paradnica.sk
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:d8:31:89:c0:7a:e3:8b:e3:ee:1e:aa:b3:fa:bb:ce:80:f4 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=paradnica.sk
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d8:31:89:c0:7a:e3:8b:e3:ee:1e:aa:b3:fa:bb:ce:80:f4Serial Number (int): 334903696470625430139267077762560167936244
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3c:3a:f6:71:8f:b1:ea:04:90:57:d7:19:4e:a9:5f:12:56:b4:c5:1e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 35:64:54:6d:a6:fc:01:c1:12:91:dc:59:e5:e0:15:0f:7d:a3:1e:bc
Fingerprint (sha256): 7e:cc:e0:45:59:2d:76:94:a6:26:cf:f9:82:03:97:4d:71:9b:2b:86:b7:9b:54:d2:38:41:cd:e9:ca:74:be:c4
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate paradnica.sk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for paradnica.sk
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
paradnica.sk
www.paradnica.sk
www.paradnica.sk
Other certificates including the domain name paradnica.sk
(limited to 100 certificates)
Certificate
The complete raw certificate details for paradnica.sk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgISA9gxicB644vj7h6qs/q7zoD0MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MjYxODUwMDBaFw0x OTEyMjUxODUwMDBaMBcxFTATBgNVBAMTDHBhcmFkbmljYS5zazCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAPNxeuq6j0bYODZrbZ9ATLXRv6nVOKKcVz6I 9miOGgSJYZpDEr5VgCcd9qcHrjUseMD0BURKzV1+yfClpS4MSkrqW+lHno2HZHfl ex97PgO+QJfjiI9Mt7q+lRXC49HHK14l8KFdVPvoKmc0guzYlutw5tk49Cs2YguX yOnD6RIdY+OA9kvTcrS/ozyfonWXJ5xPfVpk9DPfrmLqdJX6rwT0mzwZzKLDiQeS QwiIcehdqs66pYLnoyhmqCa/RwUARvgBKgRqyFFXfzo8Wpg/ixeAwsBtzm4jC4k/ dASywNgnClO1OUmz4frM22eNeT1rOePhhcz5m6qbN5y0jT9YQZgbTSYdK6Z4kDja glwNdejWQvcZK4SMV46B2GU3HbxGZuUVaAouH5XTvAqYgLigiBPLA44//HI9Paua XrEuFjXcii4vOXAe3FbAhzCFSejsy5NDwk2SHxVSwiHorIeI56GkzQfG9XMAQjb4 Phvh4tf5YU9NLvQDq+Hx3vWLIz8/lmzGNkRu5tjPxZWOmIsXAXD0fCoy47WnljZ4 lyzJbDsPawI0BcrCH6sXHoW+loQz2o8MB9naYFOD0cJc1uifU1rEvLpc8m+C9jmg 1k3ZzYBsPRAUhWmSQQWdbq7dBJOJKYpIx3pSUIDVN0N92CdoVPdiGt3ZwxZ4XqtZ I0kulHVzAgMBAAGjggJyMIICbjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFDw69nGP seoEkFfXGU6pXxJWtMUeMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wKQYDVR0RBCIwIIIMcGFyYWRuaWNhLnNrghB3d3cu cGFyYWRuaWNhLnNrMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEB MCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYK KwYBBAHWeQIEAgSB9ASB8QDvAHYAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV5 5hB7zFYAAAFtbx+KSQAABAMARzBFAiEAl5GB83Gz2z0K1phHTjxMAae6QcMVUjpA Dak/gTd+8gQCICjZt4AEiP3q+wgSFMPLbdTTdxRbuXQAjI21DL4zNyOsAHUAY/Lb zeg7zCzPC3KEJ1drM6SNYXePvXWmOLHHaFRL2I0AAAFtbx+KZwAABAMARjBEAiAD N90iBXz+CqTLAeX9r20NLaHNjoyGTEWhIysQokSmtwIgSpYjcn0TIyR4jCJPPATj NYNF3jzA2aAoihGZCgYC530wDQYJKoZIhvcNAQELBQADggEBADXkOIuxH1nu6aV3 A9zfqBD47sx2zIc3FtXPy6aWBL+kDo99G6Ur83/DGfaec4L2bGsi7AzPZVDYNfn5 WyxxYXc+0WkgRBn+rzS0IWxSc/PQmKFL/ocQ2tMIXfRoo/2il/jtC70GnuFP/sIe aqJPHbQJIHze47a9uO/Blj9X6D5OeHSPO5dTBGyS5CbbnLSZlWBd0z0JsNqHpYXE rXjQxiYxdrEEtC2fMNcUKVYFyKDKBFtWTxGsROQLqZra7CrH1ACx0qwM9adJTPIb h+K8xFKVCMC0c5Mt1ZuTpqQn/8CRFi+zUpHm7t4SGnUEotc0/SkNebvUCTYlNS5z W5pIroI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA83F66rqPRtg4Nmttn0BM tdG/qdU4opxXPoj2aI4aBIlhmkMSvlWAJx32pweuNSx4wPQFRErNXX7J8KWlLgxK Supb6UeejYdkd+V7H3s+A75Al+OIj0y3ur6VFcLj0ccrXiXwoV1U++gqZzSC7NiW 63Dm2Tj0KzZiC5fI6cPpEh1j44D2S9NytL+jPJ+idZcnnE99WmT0M9+uYup0lfqv BPSbPBnMosOJB5JDCIhx6F2qzrqlguejKGaoJr9HBQBG+AEqBGrIUVd/OjxamD+L F4DCwG3ObiMLiT90BLLA2CcKU7U5SbPh+szbZ415PWs54+GFzPmbqps3nLSNP1hB mBtNJh0rpniQONqCXA116NZC9xkrhIxXjoHYZTcdvEZm5RVoCi4fldO8CpiAuKCI E8sDjj/8cj09q5pesS4WNdyKLi85cB7cVsCHMIVJ6OzLk0PCTZIfFVLCIeish4jn oaTNB8b1cwBCNvg+G+Hi1/lhT00u9AOr4fHe9YsjPz+WbMY2RG7m2M/FlY6YixcB cPR8KjLjtaeWNniXLMlsOw9rAjQFysIfqxcehb6WhDPajwwH2dpgU4PRwlzW6J9T WsS8ulzyb4L2OaDWTdnNgGw9EBSFaZJBBZ1urt0Ek4kpikjHelJQgNU3Q33YJ2hU 92Ia3dnDFnheq1kjSS6UdXMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 334903696470625430139267077762560167936244 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-26 18:50:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-25 18:50:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'paradnica.sk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 993161940548529837090585262984014386765504213652867575200862603446630398223060321826909349595132794883534228483638919344719437368181184267442749567120006857993536290748770537243232017480206152384439684774280048124227732806735025657030733613374102388969201496047049123676820599800922354887526868678908261171864517938962305957377256059473824877345304942597351713340123975032436356191111951894048279247822682992632579803997104852071146947158841239215128332601174108264772852263795917568873189594833564768082673229220373310660235829630765340463337903549320100831158866733620626633468181061501933816622831847750870882173608158880441255923957350141609482504821807967900064841231493817360001912183508374198692441951431205273987597555390405231289819054003608415932826070444056749829082029133980126651453515595838136093246704048046868504505326483980816673566878807451384325708185748054802329983031136907007025871310287456263746878985209873821751245304769329863922259998585309162652404598396027111996663505536026945053304160292560627770605643958079829613747838757607900619409263406440051383706238252702356285761797634653702172884701283006679948669764169363131582559893580582605052087812802628075074017141413935310209419861552004048689908970867 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3c3af6718fb1ea049057d7194ea95f1256b4c51e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paradnica.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.paradnica.sk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016d6f1f8a490000040300473045022100979181f371b3db3d0ad698474e3c4c01a7ba41c315523a400da93f81377ef204022028d9b7800488fdeafb081214c3cb6dd4d377145bb974008c8db50cbe333723ac00750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d6f1f8a67000004030046304402200337dd22057cfe0aa4cb01e5fdaf6d0d2da1cd8e8c864c45a1232b10a244a6b702204a9623727d132324788c224f3c04e3358345de3cc0d9a0288a11990a0602e77d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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