santelena.org
Issued by R3
About this certificate
This digital certificate with serial number 04:c1:b1:cf:3b:c3:4e:c5:b3:70:6d:c7:3b:12:57:27:f2:02 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=santelena.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:c1:b1:cf:3b:c3:4e:c5:b3:70:6d:c7:3b:12:57:27:f2:02Serial Number (int): 414359989915621793996010152873950949405186
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 2c:1a:b7:c6:02:3c:d8:cd:94:da:62:0c:e3:6a:eb:ab:32:2a:89:59
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 7b:97:21:ff:6d:8f:0b:0c:62:0e:9b:94:5f:a8:97:ac:8e:7e:ec:66
Fingerprint (sha256): a5:84:9f:b0:2a:73:0c:8d:18:c3:97:09:73:77:c5:fa:54:90:fb:74:72:6b:f4:4c:e7:ed:74:70:19:85:dc:e9
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate santelena.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for santelena.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
santelena.org
Other certificates including the domain name santelena.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for santelena.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6TCCBNGgAwIBAgISBMGxzzvDTsWzcG3HOxJXJ/ICMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MjkyMDA4NTBaFw0yMzEyMjgyMDA4NDlaMBgxFjAUBgNVBAMT DXNhbnRlbGVuYS5vcmcwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCS L39JaCXDdgwCTlJtHxknfqm5fHkSTb0bUa8u6erKOdYV48Q4x2zD01d7Rh+znoIb 6Q4gu7uTT2E7bj/tbLIzRsuH9b1pSMDDlrbyRsYXkULQUDMd4SMJ5ArXZ3l+eNRy +qqdBFLNxseC6g/iQrffRV5c6mv8eB6oV2O/G/7jL71a20B9u2bVedarRhTOdErE BLiPcYGH2iltfblPwjt5oyB58u4wWTfC6PLtSvk2uyljbvmGo9KuANfzzohLSH+a Er7mTccwxXqOlngWknL1NqLeXZNXbjNdKNAs9holLgTOxpCJGG981d4I4BmACKjy v3/uCYry2tWAS8Dg1skhGjIrA7laoHjkUFZ2hQ+r44O6hAosH/AhKQIWyYpMO5rm SPbRny4nHedJzCFz8UT2g0JB7NzeKQiVeWi2cbi88HXOxpgvyzf5OPhmibfA1of/ ot5HtuqzeCmMbPvb1LynxGv9G6WXDTP1IbnC37VVzdASjKhAkwBOnw0Qr9l9GN0v 5JwyFuOCX7jdqoY681xG5W4vGBCx0PCU0QDFEFzAOMAaOJfGE0/sSafTygyMc+y2 4LPH96h9Pm62M4QoQfRf4NrPlM68YTbNPX49l16i8qZiwtMZqHUWKyWgop5Uf9SO d8ZEbnZck4RBnZEsZKloAAXZybVE34MA9LQbMTYCowIDAQABo4ICETCCAg0wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNV HRMBAf8EAjAAMB0GA1UdDgQWBBQsGrfGAjzYzZTaYgzjauurMiqJWTAfBgNVHSME GDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYB BQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDov L3IzLmkubGVuY3Iub3JnLzAYBgNVHREEETAPgg1zYW50ZWxlbmEub3JnMBMGA1Ud IAQMMAowCAYGZ4EMAQIBMIIBBgYKKwYBBAHWeQIEAgSB9wSB9ADyAHcAtz77JN+c Tbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGK4sXWyAAABAMASDBGAiEA2ALI x0YlQNIxV5Wge+If8QscR7FofLkpKCiinxYKXdMCIQCncimwRNSXU2TX3qL5Mkpi 1L4W5HjZ6gML5NitObjjBgB3AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nhd31t Br1uAAABiuLF1tEAAAQDAEgwRgIhAPtKwDFeYvNqSdrNBgx37ZRyYNqzRA80L2ak eDdncjevAiEA/cBHHFnmz7kPf0qMbdZmCB9KptGAqbit8hOGfLoDt9AwDQYJKoZI hvcNAQELBQADggEBAKi9N2yvogir/Nnp+aNNkLMT9qMXn8UpRWbwWcf/aPyLfP35 fv6vBYJQ2IYamYE3+rTsiKO5+NzpQWdklg42ghfziifOEjPsXBR+5Mm4sf6W3yZq KTcrPYGKxHbP0oR7vEu9ZNrDhFdNA6F+LVvDNAuqyFp1VU9NEth5k+fVBXeNzsbF ZGKcB4oKHQzWL9GOlQoC8CJZp3uYszZnz6GCrLudNoI53jx7RJWTESFqkyY4hcMH w1rRFnSGlHlJTFCWDPiP1tTbaPyDa4vpeHlil+WFGzwWksohGOeE3UipfJ+A8bzM Ql61Twpgsj95bYi4j5D59JvmxD0bsD0iEPFfVhc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAki9/SWglw3YMAk5SbR8Z J36puXx5Ek29G1GvLunqyjnWFePEOMdsw9NXe0Yfs56CG+kOILu7k09hO24/7Wyy M0bLh/W9aUjAw5a28kbGF5FC0FAzHeEjCeQK12d5fnjUcvqqnQRSzcbHguoP4kK3 30VeXOpr/HgeqFdjvxv+4y+9WttAfbtm1XnWq0YUznRKxAS4j3GBh9opbX25T8I7 eaMgefLuMFk3wujy7Ur5NrspY275hqPSrgDX886IS0h/mhK+5k3HMMV6jpZ4FpJy 9Tai3l2TV24zXSjQLPYaJS4EzsaQiRhvfNXeCOAZgAio8r9/7gmK8trVgEvA4NbJ IRoyKwO5WqB45FBWdoUPq+ODuoQKLB/wISkCFsmKTDua5kj20Z8uJx3nScwhc/FE 9oNCQezc3ikIlXlotnG4vPB1zsaYL8s3+Tj4Zom3wNaH/6LeR7bqs3gpjGz729S8 p8Rr/Rullw0z9SG5wt+1Vc3QEoyoQJMATp8NEK/ZfRjdL+ScMhbjgl+43aqGOvNc RuVuLxgQsdDwlNEAxRBcwDjAGjiXxhNP7Emn08oMjHPstuCzx/eofT5utjOEKEH0 X+Daz5TOvGE2zT1+PZdeovKmYsLTGah1FisloKKeVH/UjnfGRG52XJOEQZ2RLGSp aAAF2cm1RN+DAPS0GzE2AqMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 414359989915621793996010152873950949405186 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-29 20:08:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-28 20:08:49 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'santelena.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 596384954738468565690124399223349157939513253548562700665182516513472337892128370023297896507159248784608561259442680957286029346736867974840951101191190338583900593301700319415816144148991914701276650781393219639231972447229133061211281942097014353867346497390476983180307560495863295299974278297362677354594655583027712563546985537479860931528378205714076643551578305852409208092700593607980542441617406336440621188328358946091246542060209629365821525413404228489201499100630329839501760182410357342611518996388343414382229673839953823315750571538984742992003406990551143184277094642117763102746753613245283411053141506538353874160584727212761732273553565200630293962464414405562110145300928197872927562961444904142414545008198561675288797209088458277661973919062744831501747432211079126757244371083649027438945185741977846167719243971171306915070378846355507560175295043533467713645054130027218999052654025600428566676756372565747070038292489026377707457364397506496889656073320535721991713890855129662503510603417953351856660995103619416362175519475768292328758156654873263782709211350643853750060282384766735060047588840859073267262248255833699007545701916165421567666447164274764269153287501323133457659848849135554711617143459 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2c1ab7c6023cd8cd94da620ce36aebab322a8959 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'santelena.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018ae2c5d6c80000040300483046022100d802c8c7462540d2315795a07be21ff10b1c47b1687cb9292828a29f160a5dd3022100a77229b044d4975364d7dea2f9324a62d4be16e478d9ea030be4d8ad39b8e306007700e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018ae2c5d6d10000040300483046022100fb4ac0315e62f36a49dacd060c77ed947260dab3440f342f66a47837677237af022100fdc0471c59e6cfb90f7f4a8c6dd666081f4aa6d180a9b8adf213867cba03b7d0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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