www.poczta.mdkchodziez.pl

Issued by R11

About this certificate

This digital certificate with serial number 03:26:e8:c9:a6:bb:c0:9e:81:b2:e4:95:4b:b9:37:d8:af:c1 was issued on by Let's Encrypt.

With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=www.poczta.mdkchodziez.pl

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 03:26:e8:c9:a6:bb:c0:9e:81:b2:e4:95:4b:b9:37:d8:af:c1
Serial Number (int): 274577015666722340875342138217369173536705
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: a4:cf:b6:95:64:86:e7:87:bd:9f:73:5a:3b:29:f0:f9:4e:f4:85:45
AuthorityKeyId: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (sha1): 61:d9:b5:31:db:2e:4b:e7:49:a0:13:83:ae:b7:c2:60:0d:22:97:df
Fingerprint (sha256): 9f:11:aa:37:db:a3:d1:93:3c:fd:cf:11:06:f7:df:b3:1c:83:0c:c7:80:bf:00:55:e7:e1:71:53:d0:03:c0:59

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation information

OCSP Server: http://r11.o.lencr.org

Check the revocation status for certificate www.poczta.mdkchodziez.pl

6

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.poczta.mdkchodziez.pl

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.mdkchodziez.pl
mdkchodziez.mdkchodziez.xaa.pl
mdkchodziez.pl
www.mdkchodziez.mdkchodziez.pl
www.mdkchodziez.mdkchodziez.xaa.pl
www.poczta.mdkchodziez.pl

Other certificates including the domain name mdkchodziez.pl

(limited to 100 certificates)
*.mdkchodziez.pl
*.mdkchodziez.pl
www.poczta.mdkchodziez.pl

Certificate

The complete raw certificate details for www.poczta.mdkchodziez.pl in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNHduQte/X6tIG5cdo5d
r//T/9DTlM7hsemaZyh4CItB5ptySYYcvyy02o5PdVX1wIB3NNsvoKq/A9DFvkNp
UDFXvBKJ2V222ulQnsDir2S8l6gY75E+LITJjST8GImZraVakPcPG/gvyqQys44q
wgdOwpTCHf7mCN105E94nWX7JJHajwp1IbrOhQAoSvwfS2Die6485gJt5tWxXdXC
W0Mey7vTLpRiah2vDMiXU2vEVOYg0u9W+KaBura42ZUc+FdCm83Z/WjLejCjlTEn
+Iwo6y0nVZdl9uZHKsq3np1WyNWJinvPaDwsehNWmD2Jqiig4iCsMsvsqgfIS68v
SwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 274577015666722340875342138217369173536705
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-11 00:59:56 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-09 00:59:55 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.poczta.mdkchodziez.pl'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22321430507386684284089650457622696931705937537350121707716760167805821972450990909962055901174032245167086029316460785303934649951079675573494600170204332240673886363432044458280969575200211180127231276767559915766559519293703842909011491229510554107511236339044154202086468481738146132871813716517596787368869668496525247706008492287429738165789653347826696627188117569520011173273634019958756437728751204089735758125936493456733925756602599418013839462105796122849917038334323862404908215588027818871121164827300369712837547287854756821324678244566575957810337761391071884581498625345794166927724947202301536186187
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a4cfb6956486e787bd9f735a3b29f0f94ef48545
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (164 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mdkchodziez.pl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mdkchodziez.mdkchodziez.xaa.pl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mdkchodziez.pl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mdkchodziez.mdkchodziez.pl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mdkchodziez.mdkchodziez.xaa.pl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.poczta.mdkchodziez.pl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee0075001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca000001900505fa0f000004030046304402200c30dfc2b4013ca0f73e64eaa64b51eb9fa8dd83a14eeb386af50ad99e5bd23602207644bc9ece7bcc47932620f6f3a6321a4132273a0343001c61dc5e8ba9cebfd80075003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e000001900505fa1500000403004630440220376c600bfa9981faeecc5d6548e89f07b317b4ecec61b0c4c9e37bbef2a5cc50022005cb06bf0baaa45b60347cb5693c1e52b0b9e770aef05d9cbb9004ed10f9dded
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00683812fb2a581c8100704ee415c0756be075374af80566eaaa2ec87f06737733f4c6255fb55d1aaa60a21f07c2315d9a42f02794d1b8828ec17f1c14194e1ecb601c3ecb443dbd56d6a08a7f9f13c77e0666c3f3f69e38a5d1e4194b83cdaa511e72d71fa5efb521b0000a51241537a7c3de1dca3d76e9bb4a74146a94b0c50d14ea38028b5a096322c538df1611dd953c6a18d7f0e2e02c665b64d62460860649a7841417f524e1da1ef4bbed4e2ec00bee6bdc603d75e7a656e790b0a77118419d54362b8d77de0a9622c72671e8de8154b94ddf03db53cd1999005ae52024ed0b0714d6f5ff88e6dc98c54107496c7c10ce54c064ebdb3c3fb3b1ab7e7728