www.sunoraquangbinh.vn

Issued by R3

About this certificate

This digital certificate with serial number 04:d5:04:ac:3a:29:a9:f9:26:ad:db:22:be:3e:34:19:c6:61 was issued on by Let's Encrypt.

With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=www.sunoraquangbinh.vn

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:d5:04:ac:3a:29:a9:f9:26:ad:db:22:be:3e:34:19:c6:61
Serial Number (int): 420935499047924402804765729122478047479393
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 94:79:d1:e1:7e:1f:94:21:5a:11:f6:dd:3d:e8:a6:84:80:ca:2a:52
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 74:a6:1d:b0:9a:0e:28:b0:41:3b:00:67:e1:23:6d:a0:d4:19:84:dc
Fingerprint (sha256): 76:e0:2c:4a:01:1c:b1:d0:70:72:b5:c9:47:6a:3a:5d:81:84:ef:99:d5:a6:ad:be:c6:0a:f9:b5:ab:1b:a3:e4

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate www.sunoraquangbinh.vn

4

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.sunoraquangbinh.vn

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

sunoraquangbinh.duy6.name.vn
sunoraquangbinh.vn
www.sunoraquangbinh.duy6.name.vn
www.sunoraquangbinh.vn

Other certificates including the domain name sunoraquangbinh.vn

(limited to 100 certificates)
sunoraquangbinh.vn
www.sunoraquangbinh.vn
ahvgroup.vn

Certificate

The complete raw certificate details for www.sunoraquangbinh.vn in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFTDCCBDSgAwIBAgISBNUErDopqfkmrdsivj40GcZhMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yNDAzMjEyMjU1MzZaFw0yNDA2MTkyMjU1MzVaMCExHzAdBgNVBAMT
Fnd3dy5zdW5vcmFxdWFuZ2Jpbmgudm4wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw
ggEKAoIBAQDR/iOrGTS266wJjq3zeIMg71gTqaoBpfhoRfiO3sZvguLMaUFKOgJm
oIMxjAMt0PVWb2jBkBFwi8IBk8LQIUmZXmAc2LaXQItcFkBZ4LYz6Qp8iOZoijPl
5Glz/SY79Z/TMmkKWWhhszkeLDUNHtwzv59q9aSqn3mYEScO/2iH3ar/Evu6rjAN
qKkEmW3hrBKvBwB1EHy6WieTrqc2VVJ8ETmaaAT/3/Q2OR3WqS55ackuBNSXZVd0
KFnks9bKKP25ZquSHwpKm2J/aeOdZBA0/mRcPUHa2VWtdqDgIPyJ7dThMrYJlHmx
RShaSpos657hhjwzQodSl+qzkFuU5Kc9AgMBAAGjggJrMIICZzAOBgNVHQ8BAf8E
BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQC
MAAwHQYDVR0OBBYEFJR50eF+H5QhWhH23T3opoSAyipSMB8GA1UdIwQYMBaAFBQu
sxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYV
aHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5s
ZW5jci5vcmcvMHUGA1UdEQRuMGyCHHN1bm9yYXF1YW5nYmluaC5kdXk2Lm5hbWUu
dm6CEnN1bm9yYXF1YW5nYmluaC52boIgd3d3LnN1bm9yYXF1YW5nYmluaC5kdXk2
Lm5hbWUudm6CFnd3dy5zdW5vcmFxdWFuZ2Jpbmgudm4wEwYDVR0gBAwwCjAIBgZn
gQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQA7U3d1Pi25gE6LMFsG/kA7
Z9hPw/THvQANLXJv4frUFwAAAY5jcQ0kAAAEAwBGMEQCIClPDvfwkTVK62Z7uq8S
JWyK0T/xMkurDkOPy3EP1/RSAiAlYGQdFGbpbzklmIw+HCII7mD5NEH/d1R4mGRl
ikAKNwB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjmNxDWkA
AAQDAEcwRQIgVqnwMjrz6OrISXpcyZegB8+ARhYmdjOfHZ7U/eMEh0ACIQCgyupt
aAUuTSNfD95bNMhCPzZ6/Bvr55mXU1+ILpso7DANBgkqhkiG9w0BAQsFAAOCAQEA
A9JMXsR0Hn/uUkk2sk4CzBJluE77+8k248fq+s+J6LswwNH4SSvyfkU+Dmkkzs8F
S6OgOw3Uf6Hf4wtfNKCy2qjoow2uC9ONVgfc1DvxgUUcWpPqV/HlUfgOUr+A7tJN
InpJZwthIX2/pPks0b/YdnVhNg2iSlGjHn3g9X2G4rRjbS0E5VNwVv5Zm5UP6B+J
na49WSYRUIWhGijRqyWPzagLjZxNIADSPWyD43UHJTNV+cGb6PCGyAvNnp3bNhTD
vB65v5w2N876gzK0bBcLX+u/vnhhNLhE9N1qsKbOXUS/enoTQmJ3oAI+l4AbO0J6
LBxC/S9HHa8qM1pUsFFoXg==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0f4jqxk0tuusCY6t83iD
IO9YE6mqAaX4aEX4jt7Gb4LizGlBSjoCZqCDMYwDLdD1Vm9owZARcIvCAZPC0CFJ
mV5gHNi2l0CLXBZAWeC2M+kKfIjmaIoz5eRpc/0mO/Wf0zJpClloYbM5Hiw1DR7c
M7+favWkqp95mBEnDv9oh92q/xL7uq4wDaipBJlt4awSrwcAdRB8ulonk66nNlVS
fBE5mmgE/9/0Njkd1qkueWnJLgTUl2VXdChZ5LPWyij9uWarkh8KSptif2njnWQQ
NP5kXD1B2tlVrXag4CD8ie3U4TK2CZR5sUUoWkqaLOue4YY8M0KHUpfqs5BblOSn
PQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 420935499047924402804765729122478047479393
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-21 22:55:36 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-19 22:55:35 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.sunoraquangbinh.vn'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26509126512054541765920044698148809456422009205948219988866809550501725336167031772915443259582685516612376130055212085347467330329922291958892639313188327100579649073346406599150133087322305941511178933776800199614740718963318060829316484070372653445241764630973027391909851107461882750963785439917665164943303386270851011551117490929161733495994533078891808838015330737685262068258385716043319545993415923256392028024017863687924396278415171681765974712018615525489886586894070007205580263701197487828489589757281324760435845487309056148892584125093547838684990534803083597083454986425740657905133437520229028898621
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							9479d1e17e1f94215a11f6dd3de8a68480ca2a52
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sunoraquangbinh.duy6.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sunoraquangbinh.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sunoraquangbinh.duy6.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sunoraquangbinh.vn'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e63710d2400000403004630440220294f0ef7f091354aeb667bbaaf12256c8ad13ff1324bab0e438fcb710fd7f45202202560641d1466e96f3925988c3e1c2208ee60f93441ff7754789864658a400a3700760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018e63710d690000040300473045022056a9f0323af3e8eac8497a5cc997a007cf8046162676339f1d9ed4fde3048740022100a0caea6d68052e4d235f0fde5b34c8423f367afc1bebe79997535f882e9b28ec
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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