bb.si

Issued by R3

About this certificate

This digital certificate with serial number 03:d4:54:18:60:01:bc:23:81:87:ce:3e:13:db:4c:a6:30:ed was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=bb.si

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:d4:54:18:60:01:bc:23:81:87:ce:3e:13:db:4c:a6:30:ed
Serial Number (int): 333588501296539008182309292307367334392045
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: cb:a9:d7:9b:a7:7d:f2:b9:b6:24:f2:4a:9f:ab:93:d2:1f:54:3d:db
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 57:a9:82:b4:95:e7:88:03:8d:61:1f:d3:6d:26:b6:74:5b:ae:95:df
Fingerprint (sha256): 9b:7a:10:a2:ce:06:10:0a:d0:79:d0:b4:8c:c2:d9:44:ee:21:19:5c:87:34:33:6e:91:fd:5f:4d:70:48:8f:93

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate bb.si

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for bb.si

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

bb.si

Other certificates including the domain name bb.si

(limited to 100 certificates)
bb.si
bb.si
bb.si
www.bb.si
evidenca.bb.si
evidenca.bb.si
www.bb.si
bb.si
www.bb.si
www.bb.si
www.bb.si
bb.si
www.bb.si
www.bb.si
bb.si
bb.si
www.bb.si
nova.bb.si
dashboard.bb.si
www.bb.si
bb.si
tracking.bb.si
bb.si
www.bb.si
www.bb.si
www.bb.si
bb.si
bb.si
bb.si
bb.si
www.bb.si
bb.si
bb.si
dashboard.bb.si
www.bb.si
bb.si
bb.si
www.bb.si
e-ucilnice.bb.si
www.bb.si
bb.si
www.bb.si
bb.si
posta.bb.si
www.bb.si
e-ucilnice.bb.si
bb.si
bb.si
bb.si
bb.si
bb.si
www.bb.si
bb.si
bb.si
dashboard.bb.si
bb.si
www.bb.si
bb.si
bb.si
bb.si
dashboard.bb.si
evidenca.bb.si
bb.si
www.bb.si
bb.si
bb.si
www.bb.si
dashboard.bb.si
www.bb.si
bb.si
bb.si
bb.si
bb.si
bb.si
www.bb.si
www.bb.si
bb.si
www.bb.si
evidenca.bb.si
bb.si
dashboard.bb.si
www.bb.si
bb.si
evidenca.bb.si
bb.si
www.bb.si
dashboard.bb.si
www.bb.si
www.bb.si
evidenca.bb.si
www.bb.si

Certificate

The complete raw certificate details for bb.si in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 333588501296539008182309292307367334392045
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-19 13:20:55 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-17 13:20:54 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bb.si'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 979642439436193316046159944672864389200278238795609501538317155087273406133712887386299253322077816881451365506496143519431918907611438221894660109667757012880763912221758269244297094042371772542830905316714375253345686875060015901549244284364077048789707831129852501348748095779887275974848618668491571085204023383204360286979402358019064018396637008045321857766530889284933905567451788256155986585951133617787789245807945992542018352784759013238249479460834851260326064795101661347546296164581678022165661077585016993968562990704256357037731401320540986029660007872052563935886519554796458419431376089478494086728578970179297486449997868814661009849910049580188350137359826689639260437891146534160272757717498787885997793652181260041385017355449111758635611028196852099892564080357527792164750344043542524420570483073258922193163511341252200371365237211016507697017487798763432699906837213688201406683633217345758171921036892733148993892247385680213161883308567110027341736650664259839502665208284781229069250785674282934100384649522945110543366322712538496411445173338824752724722205726713008235577861576490011241820916098310373453116928569851957783973801458256385251231127724303721421369400597206717271994868927186383610961595567
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							cba9d79ba77df2b9b624f24a9fab93d21f543ddb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (9 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bb.si'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b484f91080000040300463044022049be7fa1f24dc6e381207699075125b9bad1f739023e7d980210ad43252e6bd1022075a61b8a3a8480f3a9d8087c25dc71c7977e24d7677f2dab5f75c7fe4f0e6d6f00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018b484f914a0000040300473045022100d4315017f8123c75523d23d1e9e78c700a75580adb65daa56f109a4e96d20deb02207eb12f6e5b2054815fd592a0a711774fb8e4b3b00ffc18ad940db9bb0575b137
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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