DV SSL/TLS Certificate for *.douroluz.pt

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the *.douroluz.pt DV SSL/TLS Certificate

This certificate with serial number 06:60:19:77:ff:b1:dc:10:79:40:c0:45:28:f0:d8:a9:fc:96 for *.douroluz.pt was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for *.douroluz.pt provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:60:19:77:ff:b1:dc:10:79:40:c0:45:28:f0:d8:a9:fc:96
Serial Number (int): 555374676584298301227313095816796560817302
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 94:6a:54:37:9e:ae:54:57:db:47:d4:65:28:50:9c:ff:ef:7d:79:c9
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): 8a:f6:7f:a6:c3:8c:8a:e3:5e:1e:55:83:cf:73:c2:68:d4:5c:80:12
Fingerprint (SHA-256): 7f:1f:3d:bf:2a:7d:98:01:b3:6a:64:c9:25:73:67:59:52:34:90:c3:47:44:ec:c9:10:ca:54:fa:7c:fc:3d:d4

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/23.crl

Check the revocation status for certificate *.douroluz.pt
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for *.douroluz.pt

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for *.douroluz.pt in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzo7VjTpgDTJtxpuSVXIa
KcNegIZqFw3dpqP0k3VXRmsWygglbObXEPMKfmK0JOae9Hft+sScBR5laScYBCGP
3BuM7stsfYuk+SeO9M8w/piQX5pIo1VRpjfqg7xKmcVb5Ym6Eq+ttj5ly/Qvy/By
lm+Pw0mVk3r0PDdaUqk+MQstlwyeJb7xe+B2Rg7BYKbc7Db1U7o5HNe8AyYviEFN
PQL4k3QG237RJyxJ1VkYx+E+BPKM1irGd82Itf8jwu5joFMd29+3DOSbkpeL5a0e
FROci2+6+PpbYFqbJV3bmTgcGH95OMsjz0tbLl5/fE8u7yyhnGuyNOJAnAokitZG
FQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 555374676584298301227313095816796560817302
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-10 23:36:37 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-08 23:36:36 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.douroluz.pt'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26075524985349693047707635193658714399218995401974855378443448800089996999207288864738183763359058786415944179290213951013557909492446970431710336430147492916400453311211415176598542792284640567560821804805423743482383280500166111706928288919446964050855020898044615530861741048337241176525547178599102810198521708901031067940546845478739515417916310833544245181478950174592660818691431738246413251985377405862423807445106828872779919461729423263990689829891210974845366264577535113274976592169460783674353622563907361034136016184558165653327265163658013428020005482534862631081804561529928133011350090258974925800981
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							946a54379eae5457db47d46528509cffef7d79c9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.douroluz.pt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'douroluz.pt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/23.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a000001975c6981040000040300463044022077d5bae6ea3276e7555f85034d2d3e1729effd6845230c50a4805835153b8ebf022037e483aefc68cdbc3f6528d4cfb456c4dd9855d46ab87af554980a5fcf618f8c0076000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa34000001975c6980ce0000040300473045022100b38d0241d8d6d4bc15ad94ce7fa1d2f8549a7c750b994a57153762abaf05e00c0220627f0dd55926c639a56e3cf775b3864ab8bcf8302926ec6300cfc4e6806dbc9f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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