rybowicz.pl
Issued by R3
About this certificate
This digital certificate with serial number 04:0a:1b:f9:fb:ec:ac:95:37:af:be:30:5f:21:84:77:15:0a was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=rybowicz.pl
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:0a:1b:f9:fb:ec:ac:95:37:af:be:30:5f:21:84:77:15:0aSerial Number (int): 351889154543690407806321346312059322045706
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b1:59:89:c6:a4:11:59:e8:5b:e3:65:ce:f1:c8:67:9f:12:00:d5:0d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 74:d8:ea:2c:19:e9:e4:e7:1c:de:32:2e:da:9a:10:d7:e3:da:ce:ac
Fingerprint (sha256): 82:6d:c2:28:f5:d4:53:09:4d:8d:54:fb:57:b6:8e:02:09:c5:56:09:40:bc:f9:e6:9f:7d:63:03:66:82:f5:48
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate rybowicz.pl
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rybowicz.pl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rybowicz.pl
www.rybowicz.pl
www.rybowicz.pl
Other certificates including the domain name rybowicz.pl
(limited to 100 certificates)
Certificate
The complete raw certificate details for rybowicz.pl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgISBAob+fvsrJU3r74wXyGEdxUKMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MjQwMDEyMjlaFw0yNDA4MjIwMDEyMjhaMBYxFDASBgNVBAMT C3J5Ym93aWN6LnBsMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApOYy P0UJg+Ddoy7gSGSSjRkwTrldiqK9JaCmAb4ShcB0WhrG+90nPpebvLexIl9G5zuE 1mbRqxX2FDE5xML4zxifl0CrzgduI6R1PVuev43FrrMEOE8ze6LeJglbdrXMX54F JvZB2lDN8NR70+iGUzDrySPllpOnCgvrJEdIST/zIxLt9eFsHqG83NzKdgcol6P0 QsZOKAny3/acv5oeWcUvjAHEEVbnS62/XPQJWnmuKyD/yWMhUtIqRFAc19/AKAN7 00vNf8GNLNPtgbR/T12K3E7sEdkcqVTKNy1uAbaf6xrXUVhoh7I0kTSZsO0Xy9+B TzJe72u9hIr2HpHyJFog9VCTs5n5ctaj615i4g2DBXa2utgROtnXLN2S5sKET8EQ YiCPlVDDs9Cti3I2EPcwcy6cVQkndSvrGZDShkjZxtjP4DWj5gJ9+kiOrFkNFLdy B8+dEBp6k4d32VxyBP+54rmgrxiMhrKHsrL8+27IOwXR3FWL4tNoDFV8+i2ovjyg SsR8fcDyubLK5FiaG/ydfzyDh5FzKr6bRVH7tKW0uzQm8LZ1zM/6FFv3TntEHJG2 6VQwtrSFgmHOqAC+As/dvGnOBz5s7WSbosylWDsrd7tire8H50LS/472IIzVPfmC U8vY5Hf7jkmenRsgFnezqK433+ngIfNjCXqxAfUCAwEAAaOCAiAwggIcMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQUsVmJxqQRWehb42XO8chnnxIA1Q0wHwYDVR0jBBgw FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y My5pLmxlbmNyLm9yZy8wJwYDVR0RBCAwHoILcnlib3dpY3oucGyCD3d3dy5yeWJv d2ljei5wbDATBgNVHSAEDDAKMAgGBmeBDAECATCCAQYGCisGAQQB1nkCBAIEgfcE gfQA8gB3AD8XS0/XIkdYlB1lHIS+DRLtkDd/H4Vq68G/KIXs+GRuAAABj6goE9oA AAQDAEgwRgIhANWaZeysJlj1T6R0oFCWPTP18eHzhbHV+15DH7thtOdSAiEAlux4 yfGRvKpx89uCqw+WoZkBJiDzUBGrS+uxsS9IYRUAdwAZmBBxCfDWUi4wgNKeP2S7 g24ozPkPUo7u385KPxa0ygAAAY+oKBPfAAAEAwBIMEYCIQDMCljuSZQxMHGTMSQs sjWXtm/bFi915L4xKC7df6vkVgIhAPAH+/AXmNQaU7sqyYCM7AA5mZm4Mm3svGNh AZBm50bwMA0GCSqGSIb3DQEBCwUAA4IBAQBv6Nqm8WPSQfocRjrO/qZzksZXOut9 iWsOk/vvOKu+TVy0QEq7KyeW3sApvJqplIyjQQXotB4TDmtoBXHVsqWXU1TdpaPT NjWSpZK2XZHiRDnRYWv987YuMLRVLULRgA7f/s4jHqqOAS4Uzv8DqD0HT++kg+yz iPuemXiomLoeCxk/OtY/YjNC8c1PWm2/WLIDo9kiNWl7WsutIKF5yhTVEOPfROwi 3FOvWOhNWnS0xb86889VcPKHgnw+/f1Pfg/3xdZBe4hyAIIvb3ckJQIT0o0z07Gn Gjq7ZocNrhhfg/YuNz+NzrP/4KBuueLtvNDYOczjqMZPB8x56yzfKrcX -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApOYyP0UJg+Ddoy7gSGSS jRkwTrldiqK9JaCmAb4ShcB0WhrG+90nPpebvLexIl9G5zuE1mbRqxX2FDE5xML4 zxifl0CrzgduI6R1PVuev43FrrMEOE8ze6LeJglbdrXMX54FJvZB2lDN8NR70+iG UzDrySPllpOnCgvrJEdIST/zIxLt9eFsHqG83NzKdgcol6P0QsZOKAny3/acv5oe WcUvjAHEEVbnS62/XPQJWnmuKyD/yWMhUtIqRFAc19/AKAN700vNf8GNLNPtgbR/ T12K3E7sEdkcqVTKNy1uAbaf6xrXUVhoh7I0kTSZsO0Xy9+BTzJe72u9hIr2HpHy JFog9VCTs5n5ctaj615i4g2DBXa2utgROtnXLN2S5sKET8EQYiCPlVDDs9Cti3I2 EPcwcy6cVQkndSvrGZDShkjZxtjP4DWj5gJ9+kiOrFkNFLdyB8+dEBp6k4d32Vxy BP+54rmgrxiMhrKHsrL8+27IOwXR3FWL4tNoDFV8+i2ovjygSsR8fcDyubLK5Fia G/ydfzyDh5FzKr6bRVH7tKW0uzQm8LZ1zM/6FFv3TntEHJG26VQwtrSFgmHOqAC+ As/dvGnOBz5s7WSbosylWDsrd7tire8H50LS/472IIzVPfmCU8vY5Hf7jkmenRsg FnezqK433+ngIfNjCXqxAfUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 351889154543690407806321346312059322045706 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-24 00:12:29 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-22 00:12:28 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rybowicz.pl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 672730060279094262667685748975964761232854847340502420382363391581202789409605678652257883381834845913606864462209543105189664044839284008413235853033155182308646815626373445545654987608580396180161281715725566784859395871915528157159731994662349529759302562754932184572421717078955927271837327272225016360719117690229368550029902672157645766764096399465164662447709293640518858705051601165309414129688070221596437010721216551886685484440027683990924044564798530631979008924097784761833189370632586354533248163100767976457848520955179951732281003670488459899320040207456645811184127583392106126414382575810615115915746132893380202679749795181574119436479141605986601215024440912198467266459746495800024948024307643492169068354643373340487060901553605369718849748170453098700456982270395822159442135493695375194772041335141893930284599500757804791078933476096338331269442329474570242597176660526102276993675772176856909078182302242045298273747979889886198013363457425842667356421478028225756788156760713753979877554799792177760822982631474396418258672181939911550821165792931212069890758444817127100398784266883290230816211629328492662667120825580083822985206792937414663704961584948870128183966902945844076532017232869494454714696181 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b15989c6a41159e85be365cef1c8679f1200d50d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rybowicz.pl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rybowicz.pl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018fa82813da0000040300483046022100d59a65ecac2658f54fa474a050963d33f5f1e1f385b1d5fb5e431fbb61b4e75202210096ec78c9f191bcaa71f3db82ab0f96a199012620f35011ab4bebb1b12f4861150077001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018fa82813df0000040300483046022100cc0a58ee49943130719331242cb23597b66fdb162f75e4be31282edd7fabe456022100f007fbf01798d41a53bb2ac9808cec00399999b8326decbc6361019066e746f0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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