punched.net

Issued by R3

About this certificate

This digital certificate with serial number 04:c2:27:f9:55:94:9c:db:40:d2:39:bd:6a:e5:5e:85:d0:bb was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=punched.net

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:c2:27:f9:55:94:9c:db:40:d2:39:bd:6a:e5:5e:85:d0:bb
Serial Number (int): 414517057419235564474412189613002206859451
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 66:4c:1e:11:9c:de:50:aa:9a:c9:db:48:1e:ae:ef:72:8c:9b:51:57
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): ac:5b:54:93:64:ec:55:43:95:f5:bb:9a:a9:13:9a:87:04:e6:c3:05
Fingerprint (sha256): a6:f6:b1:ed:f8:47:17:59:ce:de:1b:f5:1e:28:36:b2:0c:25:24:a6:89:dc:af:6e:12:32:d4:2c:43:90:fb:2d

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate punched.net

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for punched.net

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

punched.net

Other certificates including the domain name punched.net

(limited to 100 certificates)
savino.co
ashlyn.us
www.pompeo.co
www.puppypetals.net
www.3dhabitat.net
www.cabletie.net
punched.net
lampungclubbers.com
www.danilo.co
mandy.boston
www.maruim.com
www.evidenceroomtea.net
www.comixify.com
punched.net
www.throughout.info
www.zbet.bet
www.refi.expert
www.punched.net
www.utahstemcell.net
bitnew.co
nantucket.doctor

Certificate

The complete raw certificate details for punched.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIF4jCCBMqgAwIBAgISBMIn+VWUnNtA0jm9auVehdC7MA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yNDAzMTYyMTQ0MTlaFw0yNDA2MTQyMTQ0MThaMBYxFDASBgNVBAMT
C3B1bmNoZWQubmV0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAn3Zp
FiJPNVeoqpTFRa1OwSVicrkH/+my0t+sKBu/jdT1R4ChHcDhTrWwmc/MXeaAJ+YM
HlvNCn3BcYL/STfdEUQHMya8s8WFHcSaArFiHOegsHkvM+/XxdshNcPNTdK1iP40
VgfNg6goAJy+FKH3f5dB0iU0X0mHKbIDI5xXCVzRn33jk9sfyCMXCm89TMVIisxR
qWcRiQ+0f4RhoStAjS86QjgGi7AXKgBRR7bX/trIOVCLDHqkQINDHpXF68l8Pffu
q0+cutPGGxFZmNSVPKDRJ2LhOSHncNPAYEJcohCy8s4HKyD77Lt579LWCxixoU3d
o4TmPq/nPc5tnun7t7ZbcglzPgI3Ik8jQg52UpDu4CMLhkjAqgyO+1vNjTZr+yxr
F/0ZRhMuat10EMaD8sqDrgJeRZ0fG85dcTvFAC1ltMAsQCkv1rum543cmrxC0OVq
Qg7azHBSMv3WWKv6HhmcMM3wC8TOZ9N2qIGsMVwRHXLdbsjyvSJur8pIit/n3/Kx
8Kmgsj1AMvOYgDWNtfDPBc+9U+D4Y/Igvtuf40qAptZhPlWDsmIcTC9/A4UbZ/ba
5Zht//iyGcfqzmdxSRuGPaB8DMe/Mebs9SY90pMB7GVOCzX6FuNMcbJrzR1SInh+
bdlFiflSI6tmQ9b4FaG/qx4XRJnZIf/5rF2tPpMCAwEAAaOCAgwwggIIMA4GA1Ud
DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T
AQH/BAIwADAdBgNVHQ4EFgQUZkweEZzeUKqaydtIHq7vcoybUVcwHwYDVR0jBBgw
FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF
BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y
My5pLmxlbmNyLm9yZy8wFgYDVR0RBA8wDYILcHVuY2hlZC5uZXQwEwYDVR0gBAww
CjAIBgZngQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQBIsONr2qZHNA/l
agL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY5Jb/4CAAAEAwBGMEQCIAR1lDfu8/Fq
dN08xMzJZEkQquIdrVflj4rMIKDa4k2BAiBAkJAocbHZ34uXwbWxb7yVwkt6eLmM
29afPVhX1TXQMAB2AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfYAAAB
jklv/h0AAAQDAEcwRQIgSB8wgaYW+MmkcGYEDzAOEr7RaRD+pmbgSPVDBaSK93gC
IQCNzx5uWyB7bF5sUZ/6Kmcyd4fi/XXfOXscnC5Biaer4TANBgkqhkiG9w0BAQsF
AAOCAQEAhAKQNdmZAv4fWAtqEg1pcBsFmhNBcj5+B2kdjoLUThRZe7I4FDdQTyaV
vIBcQXipyHYFXCaJF2LFxxYOo4f4qSJqP6NdhxFJgqrmK+HJ+NzmHdjqqW4/QU+J
LbdQIjzibhq2sXc9GruI8q3pNZyM7SKG1tbmKqoCKeEjAP6sCFtDm6RdmIuWD2e4
uAK83TbVEkJ0dcyVkxNLgnycfklGjD4Mey74NElIRXTCVb4+m+jUApf4KV6may4L
xBM3MfLnsjsLxDmPm7RfYosLqztopnT1LEg1t91x0nTOOY0ylcUXQbge7I7MY72O
2W0bW/nHvZLRw3s4nSqVAIyfNkoPHQ==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 414517057419235564474412189613002206859451
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-16 21:44:19 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-14 21:44:18 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'punched.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 650550409430008562620533702576061788979351092470260394312284493671459703501979166407349404662951563420393726352998969431580250467647748217245520318262686603121478237388608764888806981451228471112485438069764592028093054897620502527600093953048710193861364399577057770939043013345721297827651372530317326017039808651475779778117423158191283856652729994428784263823088286580639801171336289070062064768236308323910366263418069967256774683319232100805752085010809742791324317720648353455319533604436377794842343021991091800172042044725385814684271297450693902730963144225329228926406226642788600709411638345217853715136658917978760162836011118383006910298765805419976808916745565284934476805061152935082166763299499556242898633504116440594591815514804214234043028818068850165106319073823914364219389846883557325740563366483018047499106731708631619484229590420352623249895573289157535791946267570908986149790757674165032261998082634565344350870055271366223301664420911321795379902964835050941706214035071539231675445982669799236450679676672628440357015434212487505559044269566299884728774959480668200219921330055299577438838230242893501320867227662320037435368549067884341233946374651428859671014437450591889411883229007479446622012522131
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							664c1e119cde50aa9ac9db481eaeef728c9b5157
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'punched.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e496ffe020000040300463044022004759437eef3f16a74dd3cc4ccc9644910aae21dad57e58f8acc20a0dae24d8102204090902871b1d9df8b97c1b5b16fbc95c24b7a78b98cdbd69f3d5857d535d030007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e496ffe1d00000403004730450220481f3081a616f8c9a47066040f300e12bed16910fea666e048f54305a48af7780221008dcf1e6e5b207b6c5e6c519ffa2a67327787e2fd75df397b1c9c2e4189a7abe1
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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