libertadora.com

Issued by R3

About this certificate

This digital certificate with serial number 03:ef:62:f2:af:ba:be:af:47:5e:79:e5:ca:b0:12:2c:2c:2e was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=libertadora.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:ef:62:f2:af:ba:be:af:47:5e:79:e5:ca:b0:12:2c:2c:2e
Serial Number (int): 342795867933028852809059684138320497749038
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 99:df:9d:3e:2d:fd:1b:6a:8d:19:46:d2:93:c5:5a:2f:37:fe:10:53
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): c7:84:d1:70:62:f7:04:b2:17:86:9d:0e:69:02:11:02:9c:ea:1c:28
Fingerprint (sha256): 77:50:73:5a:a9:2f:01:78:48:8f:61:c7:20:de:d5:01:a9:fd:57:bd:c0:88:f4:18:10:de:99:df:40:88:88:80

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate libertadora.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for libertadora.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

libertadora.com
www.libertadora.com

Other certificates including the domain name libertadora.com

(limited to 100 certificates)
libertadora.com
libertadora.com
libertadora.com
libertadora.com
libertadora.com
www.libertadora.com
www.libertadora.com
www.libertadora.com
www.radella.com
www.grecka.com
www.libertadora.com
libertadora.com

Certificate

The complete raw certificate details for libertadora.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGATCCBOmgAwIBAgISA+9i8q+6vq9HXnnlyrASLCwuMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yMzEyMjAwNDA0MTZaFw0yNDAzMTkwNDA0MTVaMBoxGDAWBgNVBAMT
D2xpYmVydGFkb3JhLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB
AJFwIcVXzuqYPNi5ZdYbUQK/puMFjh0xudmpdvZOkAixhsFeuWfKr3pzaUbJiWyM
8miTqbLu/rIME8G5TZ+GGgRsCD2zBn7FavaW0iPrOH/N0JlvN3cEiiTZV4zXbC+P
h/VzkU7B085VT+H4VE+sqqEyGvOK+p0PMTkU1TErtSMFBk9+ZUgUbV8Z4/vDsc7H
eAE1QbrfD60lbnQkRzlK/R4k3XPwT6CduOhWnA/m4CbISGZMNkEfRzi2w6sAlVJA
n0d61xikauuT6DlQTTCS2OLfClyRWVsmt/Lhs7Opb4tvnnIrfTZqGScNQpjZVuxx
RmlKeqsLQo9X3lD0qgTkFfuyBVBRhj9UeEWpc7Dxcw3ltM0SkQhABFmLij9xkcvA
L4jGTQcwvHTmvirD7SoBQYNx2MT6QFnseqg+rbx9fnYnqAYzAcU6ZXE/Wro8FBto
NR5/ZCBlhPWGgQTsJ6ID+b/p61hu/Pq/X41QZ5soFheHh2Dc2n/HMe4vwm87chvn
L8cJKbmSdRXlVrEPtndXTPHsp0nQeVMlChG7JHX1wuhJX8OlNtI6I1cK4NU/KNTK
501cd2J4zn1/mhGdfb8VzNBY7Zmp0LlGxcbwtN4XFBTQWJwKMqars9mpZVzdO62G
u28di1I6aVm80dW5ISkmxP6h/FiUsWVVaNaCeV7A5VcdAgMBAAGjggInMIICIzAO
BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG
A1UdEwEB/wQCMAAwHQYDVR0OBBYEFJnfnT4t/RtqjRlG0pPFWi83/hBTMB8GA1Ud
IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr
BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw
Oi8vcjMuaS5sZW5jci5vcmcvMC8GA1UdEQQoMCaCD2xpYmVydGFkb3JhLmNvbYIT
d3d3LmxpYmVydGFkb3JhLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisG
AQQB1nkCBAIEgfYEgfMA8QB3AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdM
Wjp0AAABjIWcNmMAAAQDAEgwRgIhAI4cnym2036NhvwwePQOcCnCEi12ZcVrRO1a
O47MwtopAiEAlMc7UeJB4MvHihxCC2/QCRvcvs3fl0YxAukHEDyUKNQAdgA7U3d1
Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYyFnDf7AAAEAwBHMEUCID0I
9kouEM+yrQw17J/g3eaY0AWAEoRgbk2e8xF26XusAiEAiFzT2eTwTcfBl80NRO6I
8IQR1opL3uL2o3/+suuv5ngwDQYJKoZIhvcNAQELBQADggEBAKQN5SB5LQn6WY7m
A8XG+OA/dMIiIE43lqY9GAKR4A3D8itUiPq5C5idBuc60Gz5dj6bJmnwobgcgcdd
h5cbyvzARn7SGntr4N5bF6RiWi2oJToRx7rf3yx5JHyIsvf7fwm0gJ6SHyoGcE2G
6FuzdBnrezp1Bx7bXU2js0a1MiGAuJySTGAJx6LA+y3Gb5macv0TVU9/r5SsqMm5
TzYX3MC20jX8ETUz0ssKC3Kd+7wtfA+wkaRUvvAiRvWAKVA0EnpC6bbJ8RHiJN10
C6NzytmxvyKV1JA7ia5OaIXWRRLGYYc3sDKXkrn2CLW0u7eWyMaK3LF0LoPKmaLY
cQhzQtQ=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 342795867933028852809059684138320497749038
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-20 04:04:16 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-19 04:04:15 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'libertadora.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 593335336393866580928248020654867286462525848053449392041971621627221754837878265225705471684536382187968229745985080395125039583735330406175204812003363050569425379522752186257258738405250276646423650321732247875130627212634136428455115014555878814538315830334755162666533838629556931086064064420899830641431607303006226608880241212243540059164404405127025818252434272719169110810674545312162285307422755065185404529202592611180339436820986149925943200170818954230099480127965277910610410505969815483204729766347082593478990214943364962184282333735678198625794975729544331834288009918718823248425363171351009071547345872967079384087815018694680275236871720771898540331531820773012829749173784006945682256210703491521903714280763092284221435556628478944845880332174434870186184207545439290968215366566788777690050508231612599545419258557110839609475265325120048156092725931620541015045279784359975732703455341849257942770564585619307866923647368602011494281242079061771231877365538866595774759109339049120089204433143887406176853654928514197766957828438918787443473160327797590160695435273216107677972092299919929212223613582691057474939332148331042453016418432382090303325176937071988189720190577857801549813603931627868622611109661
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							99df9d3e2dfd1b6a8d1946d293c55a2f37fe1053
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'libertadora.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.libertadora.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f100770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018c859c366300000403004830460221008e1c9f29b6d37e8d86fc3078f40e7029c2122d7665c56b44ed5a3b8eccc2da2902210094c73b51e241e0cbc78a1c420b6fd0091bdcbecddf97463102e907103c9428d40076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c859c37fb000004030047304502203d08f64a2e10cfb2ad0c35ec9fe0dde698d005801284606e4d9ef31176e97bac022100885cd3d9e4f04dc7c197cd0d44ee88f08411d68a4bdee2f6a37ffeb2ebafe678
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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