ILpso7DANBgkqhkiG9w0BAQsFAAOCAQEA A9JMXsR0Hn/uUkk2sk4CzBJluE77+8k248fq+s+J6LswwNH4SSvyfkU+Dmkkzs8F S6OgOw3Uf6Hf4wtfNKCy2qjoow2uC9ONVgfc1DvxgUUcWpPqV/HlUfgOUr+A7tJN InpJZwthIX2/pPks0b/YdnVhNg2iSlGjHn3g9X2G4rRjbS0E5VNwVv5Zm5UP6B+J na49WSYRUIWhGijRqyWPzagLjZxNIADSPWyD43UHJTNV+cGb6PCGyAvNnp3bNhTD vB65v5w2N876gzK0bBcLX+u/vnhhNLhE9N1qsKbOXUS/enoTQmJ3oAI+l4AbO0J6 LBxC/S9HHa8qM1pUsFFoXg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0f4jqxk0tuusCY6t83iD IO9YE6mqAaX4aEX4jt7Gb4LizGlBSjoCZqCDMYwDLdD1Vm9owZARcIvCAZPC0CFJ mV5gHNi2l0CLXBZAWeC2M+kKfIjmaIoz5eRpc/0mO/Wf0zJpClloYbM5Hiw1DR7c M7+favWkqp95mBEnDv9oh92q/xL7uq4wDaipBJlt4awSrwcAdRB8ulonk66nNlVS fBE5mmgE/9/0Njkd1qkueWnJLgTUl2VXdChZ5LPWyij9uWarkh8KSptif2njnWQQ NP5kXD1B2tlVrXag4CD8ie3U4TK2CZR5sUUoWkqaLOue4YY8M0KHUpfqs5BblOSn PQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 420935499047924402804765729122478047479393 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-21 22:55:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-19 22:55:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.sunoraquangbinh.vn' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26509126512054541765920044698148809456422009205948219988866809550501725336167031772915443259582685516612376130055212085347467330329922291958892639313188327100579649073346406599150133087322305941511178933776800199614740718963318060829316484070372653445241764630973027391909851107461882750963785439917665164943303386270851011551117490929161733495994533078891808838015330737685262068258385716043319545993415923256392028024017863687924396278415171681765974712018615525489886586894070007205580263701197487828489589757281324760435845487309056148892584125093547838684990534803083597083454986425740657905133437520229028898621 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9479d1e17e1f94215a11f6dd3de8a68480ca2a52 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sunoraquangbinh.duy6.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sunoraquangbinh.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sunoraquangbinh.duy6.name.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sunoraquangbinh.vn' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e63710d2400000403004630440220294f0ef7f091354aeb667bbaaf12256c8ad13ff1324bab0e438fcb710fd7f45202202560641d1466e96f3925988c3e1c2208ee60f93441ff7754789864658a400a3700760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018e63710d690000040300473045022056a9f0323af3e8eac8497a5cc997a007cf8046162676339f1d9ed4fde3048740022100a0caea6d68052e4d235f0fde5b34c8423f367afc1bebe79997535f882e9b28ec . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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