www.poczta.mdkchodziez.pl
Issued by R11
About this certificate
This digital certificate with serial number 03:26:e8:c9:a6:bb:c0:9e:81:b2:e4:95:4b:b9:37:d8:af:c1 was issued on by Let's Encrypt.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.poczta.mdkchodziez.pl
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:26:e8:c9:a6:bb:c0:9e:81:b2:e4:95:4b:b9:37:d8:af:c1Serial Number (int): 274577015666722340875342138217369173536705
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a4:cf:b6:95:64:86:e7:87:bd:9f:73:5a:3b:29:f0:f9:4e:f4:85:45
AuthorityKeyId: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9
Fingerprint (sha1): 61:d9:b5:31:db:2e:4b:e7:49:a0:13:83:ae:b7:c2:60:0d:22:97:df
Fingerprint (sha256): 9f:11:aa:37:db:a3:d1:93:3c:fd:cf:11:06:f7:df:b3:1c:83:0c:c7:80:bf:00:55:e7:e1:71:53:d0:03:c0:59
Issuing Certificate URL: http://r11.i.lencr.org/
Revocation information
OCSP Server: http://r11.o.lencr.orgCheck the revocation status for certificate www.poczta.mdkchodziez.pl
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.poczta.mdkchodziez.pl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.mdkchodziez.pl
mdkchodziez.mdkchodziez.xaa.pl
mdkchodziez.pl
www.mdkchodziez.mdkchodziez.pl
www.mdkchodziez.mdkchodziez.xaa.pl
www.poczta.mdkchodziez.pl
mdkchodziez.mdkchodziez.xaa.pl
mdkchodziez.pl
www.mdkchodziez.mdkchodziez.pl
www.mdkchodziez.mdkchodziez.xaa.pl
www.poczta.mdkchodziez.pl
Other certificates including the domain name mdkchodziez.pl
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.poczta.mdkchodziez.pl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgISAyboyaa7wJ6BsuSVS7k32K/BMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTEwHhcNMjQwNjExMDA1OTU2WhcNMjQwOTA5MDA1OTU1WjAkMSIwIAYDVQQD Exl3d3cucG9jenRhLm1ka2Nob2R6aWV6LnBsMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAsNHduQte/X6tIG5cdo5dr//T/9DTlM7hsemaZyh4CItB5pty SYYcvyy02o5PdVX1wIB3NNsvoKq/A9DFvkNpUDFXvBKJ2V222ulQnsDir2S8l6gY 75E+LITJjST8GImZraVakPcPG/gvyqQys44qwgdOwpTCHf7mCN105E94nWX7JJHa jwp1IbrOhQAoSvwfS2Die6485gJt5tWxXdXCW0Mey7vTLpRiah2vDMiXU2vEVOYg 0u9W+KaBura42ZUc+FdCm83Z/WjLejCjlTEn+Iwo6y0nVZdl9uZHKsq3np1WyNWJ invPaDwsehNWmD2Jqiig4iCsMsvsqgfIS68vSwIDAQABo4ICpDCCAqAwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBSkz7aVZIbnh72fc1o7KfD5TvSFRTAfBgNVHSMEGDAW gBTFz0ak6vTDwHpslcQtsF6SLybjuTBXBggrBgEFBQcBAQRLMEkwIgYIKwYBBQUH MAGGFmh0dHA6Ly9yMTEuby5sZW5jci5vcmcwIwYIKwYBBQUHMAKGF2h0dHA6Ly9y MTEuaS5sZW5jci5vcmcvMIGsBgNVHREEgaQwgaGCECoubWRrY2hvZHppZXoucGyC Hm1ka2Nob2R6aWV6Lm1ka2Nob2R6aWV6LnhhYS5wbIIObWRrY2hvZHppZXoucGyC Hnd3dy5tZGtjaG9kemllei5tZGtjaG9kemllei5wbIIid3d3Lm1ka2Nob2R6aWV6 Lm1ka2Nob2R6aWV6LnhhYS5wbIIZd3d3LnBvY3p0YS5tZGtjaG9kemllei5wbDAT BgNVHSAEDDAKMAgGBmeBDAECATCCAQIGCisGAQQB1nkCBAIEgfMEgfAA7gB1ABmY EHEJ8NZSLjCA0p4/ZLuDbijM+Q9Sju7fzko/FrTKAAABkAUF+g8AAAQDAEYwRAIg DDDfwrQBPKD3PmTqpktR65+o3YOhTus4avUK2Z5b0jYCIHZEvJ7Oe8xHkyYg9vOm MhpBMic6A0MAHGHcXoupzr/YAHUAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8o hez4ZG4AAAGQBQX6FQAABAMARjBEAiA3bGAL+pmB+u7MXWVI6J8Hsxe07OxhsMTJ 43u+8qXMUAIgBcsGvwuqpFtgNHy1aTweUrC553Cu8F2cu5AE7RD53e0wDQYJKoZI hvcNAQELBQADggEBAGg4EvsqWByBAHBO5BXAdWvgdTdK+AVm6qouyH8Gc3cz9MYl X7VdGqpgoh8HwjFdmkLwJ5TRuIKOwX8cFBlOHstgHD7LRD29Vtagin+fE8d+BmbD 8/aeOKXR5BlLg82qUR5y1x+l77UhsAAKUSQVN6fD3h3KPXbpu0p0FGqUsMUNFOo4 AotaCWMixTjfFhHdlTxqGNfw4uAsZltk1iRghgZJp4QUF/Uk4doe9LvtTi7AC+5r 3GA9deemVueQsKdxGEGdVDYrjXfeCpYixyZx6N6BVLlN3wPbU80ZmQBa5SAk7QsH FNb1/4jm3JjFQQdJbHwQzlTAZOvbPD+zsat+dyg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNHduQte/X6tIG5cdo5d r//T/9DTlM7hsemaZyh4CItB5ptySYYcvyy02o5PdVX1wIB3NNsvoKq/A9DFvkNp UDFXvBKJ2V222ulQnsDir2S8l6gY75E+LITJjST8GImZraVakPcPG/gvyqQys44q wgdOwpTCHf7mCN105E94nWX7JJHajwp1IbrOhQAoSvwfS2Die6485gJt5tWxXdXC W0Mey7vTLpRiah2vDMiXU2vEVOYg0u9W+KaBura42ZUc+FdCm83Z/WjLejCjlTEn +Iwo6y0nVZdl9uZHKsq3np1WyNWJinvPaDwsehNWmD2Jqiig4iCsMsvsqgfIS68v SwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 274577015666722340875342138217369173536705 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-11 00:59:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-09 00:59:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.poczta.mdkchodziez.pl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22321430507386684284089650457622696931705937537350121707716760167805821972450990909962055901174032245167086029316460785303934649951079675573494600170204332240673886363432044458280969575200211180127231276767559915766559519293703842909011491229510554107511236339044154202086468481738146132871813716517596787368869668496525247706008492287429738165789653347826696627188117569520011173273634019958756437728751204089735758125936493456733925756602599418013839462105796122849917038334323862404908215588027818871121164827300369712837547287854756821324678244566575957810337761391071884581498625345794166927724947202301536186187 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a4cfb6956486e787bd9f735a3b29f0f94ef48545 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (164 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mdkchodziez.pl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mdkchodziez.mdkchodziez.xaa.pl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mdkchodziez.pl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mdkchodziez.mdkchodziez.pl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mdkchodziez.mdkchodziez.xaa.pl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.poczta.mdkchodziez.pl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca000001900505fa0f000004030046304402200c30dfc2b4013ca0f73e64eaa64b51eb9fa8dd83a14eeb386af50ad99e5bd23602207644bc9ece7bcc47932620f6f3a6321a4132273a0343001c61dc5e8ba9cebfd80075003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e000001900505fa1500000403004630440220376c600bfa9981faeecc5d6548e89f07b317b4ecec61b0c4c9e37bbef2a5cc50022005cb06bf0baaa45b60347cb5693c1e52b0b9e770aef05d9cbb9004ed10f9dded . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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