libertadora.com
Issued by R3
About this certificate
This digital certificate with serial number 03:ef:62:f2:af:ba:be:af:47:5e:79:e5:ca:b0:12:2c:2c:2e was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=libertadora.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:ef:62:f2:af:ba:be:af:47:5e:79:e5:ca:b0:12:2c:2c:2eSerial Number (int): 342795867933028852809059684138320497749038
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 99:df:9d:3e:2d:fd:1b:6a:8d:19:46:d2:93:c5:5a:2f:37:fe:10:53
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c7:84:d1:70:62:f7:04:b2:17:86:9d:0e:69:02:11:02:9c:ea:1c:28
Fingerprint (sha256): 77:50:73:5a:a9:2f:01:78:48:8f:61:c7:20:de:d5:01:a9:fd:57:bd:c0:88:f4:18:10:de:99:df:40:88:88:80
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate libertadora.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for libertadora.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
libertadora.com
www.libertadora.com
www.libertadora.com
Other certificates including the domain name libertadora.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for libertadora.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGATCCBOmgAwIBAgISA+9i8q+6vq9HXnnlyrASLCwuMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMjAwNDA0MTZaFw0yNDAzMTkwNDA0MTVaMBoxGDAWBgNVBAMT D2xpYmVydGFkb3JhLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB AJFwIcVXzuqYPNi5ZdYbUQK/puMFjh0xudmpdvZOkAixhsFeuWfKr3pzaUbJiWyM 8miTqbLu/rIME8G5TZ+GGgRsCD2zBn7FavaW0iPrOH/N0JlvN3cEiiTZV4zXbC+P h/VzkU7B085VT+H4VE+sqqEyGvOK+p0PMTkU1TErtSMFBk9+ZUgUbV8Z4/vDsc7H eAE1QbrfD60lbnQkRzlK/R4k3XPwT6CduOhWnA/m4CbISGZMNkEfRzi2w6sAlVJA n0d61xikauuT6DlQTTCS2OLfClyRWVsmt/Lhs7Opb4tvnnIrfTZqGScNQpjZVuxx RmlKeqsLQo9X3lD0qgTkFfuyBVBRhj9UeEWpc7Dxcw3ltM0SkQhABFmLij9xkcvA L4jGTQcwvHTmvirD7SoBQYNx2MT6QFnseqg+rbx9fnYnqAYzAcU6ZXE/Wro8FBto NR5/ZCBlhPWGgQTsJ6ID+b/p61hu/Pq/X41QZ5soFheHh2Dc2n/HMe4vwm87chvn L8cJKbmSdRXlVrEPtndXTPHsp0nQeVMlChG7JHX1wuhJX8OlNtI6I1cK4NU/KNTK 501cd2J4zn1/mhGdfb8VzNBY7Zmp0LlGxcbwtN4XFBTQWJwKMqars9mpZVzdO62G u28di1I6aVm80dW5ISkmxP6h/FiUsWVVaNaCeV7A5VcdAgMBAAGjggInMIICIzAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFJnfnT4t/RtqjRlG0pPFWi83/hBTMB8GA1Ud IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw Oi8vcjMuaS5sZW5jci5vcmcvMC8GA1UdEQQoMCaCD2xpYmVydGFkb3JhLmNvbYIT d3d3LmxpYmVydGFkb3JhLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisG AQQB1nkCBAIEgfYEgfMA8QB3AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdM Wjp0AAABjIWcNmMAAAQDAEgwRgIhAI4cnym2036NhvwwePQOcCnCEi12ZcVrRO1a O47MwtopAiEAlMc7UeJB4MvHihxCC2/QCRvcvs3fl0YxAukHEDyUKNQAdgA7U3d1 Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYyFnDf7AAAEAwBHMEUCID0I 9kouEM+yrQw17J/g3eaY0AWAEoRgbk2e8xF26XusAiEAiFzT2eTwTcfBl80NRO6I 8IQR1opL3uL2o3/+suuv5ngwDQYJKoZIhvcNAQELBQADggEBAKQN5SB5LQn6WY7m A8XG+OA/dMIiIE43lqY9GAKR4A3D8itUiPq5C5idBuc60Gz5dj6bJmnwobgcgcdd h5cbyvzARn7SGntr4N5bF6RiWi2oJToRx7rf3yx5JHyIsvf7fwm0gJ6SHyoGcE2G 6FuzdBnrezp1Bx7bXU2js0a1MiGAuJySTGAJx6LA+y3Gb5macv0TVU9/r5SsqMm5 TzYX3MC20jX8ETUz0ssKC3Kd+7wtfA+wkaRUvvAiRvWAKVA0EnpC6bbJ8RHiJN10 C6NzytmxvyKV1JA7ia5OaIXWRRLGYYc3sDKXkrn2CLW0u7eWyMaK3LF0LoPKmaLY cQhzQtQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAkXAhxVfO6pg82Lll1htR Ar+m4wWOHTG52al29k6QCLGGwV65Z8qvenNpRsmJbIzyaJOpsu7+sgwTwblNn4Ya BGwIPbMGfsVq9pbSI+s4f83QmW83dwSKJNlXjNdsL4+H9XORTsHTzlVP4fhUT6yq oTIa84r6nQ8xORTVMSu1IwUGT35lSBRtXxnj+8Oxzsd4ATVBut8PrSVudCRHOUr9 HiTdc/BPoJ246FacD+bgJshIZkw2QR9HOLbDqwCVUkCfR3rXGKRq65PoOVBNMJLY 4t8KXJFZWya38uGzs6lvi2+ecit9NmoZJw1CmNlW7HFGaUp6qwtCj1feUPSqBOQV +7IFUFGGP1R4RalzsPFzDeW0zRKRCEAEWYuKP3GRy8AviMZNBzC8dOa+KsPtKgFB g3HYxPpAWex6qD6tvH1+dieoBjMBxTplcT9aujwUG2g1Hn9kIGWE9YaBBOwnogP5 v+nrWG78+r9fjVBnmygWF4eHYNzaf8cx7i/CbztyG+cvxwkpuZJ1FeVWsQ+2d1dM 8eynSdB5UyUKEbskdfXC6Elfw6U20jojVwrg1T8o1MrnTVx3YnjOfX+aEZ19vxXM 0FjtmanQuUbFxvC03hcUFNBYnAoypquz2allXN07rYa7bx2LUjppWbzR1bkhKSbE /qH8WJSxZVVo1oJ5XsDlVx0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 342795867933028852809059684138320497749038 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-20 04:04:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-19 04:04:15 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'libertadora.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 593335336393866580928248020654867286462525848053449392041971621627221754837878265225705471684536382187968229745985080395125039583735330406175204812003363050569425379522752186257258738405250276646423650321732247875130627212634136428455115014555878814538315830334755162666533838629556931086064064420899830641431607303006226608880241212243540059164404405127025818252434272719169110810674545312162285307422755065185404529202592611180339436820986149925943200170818954230099480127965277910610410505969815483204729766347082593478990214943364962184282333735678198625794975729544331834288009918718823248425363171351009071547345872967079384087815018694680275236871720771898540331531820773012829749173784006945682256210703491521903714280763092284221435556628478944845880332174434870186184207545439290968215366566788777690050508231612599545419258557110839609475265325120048156092725931620541015045279784359975732703455341849257942770564585619307866923647368602011494281242079061771231877365538866595774759109339049120089204433143887406176853654928514197766957828438918787443473160327797590160695435273216107677972092299919929212223613582691057474939332148331042453016418432382090303325176937071988189720190577857801549813603931627868622611109661 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 99df9d3e2dfd1b6a8d1946d293c55a2f37fe1053 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'libertadora.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.libertadora.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018c859c366300000403004830460221008e1c9f29b6d37e8d86fc3078f40e7029c2122d7665c56b44ed5a3b8eccc2da2902210094c73b51e241e0cbc78a1c420b6fd0091bdcbecddf97463102e907103c9428d40076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c859c37fb000004030047304502203d08f64a2e10cfb2ad0c35ec9fe0dde698d005801284606e4d9ef31176e97bac022100885cd3d9e4f04dc7c197cd0d44ee88f08411d68a4bdee2f6a37ffeb2ebafe678 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00a40de520792d09fa598ee603c5c6f8e03f74c222204e3796a63d180291e00dc3f22b5488fab90b989d06e73ad06cf9763e9b2669f0a1b81c81c75d87971bcafcc0467ed21a7b6be0de5b17a4625a2da8253a11c7badfdf2c79247c88b2f7fb7f09b4809e921f2a06704d86e85bb37419eb7b3a75071edb5d4da3b346b5322180b89c924c6009c7a2c0fb2dc66f999a72fd13554f7faf94aca8c9b94f3617dcc0b6d235fc113533d2cb0a0b729dfbbc2d7c0fb091a454bef02246f580295034127a42e9b6c9f111e224dd740ba373cad9b1bf2295d4903b89ae4e6885d64512c6618737b0329792b9f608b5b4bbb796c8c68adcb1742e83ca99a2d871087342d4