dynamicfenestration.com
Issued by R3
About this certificate
This digital certificate with serial number 03:eb:9f:5e:05:b5:77:f9:1d:92:37:52:1f:8e:28:a7:2d:4f was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=dynamicfenestration.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:eb:9f:5e:05:b5:77:f9:1d:92:37:52:1f:8e:28:a7:2d:4fSerial Number (int): 341515049464725258063037378694610409696591
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 36:62:e2:10:e6:3a:4b:ee:40:2d:b2:db:15:7c:d4:29:9d:fd:64:a9
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 77:c0:53:1d:17:c8:ff:28:3c:75:15:21:e0:c9:64:68:b2:6c:e0:4d
Fingerprint (sha256): 85:dd:86:95:c0:2d:f7:11:bd:ab:56:be:1b:7a:4e:59:74:59:fc:26:4e:c9:5a:0f:8b:f0:5c:86:6c:5e:49:08
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate dynamicfenestration.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dynamicfenestration.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dynamicfenestration.com
dynamicwindows.com
www.dynamicfenestration.com
www.dynamicwindows.com
dynamicwindows.com
www.dynamicfenestration.com
www.dynamicwindows.com
Other certificates including the domain name dynamicfenestration.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for dynamicfenestration.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGRDCCBSygAwIBAgISA+ufXgW1d/kdkjdSH44opy1PMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMjgwNzEyMTVaFw0yNDA1MjgwNzEyMTRaMCIxIDAeBgNVBAMT F2R5bmFtaWNmZW5lc3RyYXRpb24uY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8A MIICCgKCAgEApRkDb1+8V92xser+01sZA9lvEPX4G9j9pXg5xs10bKbdIH6MvobR ZfDHkab0902qD7uV+gxSm6mRhigc2+fWidUdOuaFZlyZp5n8N5+UNk1VCVMlHpRa 7OGp0rG4SrHOrnLKn+fP/A/nD3VD6e3fvoAo7Hsu8lm4RKRD1dfUdgTk7NOJnuCS afY77Rjva6Qr8+F673T2bYKlMHEuVI3F5q30JLiqDZ8V9KmwO1jqdr1P7dXxOeJi c6jz8zLbcJAwiB8yAHVIgT5HYSg0iirrFf0rYtYuANtATUrPHfh2m1nvIP9PDn1N IJ6xGZfJ6qPOPUEsA4miznOrTmaIqHzYiydMhS7CAkou9X85a0Ng2WCElwZcCtwP ooZjDbFlXpIKN3x8Vy9h9LJCg1GN6KPwgOd+whcItOCUEYJB14YrMwu35Gi/+05q 4zFLg4jLR6GwD3UPLGO8zSt/Fr8aHS70zWqfEfJPGZ7SOzce6pZzT2aQT7J99y0x qqkpPuBHYClUts3E1BDWzfbxElNmDyS8wBiZiFr5NUN2oHx+fURyS01J2mXziJYi /82sONUCHdDqtbHudXlXnyGjMK7N6Ow7DStHZ3OihCfSIoVpGsZF85wytGbp3zHI fBC4TiwK12FWe2Rs427+E/+iVlCYf2UQyZ8mfOsRril9OrTgOszKyKUCAwEAAaOC AmIwggJeMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUNmLiEOY6S+5ALbLbFXzUKZ39 ZKkwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEE STBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUH MAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wawYDVR0RBGQwYoIXZHluYW1pY2Zl bmVzdHJhdGlvbi5jb22CEmR5bmFtaWN3aW5kb3dzLmNvbYIbd3d3LmR5bmFtaWNm ZW5lc3RyYXRpb24uY29tghZ3d3cuZHluYW1pY3dpbmRvd3MuY29tMBMGA1UdIAQM MAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAouK/1h7eLy8H oNZObTen3GVDsMa1LqLat4r4mm31F9gAAAGN7sV5fgAABAMARzBFAiA/vAySnm1i OqVHECpKVTyFNxjiMJIY6n7wO2RFOF6LrAIhAKi8d6sI5meB607+5NXLsY7weWIp wCf+2v/Qjd0KODRzAHYAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQA AAGN7sV57wAABAMARzBFAiAtb4bWnzEkpXDrCsGXph/ZJbGYxjJ3yuzVz6t9e8Cs zAIhAMxqM1W1uGTGpusA9SJIBbJwoqcA6PEVCa6g36yMvotGMA0GCSqGSIb3DQEB CwUAA4IBAQAbtbyLWtUXY/3a6mYoShCGdfWnnOr7pwGRNaotc3kciWWgD0lz3vWq 38WNs8jL86o0MPrsE+h9Z7aAQAiDruTqjrM+jv90RKi48i21jWxnP2aFLrUJrGvX NMURS4vzyC3D4l3UDWt79sUmPzVWuxcl+icIR9c5052sWqiOm8VDMQcBO7ES/P6K qE6Gzf99hO/03/BfSJnHfPLG0jCqZXnaK8rkWIEy2oNKs1mwDKOin+5/6IUeP/Yg ThfAHeZReSECVDZtCp21gLzkLyA2rh9RRGQv/7z0+dAsEi8yg2S8+P7uuAGG0BP8 c3cyE3vkxWDSujF3+4fkMN691inSIwq7 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApRkDb1+8V92xser+01sZ A9lvEPX4G9j9pXg5xs10bKbdIH6MvobRZfDHkab0902qD7uV+gxSm6mRhigc2+fW idUdOuaFZlyZp5n8N5+UNk1VCVMlHpRa7OGp0rG4SrHOrnLKn+fP/A/nD3VD6e3f voAo7Hsu8lm4RKRD1dfUdgTk7NOJnuCSafY77Rjva6Qr8+F673T2bYKlMHEuVI3F 5q30JLiqDZ8V9KmwO1jqdr1P7dXxOeJic6jz8zLbcJAwiB8yAHVIgT5HYSg0iirr Ff0rYtYuANtATUrPHfh2m1nvIP9PDn1NIJ6xGZfJ6qPOPUEsA4miznOrTmaIqHzY iydMhS7CAkou9X85a0Ng2WCElwZcCtwPooZjDbFlXpIKN3x8Vy9h9LJCg1GN6KPw gOd+whcItOCUEYJB14YrMwu35Gi/+05q4zFLg4jLR6GwD3UPLGO8zSt/Fr8aHS70 zWqfEfJPGZ7SOzce6pZzT2aQT7J99y0xqqkpPuBHYClUts3E1BDWzfbxElNmDyS8 wBiZiFr5NUN2oHx+fURyS01J2mXziJYi/82sONUCHdDqtbHudXlXnyGjMK7N6Ow7 DStHZ3OihCfSIoVpGsZF85wytGbp3zHIfBC4TiwK12FWe2Rs427+E/+iVlCYf2UQ yZ8mfOsRril9OrTgOszKyKUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 341515049464725258063037378694610409696591 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-28 07:12:15 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-28 07:12:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dynamicfenestration.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 673539887797956148986713497130851847704175856127402458254550375804723198528901634585984684725913812969500142540012730241330425480689062926704120398580637883422774534464274858530999767608551396520620141642318197784583565464165438266466402095080522407411712061584038957619615490527115777104530909964585415585631125184101825701430590153200844803460710899180283705860039803367555836435407455152095865442617330688313588770280817353960162941816173940584889593774967701903643241286717176492430442810957213074283659560668867572864524434312276205510790433244563034354023508104869258482939334541552253398631165904847105955959785902100905732708319168804726927339158907979545356675064925462956856293531318781152497341357775281655662443142471200507144841065209147035267744483697377184862453970484489967705307075752013653277176803249195336074874462070552900231717332254692066240581132241506458671660198777306001264195653909335671519004027955562648472088460400879225187655698097328340540058594096430953939170545316472851886520351281538459369352933562437967273168168826448834580159693310831528751060279048503473360644300685241857260492942124545519847546506707550314037661737382605277871245253046706888121227316647517032368934421713164963052010522789 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3662e210e63a4bee402db2db157cd4299dfd64a9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dynamicfenestration.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dynamicwindows.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dynamicfenestration.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dynamicwindows.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018deec5797e000004030047304502203fbc0c929e6d623aa547102a4a553c853718e2309218ea7ef03b6445385e8bac022100a8bc77ab08e66781eb4efee4d5cbb18ef0796229c027fedaffd08ddd0a38347300760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018deec579ef000004030047304502202d6f86d69f3124a570eb0ac197a61fd925b198c63277caecd5cfab7d7bc0accc022100cc6a3355b5b864c6a6eb00f5224805b270a2a700e8f11509aea0dfac8cbe8b46 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 001bb5bc8b5ad51763fddaea66284a108675f5a79ceafba7019135aa2d73791c8965a00f4973def5aadfc58db3c8cbf3aa3430faec13e87d67b680400883aee4ea8eb33e8eff7444a8b8f22db58d6c673f66852eb509ac6bd734c5114b8bf3c82dc3e25dd40d6b7bf6c5263f3556bb1725fa270847d739d39dac5aa88e9bc5433107013bb112fcfe8aa84e86cdff7d84eff4dff05f4899c77cf2c6d230aa6579da2bcae4588132da834ab359b00ca3a29fee7fe8851e3ff6204e17c01de65179210254366d0a9db580bce42f2036ae1f5144642fffbcf4f9d02c122f328364bcf8feeeb80186d013fc737732137be4c560d2ba3177fb87e430debdd629d2230abb