mydms.cz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:80:d0:2f:31:0f:31:96:10:f5:09:76:50:b1:42:f0:d0:2f was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=mydms.cz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:80:d0:2f:31:0f:31:96:10:f5:09:76:50:b1:42:f0:d0:2fSerial Number (int): 392282011149038562749348082348413976367151
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 60:69:6f:2f:cb:67:c4:e4:75:7b:2d:36:0c:68:08:11:77:7b:4a:2c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 1e:59:f5:68:2a:af:4d:e8:00:07:1b:44:35:2a:42:17:53:d5:7b:68
Fingerprint (sha256): 98:62:a3:72:b9:f0:49:97:e2:8e:e5:25:cb:b8:8e:7f:23:13:ef:fc:f3:cf:36:fb:12:55:0f:4d:b4:a8:26:3e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate mydms.cz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mydms.cz
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mydms.cz
www.mydms.cz
www.mydms.cz
Other certificates including the domain name mydms.cz
(limited to 100 certificates)
Certificate
The complete raw certificate details for mydms.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVjCCBT6gAwIBAgISBIDQLzEPMZYQ9Ql2ULFC8NAvMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMTUxNzU0NTdaFw0y MDAzMTQxNzU0NTdaMBMxETAPBgNVBAMTCG15ZG1zLmN6MIICIjANBgkqhkiG9w0B AQEFAAOCAg8AMIICCgKCAgEAq3sBz2/uvF5EeGpNtacDr25PxfEQv35Ln9duRvdi qP/dkpNlZNw5YdA033c2a7e1IvJUwMZcLJcO86N2fu4Yk2JBuYsSmUTjY0Ki/BdW bTtIuxESAYrsMA0tjTcFIp5mDvEXP7HD2HFHIxEUqQa8iGIFqNp6wl+kbpZEqbAP GLxWnr1hXEjWmxSJEBDnKVdOuU6b/31K1QBolc1J1XJPVELMhBy/ue3+n0TswSzn 3ud5luVvikD73vijS2rIlSm1rRqqur08GGbicoXBfi7ppiugvYXdIFXvZCNq3Xeh QORLGIp7uHy5yPkggtB/8tQlDlOaXaSj1AzCMWrjmEFUYw0cXQGYE9vpotl4I919 6Pnpsje5RzW/BlrdrhMGAcVEFH+gYR2tjskTwu/5r4ByzRcksIyWPU4CfZTMLYbL zL9IhrYwRCvB4qYNVTsse3OioshnpBXzCEj+QqsK56+MzQmLT2Jeq6uY//gdO2jK Y6/kopSjmpyPAuR1eViv5n8GbfL2TRzoTLLaQ/gRDNOGSF1oJ4+Q6MZiJx32yqmb UyTegO0d5h0kT35P90/1VbrMqwcdt1Pq+XgCkV2iQnE+/cfcaA8DR9aaeYYbaFXn MYmI/MHqgUTnzHreDe/KFIm8/Tz1L8F0sGUDIOrCeK28JmvR0HZbHzKLGoQt7CJ8 GAMCAwEAAaOCAmswggJnMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUYGlvL8tnxOR1 ey02DGgIEXd7SiwwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYI KwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0 c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0 c2VuY3J5cHQub3JnLzAhBgNVHREEGjAYgghteWRtcy5jeoIMd3d3Lm15ZG1zLmN6 MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB 9QSB8gDwAHYAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFvCuni DgAABAMARzBFAiAnMFbuaBU8pJsJD21GMvjSf4BwVj+V3diXzn+dNChxhwIhAMzd mG8VshuTdjlYvrg20wGuq0Vz5OMcUZkGiAoGx8P8AHYAB7dcG+V9aP/xsMYdIxXH uuZXfFeUt2ruvGE6GmnTohwAAAFvCuniNwAABAMARzBFAiEAsUrsxJ6oLApXSTAn pqGa90yxGNjjmiYLy/9xKw3t7swCIAiddZ+F6eqIXhcYhLJUgSVk3yoOsv2SBOO2 EqZGqCfNMA0GCSqGSIb3DQEBCwUAA4IBAQBC4Ju0qmqacJ3qPNcb1yaJ9A61EkhA 4eAjicxmhkCYYoHgbtfSuw2BtgVe7ZJ0/NjM2h1JR2h+HHx+ORGuSKbMHqOki5jm kL3GWukhlyBknHSe1YyuBVo0UB94eSWeCLwAoPjaH8XUnRd0ahjBWFXHXMoTlrKz VIpMu5K82kTykbiaqFTLsOYzMAROspi2JsteSRszTydQ9q98ovIyv4DKtQ5JI3An FEpstmjI2nkDdv6cDVgjwseQSvlnmc9Niu1MzwImrdhWxd5GrEot7SjMFbOAvioX jtM5Pei0766OeM89HaGTGXt/bFk/NMI2PssjhzYkrhscooeIWd+QqmB2 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAq3sBz2/uvF5EeGpNtacD r25PxfEQv35Ln9duRvdiqP/dkpNlZNw5YdA033c2a7e1IvJUwMZcLJcO86N2fu4Y k2JBuYsSmUTjY0Ki/BdWbTtIuxESAYrsMA0tjTcFIp5mDvEXP7HD2HFHIxEUqQa8 iGIFqNp6wl+kbpZEqbAPGLxWnr1hXEjWmxSJEBDnKVdOuU6b/31K1QBolc1J1XJP VELMhBy/ue3+n0TswSzn3ud5luVvikD73vijS2rIlSm1rRqqur08GGbicoXBfi7p piugvYXdIFXvZCNq3XehQORLGIp7uHy5yPkggtB/8tQlDlOaXaSj1AzCMWrjmEFU Yw0cXQGYE9vpotl4I9196Pnpsje5RzW/BlrdrhMGAcVEFH+gYR2tjskTwu/5r4By zRcksIyWPU4CfZTMLYbLzL9IhrYwRCvB4qYNVTsse3OioshnpBXzCEj+QqsK56+M zQmLT2Jeq6uY//gdO2jKY6/kopSjmpyPAuR1eViv5n8GbfL2TRzoTLLaQ/gRDNOG SF1oJ4+Q6MZiJx32yqmbUyTegO0d5h0kT35P90/1VbrMqwcdt1Pq+XgCkV2iQnE+ /cfcaA8DR9aaeYYbaFXnMYmI/MHqgUTnzHreDe/KFIm8/Tz1L8F0sGUDIOrCeK28 JmvR0HZbHzKLGoQt7CJ8GAMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 392282011149038562749348082348413976367151 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-15 17:54:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-14 17:54:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mydms.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 699579389809304740085071837141372906405819683280275917118971025671748442371038299567926380729799903290656500132650149985465084202141383582733557929843163876471793973452583237201894386784097248509649637020099660875926186883145859945034537018902085585873860811052750195334648507997925031736635277887550405713656672251748261519900340258688441184792360260729452566133709786337347282411152444920735165184050284916347637263974547665099787071475420863816282883755130527648399185801760800844890721104090165012829182640063441916758367539626091887558196743337304900790527480240032660501133398640436301610041301217148281168625201358217911200143542072544699989977322751649132641987252191866011930406394475102854130650791186908067102811398155219539871209564180613796029807206391633965437265962631633720730559338811177519527230037301285586986582487606009925410018117455415628386196670667903008882888894444408995247203231296988332367504567959869724656002572698675895106495778166989072107790768029165602570837404569051996511499344830510277609299670788753183148938755028903459452012810418655722738692856162323881333298475012243115475292339465778410164617999661315100808888709054470305071006907136831158954604974215801243517029732330741411192963340291 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 60696f2fcb67c4e4757b2d360c680811777b4a2c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mydms.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mydms.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f0ae9e20e00000403004730450220273056ee68153ca49b090f6d4632f8d27f8070563f95ddd897ce7f9d34287187022100ccdd986f15b21b93763958beb836d301aeab4573e4e31c519906880a06c7c3fc00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016f0ae9e2370000040300473045022100b14aecc49ea82c0a57493027a6a19af74cb118d8e39a260bcbff712b0dedeecc0220089d759f85e9ea885e171884b254812564df2a0eb2fd9204e3b612a646a827cd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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