aluminyum-tup.com
Issued by R3
About this certificate
This digital certificate with serial number 03:36:4f:22:26:63:1e:c8:6a:59:81:85:d4:64:46:82:7e:72 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=aluminyum-tup.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:36:4f:22:26:63:1e:c8:6a:59:81:85:d4:64:46:82:7e:72Serial Number (int): 279817291937356295370348847419276377882226
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b7:6e:ab:36:aa:4b:e9:69:2b:66:64:c3:51:ef:e3:f5:1d:db:35:b6
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 21:8e:21:60:4e:96:1e:ec:de:4b:07:b7:55:02:9a:32:78:c5:db:2d
Fingerprint (sha256): 97:7f:f8:be:2f:da:5f:12:ad:a1:c1:0e:f2:62:06:d2:6a:21:a9:1c:32:ff:f3:83:33:8a:cc:70:0f:c6:2b:44
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate aluminyum-tup.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for aluminyum-tup.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
Other certificates including the domain name aluminyum-tup.com
(limited to 100 certificates)
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
*.aluminyum-tup.com
aluminyum-tup.com
*.aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
www.aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
www.aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
*.aluminyum-tup.com
aluminyum-tup.com
*.aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
www.aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
www.aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
aluminyum-tup.com
Certificate
The complete raw certificate details for aluminyum-tup.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgISAzZPIiZjHshqWYGF1GRGgn5yMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMDIxMzA1NTdaFw0yNDA1MDIxMzA1NTZaMBwxGjAYBgNVBAMT EWFsdW1pbnl1bS10dXAuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ncncd9rNU8EnTYwvvGQK/h0DPi1nZrexl7Fni2/c+oVsjwheozyBRe7YEdG hkt4ja/fAnwnBWbbu0NakeO60APCOFMPIov2dVb0d1lA7xa1Cik8+p1Uisq6H8Kq ra5NhV3aEHfEohb8h3H5KcWCHL0JSFQsBUSVF/KyQTwkYnbrL8ewy/yGtGyxuaR7 Z2pY568Ejkt1O4HfeTtsjgp5uoQIyYEiVfukIWGiav47yb4l0wsvGTzPt/gZCY+d N1sF4s6lLDa0jmtTeKAlr0Hs3yGUQwEVdYjBGqdvigKBVSk5JU27/F8JIqSVuI1i bcwKeRcCyQBaNHvfQo6Z06i8nwIDAQABo4ICKjCCAiYwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0G A1UdDgQWBBS3bqs2qkvpaStmZMNR7+P1Hds1tjAfBgNVHSMEGDAWgBQULrMXt1hW y65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6 Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iu b3JnLzAxBgNVHREEKjAoghMqLmFsdW1pbnl1bS10dXAuY29tghFhbHVtaW55dW0t dHVwLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQYGCisGAQQB1nkCBAIEgfcE gfQA8gB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjWoj8ikA AAQDAEgwRgIhALDudCq3A4l+0kyxwagLDmiGnZAVROAoereA4mSH79l0AiEAtnOY 7NB4O7t82GkFDfLlR5DEOQE/IPNdIVqrExxRaXAAdwA7U3d1Pi25gE6LMFsG/kA7 Z9hPw/THvQANLXJv4frUFwAAAY1qI/QmAAAEAwBIMEYCIQCl6QGQuxms9lZGuwmt XCrXoCojNWjjGjYKt+Hv4EbCtgIhALUeeAf8ueSwPiApCMlBkw07d1nIAgWiObtS jpKov509MA0GCSqGSIb3DQEBCwUAA4IBAQBQ9Oc7MJmHP1OuNvhLQyXCKefx2Ref wgJ1lSgXgLH86sWhnGJKjbx205MgEZjw7h/UuDg/3V2r8Q4YBRsyVf5iw3adgo3F CECIISoCf3yT0gxCr8eu0tyqM8D1Q5v1FsmWiLM+4Rs6HZydIPHKB1XtgH8LM7cg 38F30oCgQA1lICtrpGesD/ejfrt8rqZ9WfbqvUmwTbeMEcJslzX4I3BAc/qK0ukM abE73hubVyme9svVBEVZbMsAhZSlbVUWTdwqM4mOZyZVh2Ei+3x9RuGU/wo96em3 Xp3Qhv8N5hbGRjR1siukjCPaiSWPLzIEnCYh/WecHXy++U3/i8zJFtqo -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ncncd9rNU8EnTYwvvGQ K/h0DPi1nZrexl7Fni2/c+oVsjwheozyBRe7YEdGhkt4ja/fAnwnBWbbu0NakeO6 0APCOFMPIov2dVb0d1lA7xa1Cik8+p1Uisq6H8Kqra5NhV3aEHfEohb8h3H5KcWC HL0JSFQsBUSVF/KyQTwkYnbrL8ewy/yGtGyxuaR7Z2pY568Ejkt1O4HfeTtsjgp5 uoQIyYEiVfukIWGiav47yb4l0wsvGTzPt/gZCY+dN1sF4s6lLDa0jmtTeKAlr0Hs 3yGUQwEVdYjBGqdvigKBVSk5JU27/F8JIqSVuI1ibcwKeRcCyQBaNHvfQo6Z06i8 nwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 279817291937356295370348847419276377882226 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-02 13:05:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-02 13:05:56 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'aluminyum-tup.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26568801110272144383841378605362258507754163858651742395835112882321704905356149960431010485861470926307236965923996046855501503987565345279333070723854618903237004058858599326945691921494425000378512080280914466441066203691422994332733210112067793129056027756009424126789675035448973945465048974376986115862420115690787189947275662955261411449393385415284729541210593939578200652474106484589694508363604142044308368371935098961949386036309012364559991290629137236846849050384225020282544511989780734799280254238336158399183050350658706550591995272977856742966149346302678577091624413608000695830680559144283031518367 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b76eab36aa4be9692b6664c351efe3f51ddb35b6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.aluminyum-tup.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aluminyum-tup.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f200770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d6a23f2290000040300483046022100b0ee742ab703897ed24cb1c1a80b0e68869d901544e0287ab780e26487efd974022100b67398ecd0783bbb7cd869050df2e54790c439013f20f35d215aab131c5169700077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d6a23f4260000040300483046022100a5e90190bb19acf65646bb09ad5c2ad7a02a233568e31a360ab7e1efe046c2b6022100b51e7807fcb9e4b03e202908c941930d3b7759c80205a239bb528e92a8bf9d3d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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