www.broach.nl
Issued by R3
About this certificate
This digital certificate with serial number 04:a8:c9:47:82:bb:20:2a:14:b1:3e:d4:89:5d:ad:84:45:75 was issued on by Let's Encrypt.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.broach.nl
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:a8:c9:47:82:bb:20:2a:14:b1:3e:d4:89:5d:ad:84:45:75Serial Number (int): 405884127501527241769358046795783693682037
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: d1:bc:9e:2c:f8:6b:7e:b3:30:12:02:99:24:17:1d:15:74:c1:e0:71
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 56:45:6b:4f:09:9b:70:f1:a3:7f:c9:42:56:65:11:c7:84:af:1d:7c
Fingerprint (sha256): 90:6d:c4:7a:c7:58:ef:5b:3e:c6:9e:cc:96:48:eb:d0:57:11:7f:bd:e9:72:e2:f3:31:91:f0:77:4c:6e:f1:48
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.broach.nl
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.broach.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
3elustrum.broach.nl
broach.nl
wedstrijdzeilen.tudelft.nl
www.3elustrum.broach.nl
www.broach.nl
www.wedstrijdzeilen.tudelft.nl
broach.nl
wedstrijdzeilen.tudelft.nl
www.3elustrum.broach.nl
www.broach.nl
www.wedstrijdzeilen.tudelft.nl
Other certificates including the domain name broach.nl
(limited to 100 certificates)
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
app.broach.nl
www.broach.nl
lustrum.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
app.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
app.broach.nl
www.broach.nl
broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
app.broach.nl
www.broach.nl
lustrum.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
app.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
app.broach.nl
www.broach.nl
broach.nl
www.broach.nl
www.broach.nl
www.broach.nl
Certificate
The complete raw certificate details for www.broach.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYDCCBUigAwIBAgISBKjJR4K7ICoUsT7UiV2thEV1MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMTcxNTQwMTNaFw0yNDA1MTcxNTQwMTJaMBgxFjAUBgNVBAMT DXd3dy5icm9hY2gubmwwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDp CtvBKzled6VCwDfzi5aZytPAjqvZHpR7Tr+qNIVlqXVNE7ryFx/X3tmW/tCp1uCK k5Uq488jgKk10Y1+mAh3GTaz+XrdEalC/GBdlmYYiajYHSvOcksuRlWEd7pzVmoM wgQ1Tavz5VGuy6xZ33QcSxjbe4Kov1E+l8AlccgxlXtUCimZGKax1nOZjohtynPv MqOkO9a5CF/gJX44qpMpSIDmS01QPi1BErzV065CE/A+7EUdQyT2K+faOZAWnLUf Q37oHg4hxphOdB049mgsqc81cqfssOvR7/5TCv/Iyxh7L5FsO37KXHRhpBlvNGql aotTOjv+PMX3GfuxGblEkHe94QryqjZ6nqHorPbhI3//e+EXF3IqC8dMbTOWWpC5 sQQJABudlkV1V08AIm0f0W2Hkklip7xJvQAFlh7FnlrGUAypb92EfqF979AHhvbK +k+en4bBD0TzYDB7MOge0TCLxLuHLb8Kdluc9oGBUdA1nQ76qGjW2BzYgeiUtrpI 6+dMQ7vE6n3pqN6qCjOjP4a5K2VedpvImzUm9Pr1sj5/7yqwYXKspCzxrDKKSDq3 sxbY/C1FJuEYuBFQ0nR31sGHag+Sbv9NlLkMXvt+R3CdG/rdFYI/m6A6nOsN3FfE 3XC/BPyusCrHdwKSG4VUJ362rlyETS5W9Hmxa284UQIDAQABo4ICiDCCAoQwDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNV HRMBAf8EAjAAMB0GA1UdDgQWBBTRvJ4s+Gt+szASApkkFx0VdMHgcTAfBgNVHSME GDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYB BQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDov L3IzLmkubGVuY3Iub3JnLzCBjwYDVR0RBIGHMIGEghMzZWx1c3RydW0uYnJvYWNo Lm5sgglicm9hY2gubmyCGndlZHN0cmlqZHplaWxlbi50dWRlbGZ0Lm5sghd3d3cu M2VsdXN0cnVtLmJyb2FjaC5ubIINd3d3LmJyb2FjaC5ubIIed3d3LndlZHN0cmlq ZHplaWxlbi50dWRlbGZ0Lm5sMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYB BAHWeQIEAgSB9gSB8wDxAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznY hHMAAAGNt/CVdgAABAMASDBGAiEA/qtHLU1DShPxO9my0cBfx1r5+42ZUgkNrRf/ LTGuFNECIQDn0H2PbVc8LixKZTsysxLjqIKe4j/CBIqD/aAnxBRHTgB2AKLiv9Ye 3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfYAAABjbfwlYMAAAQDAEcwRQIhAMCD gp7fBc2B3Ue8aU58sg+OBIXdYHlO7c4l5fgdb6ibAiAEucckFRVzHphq+cCNJfcn mTjxIpDP2aQ7YWIWd0eLtzANBgkqhkiG9w0BAQsFAAOCAQEAAYJ0ltbxAjJk3Rbh 87kr089wk71b9J+OuHNtNSdQARGMY9gvN2+X7rYpk4d34oQzz/79EkyapPj9Qxkn xcod7cQB4PWFg2e3NL5ChpWTk6uBIcT5MS9t3WnQSyonTYssr1I8tyGl4I7msVc5 JyklYvKAM+TYnDMz80e0WG5vXtA6StRQeanOMKakbVt30A+X1+0M6BZWFOSGGjpy qtylShf1eudilY7+qB+DYOgKmZ/BTamHOhWK4UNMbpQeXE93oLjMMDYIvlscGsEx wivMYQnNMRUA3ZX1P7ke7HFjj6jdoXOVodnGVk3VXI48ELL7hOTpWe60po0Tonmj c6xdOA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6QrbwSs5XnelQsA384uW mcrTwI6r2R6Ue06/qjSFZal1TRO68hcf197Zlv7QqdbgipOVKuPPI4CpNdGNfpgI dxk2s/l63RGpQvxgXZZmGImo2B0rznJLLkZVhHe6c1ZqDMIENU2r8+VRrsusWd90 HEsY23uCqL9RPpfAJXHIMZV7VAopmRimsdZzmY6Ibcpz7zKjpDvWuQhf4CV+OKqT KUiA5ktNUD4tQRK81dOuQhPwPuxFHUMk9ivn2jmQFpy1H0N+6B4OIcaYTnQdOPZo LKnPNXKn7LDr0e/+Uwr/yMsYey+RbDt+ylx0YaQZbzRqpWqLUzo7/jzF9xn7sRm5 RJB3veEK8qo2ep6h6Kz24SN//3vhFxdyKgvHTG0zllqQubEECQAbnZZFdVdPACJt H9Fth5JJYqe8Sb0ABZYexZ5axlAMqW/dhH6hfe/QB4b2yvpPnp+GwQ9E82AwezDo HtEwi8S7hy2/CnZbnPaBgVHQNZ0O+qho1tgc2IHolLa6SOvnTEO7xOp96ajeqgoz oz+GuStlXnabyJs1JvT69bI+f+8qsGFyrKQs8awyikg6t7MW2PwtRSbhGLgRUNJ0 d9bBh2oPkm7/TZS5DF77fkdwnRv63RWCP5ugOpzrDdxXxN1wvwT8rrAqx3cCkhuF VCd+tq5chE0uVvR5sWtvOFECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 405884127501527241769358046795783693682037 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-17 15:40:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-17 15:40:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.broach.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 950730108760934873997673701814850594299291324932545293958969953599904614316866609199148593667867274690220681735557562387100642583818950951948253428228718940237001391355854161804965346053581861565133284946898779912551587099728375839560381478232139988736285534608996562675811249909378402517502931114087404013043418635937904084080934090488437962834583337505315956300948741561709365181203671306661893687119144018635994659788275914509968483134292196177623074610721094266739629393512052593437257995318240164847493139922643383020516893848046440222266228219209754193370623731726731463067532065668332429080154853278772212766663937120814751301178219264743579779154053606701128205639572879040327590631217928635750797876340343598638182295884858086081688312416537657905610347290361902432487696340413291346759890018304422758629138717801449577632822002932279350351188841999017659654524256866624186983160513668513869824199397232332210545830231363579477002576506661287245755330575627846090226518079769359764993542919367800801521853513534656674569286300703545746626862678636871772224687388338290980459938966428381921538681599087612763870263199797343352682236375511457790399783343169098359957305057542417573392165122446232832305952084905887654998915153 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d1bc9e2cf86b7eb33012029924171d1574c1e071 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '3elustrum.broach.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'broach.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wedstrijdzeilen.tudelft.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.3elustrum.broach.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.broach.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wedstrijdzeilen.tudelft.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018db7f095760000040300483046022100feab472d4d434a13f13bd9b2d1c05fc75af9fb8d9952090dad17ff2d31ae14d1022100e7d07d8f6d573c2e2c4a653b32b312e3a8829ee23fc2048a83fda027c414474e007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018db7f095830000040300473045022100c083829edf05cd81dd47bc694e7cb20f8e0485dd60794eedce25e5f81d6fa89b022004b9c7241515731e986af9c08d25f7279938f12290cfd9a43b61621677478bb7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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