dynamicfenestration.com
Issued by R3
About this certificate
This digital certificate with serial number 03:16:41:69:29:06:96:c5:73:00:b0:92:59:85:55:80:b6:71 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=dynamicfenestration.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:16:41:69:29:06:96:c5:73:00:b0:92:59:85:55:80:b6:71Serial Number (int): 268910015710538376002454291142120052930161
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 2d:d9:04:ca:11:8a:1e:8d:93:bd:a1:8e:6e:21:99:ed:1f:5b:ce:d5
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d8:63:7f:bc:43:0c:65:9c:cf:ba:d5:58:21:2f:1c:cb:86:aa:a5:1d
Fingerprint (sha256): 91:68:9c:ee:35:a5:49:e1:79:05:2f:7c:64:40:f8:71:d9:11:11:6e:64:2c:fc:74:2c:f8:a1:0b:1f:e9:86:52
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate dynamicfenestration.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dynamicfenestration.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dynamicfenestration.com
dynamicwindows.com
www.dynamicfenestration.com
www.dynamicwindows.com
dynamicwindows.com
www.dynamicfenestration.com
www.dynamicwindows.com
Other certificates including the domain name dynamicfenestration.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for dynamicfenestration.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGRTCCBS2gAwIBAgISAxZBaSkGlsVzALCSWYVVgLZxMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MjkwNjExNThaFw0yNDA3MjgwNjExNTdaMCIxIDAeBgNVBAMT F2R5bmFtaWNmZW5lc3RyYXRpb24uY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8A MIICCgKCAgEAv82BYyo8sziGSrXJuzYfMLR70Dw0OZNYBfc9aGLcC71RixdBit0J 5Tu7i74FM2an21UM01YXQMEdRJMwS8rzvEbl7Jylr+VHKxv2zM+pTdpkTDX736fv F1xCzX3LKFQy/hHnVMJg52kYhTXrAio98U+27Yg/Z4+VD+wJ3itlFQAB0twT+Ah6 Y6MI2tGSnVXXUWVuuuUWG98tTmIRLte5eapQj4eqUyRNX8OdeLKE7X9mnlQZNXtT MOmHqslOx6Nfy2U+DBb4/RwL/FDacbVD+WgoPZu4BnCqPac5baUBcOM93Rxss54M 268zJL47YNISD30aSqlwM7HocVTnu6zN4zveTc/yrB0KHOjFKhM5dBPUgm50Nmsc Uh7tp25Mr/ArekNjBGCPp7SgYS9C4cjqri3wgK0gbUIwl3kJhMSjke37Nyu0+AiD oA6courSsNBt61KHGi4DBl+icxpRJulertfh8K1fwiX8oKU/59slROxZ/PGC8bER zkger1QinXBOUT7tQNjUnY/ojNaoojvDA6eqz/WGZw49ejcTt70aMKxj0iNH4LAK KCHr4wGYY+zAU70kMMvz9laEJ6hUmh2VdjbBLius/bAeZ1pwmBpWf84BCUiyJGw9 1cz/5VQz7p/KGgs6slMd4ynQZdrIOvuneLtwZVl4blPxpFhtcnt/ucUCAwEAAaOC AmMwggJfMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQULdkEyhGKHo2TvaGObiGZ7R9b ztUwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEE STBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUH MAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wawYDVR0RBGQwYoIXZHluYW1pY2Zl bmVzdHJhdGlvbi5jb22CEmR5bmFtaWN3aW5kb3dzLmNvbYIbd3d3LmR5bmFtaWNm ZW5lc3RyYXRpb24uY29tghZ3d3cuZHluYW1pY3dpbmRvd3MuY29tMBMGA1UdIAQM MAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcAdv+IPwq2+5VR wmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGPKLI1lAAABAMASDBGAiEAk4ZmBYFt xwolo5KhUhSwdlQG1H8GS8M3rarKwfz9Q6MCIQC57cy9haSCqVpUlmaA1WyiVE1m dv4C4VHkhTHVuAorAQB2ABmYEHEJ8NZSLjCA0p4/ZLuDbijM+Q9Sju7fzko/FrTK AAABjyiyNVcAAAQDAEcwRQIhAMJVazJ0Vkv0Hik7dDXCfx+3fTDr9Jnxu7bWtdo5 uoDBAiAQMuKfDPhmwP8QFtSmknCYaVEi38XboUcqXRcePEMKCDANBgkqhkiG9w0B AQsFAAOCAQEAmLa8E7o4NkxeRSJa1QQbjHS10H+lsKSzVFoPRRQ1Kq0lz9lF5qL9 DvWV42vCioEVTZK2srKIlmRGdQo7DtZ++OR6m1kZ6tfmQT22gT0zeYPBRuGelLxE JmYF2rtDfB44XcXGt8z3hVoqlypd+E0SGJKMWZ8dN+RJBgaeZQlhq27Im4ZJ9Qv0 ShZtjni33kWBmROZ/93F2va9xjpl7EcvBxyBRa3sEnDCta/LixsWTOf8aNg909ND 2m7yKa7uXxpWribz4rufbogSXu2N+PiFi+FILyOFaLvmzHaEW9lSqj5ocMg5BQmc JiVmSMuRfGONWWyuS5U0ORr/+/83sF2uDg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAv82BYyo8sziGSrXJuzYf MLR70Dw0OZNYBfc9aGLcC71RixdBit0J5Tu7i74FM2an21UM01YXQMEdRJMwS8rz vEbl7Jylr+VHKxv2zM+pTdpkTDX736fvF1xCzX3LKFQy/hHnVMJg52kYhTXrAio9 8U+27Yg/Z4+VD+wJ3itlFQAB0twT+Ah6Y6MI2tGSnVXXUWVuuuUWG98tTmIRLte5 eapQj4eqUyRNX8OdeLKE7X9mnlQZNXtTMOmHqslOx6Nfy2U+DBb4/RwL/FDacbVD +WgoPZu4BnCqPac5baUBcOM93Rxss54M268zJL47YNISD30aSqlwM7HocVTnu6zN 4zveTc/yrB0KHOjFKhM5dBPUgm50NmscUh7tp25Mr/ArekNjBGCPp7SgYS9C4cjq ri3wgK0gbUIwl3kJhMSjke37Nyu0+AiDoA6courSsNBt61KHGi4DBl+icxpRJule rtfh8K1fwiX8oKU/59slROxZ/PGC8bERzkger1QinXBOUT7tQNjUnY/ojNaoojvD A6eqz/WGZw49ejcTt70aMKxj0iNH4LAKKCHr4wGYY+zAU70kMMvz9laEJ6hUmh2V djbBLius/bAeZ1pwmBpWf84BCUiyJGw91cz/5VQz7p/KGgs6slMd4ynQZdrIOvun eLtwZVl4blPxpFhtcnt/ucUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 268910015710538376002454291142120052930161 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-29 06:11:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-28 06:11:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dynamicfenestration.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 782486973886964545058270029822630974878704251327031015963789507059877386119201882016478298636508058654988958032742864282863789531353758235488945560451442761418510058074454321023837049006307667392120097297005625978424616300611806504597266140565633734769532807656780754927756778970858813527936603220868705775213216577254758507754903991709283431211306722332401876626198017808637927401979155789158656312253698397607270938404679417072826149296724465756829146175297938525210043319795638769268519383167224084668736453916644978446019524026519574078703183744531318617555808255604716982986615722368503370059979256761671103555844268266972048849931593852409168408646491269535071084397586807407099819894675767958699798933560067382756757761681003545160594354562109900751579496142647070224460085132225431712837539487190160336480361999209704951854645404908591815647143149819491666359927721923576912216973646001994908401917076316049297851148741477887659259352335697559446285582103958352710533546471994672324880848838224376470168066802054083936862036907182086090989765296776339668898367282746877470511302847690756880970878754074601964601152697340913473103730042988773355331611594044495979219067496560984751260113549643222042297670444178386141589780933 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2dd904ca118a1e8d93bda18e6e2199ed1f5bced5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dynamicfenestration.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dynamicwindows.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dynamicfenestration.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dynamicwindows.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018f28b23594000004030048304602210093866605816dc70a25a392a15214b0765406d47f064bc337adaacac1fcfd43a3022100b9edccbd85a482a95a54966680d56ca2544d6676fe02e151e48531d5b80a2b010076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018f28b235570000040300473045022100c2556b3274564bf41e293b7435c27f1fb77d30ebf499f1bbb6d6b5da39ba80c102201032e29f0cf866c0ff1016d4a6927098695122dfc5dba1472a5d171e3c430a08 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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