denovostudios.com
Issued by R3
About this certificate
This digital certificate with serial number 03:02:a2:d7:0b:44:b2:c9:83:cf:09:e9:bc:bb:40:53:a6:e7 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=denovostudios.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:02:a2:d7:0b:44:b2:c9:83:cf:09:e9:bc:bb:40:53:a6:e7Serial Number (int): 262233874036813710865574489694125339944679
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 46:96:0b:6c:10:d9:10:a3:af:71:dc:ff:e0:19:26:20:60:7e:c8:15
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): be:6a:60:50:3c:ea:d8:1a:13:67:80:28:fd:37:3e:de:58:fc:5f:36
Fingerprint (sha256): ae:29:b4:bc:ce:fd:10:95:56:d1:16:12:97:11:df:ce:a2:2b:b1:e9:b0:fc:75:f0:af:d5:c5:d7:7d:9b:e3:e5
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate denovostudios.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for denovostudios.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
denovostudios.com
www.denovostudios.com
www.denovostudios.com
Other certificates including the domain name denovostudios.com
(limited to 100 certificates)
www.denovostudios.com
denovostudios.com
denovostudios.com
denovostudios.com
denovostudios.com
denovostudios.com
apps.denovostudios.com
share.bazaara.ae
denovostudios.com
www.popotts.com
app.broaddy.com
project.internal.mevolve.app
denovostudios.com
www.denovostudios.com
unryukai.com
www.denovostudios.com
dev.clearaccess.28east.co.za
denovostudios.com
denovostudios.com
hojjatashtari.com
denovostudios.com
denovostudios.com
denovostudios.com
www.denovostudios.com
unitedmutualinsurance.com
www.denovostudios.com
denovostudios.com
denovostudios.com
denovostudios.com
denovostudios.com
denovostudios.com
apps.denovostudios.com
share.bazaara.ae
denovostudios.com
www.popotts.com
app.broaddy.com
project.internal.mevolve.app
denovostudios.com
www.denovostudios.com
unryukai.com
www.denovostudios.com
dev.clearaccess.28east.co.za
denovostudios.com
denovostudios.com
hojjatashtari.com
denovostudios.com
denovostudios.com
denovostudios.com
www.denovostudios.com
unitedmutualinsurance.com
www.denovostudios.com
Certificate
The complete raw certificate details for denovostudios.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgISAwKi1wtEssmDzwnpvLtAU6bnMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDYwMDQ1NTBaFw0yNDA3MDUwMDQ1NDlaMBwxGjAYBgNVBAMT EWRlbm92b3N0dWRpb3MuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGNE6Wmd1fm1ald8ydDfxVN3BmbqrJREKwqaQAxdkT5R0Abfz3F/JbwhlxhX PCPz8GgDMvmrWcXRPHxZYRGaGpsraBdgwjEXhmm5DORT1TnO8YlIxSWYhuk9+rvK JUStnwNHblTN5TZZwrrH6yRBXiMUFNOxq41n5vTpOzVsakzd9rBRrNlbgfBsn9iC xciDw0jxVC6FKoltgt0R1NhW3VXjmO53sRZPDAxWbUt819tS705qQ34IJIlzCFCv CpKmkYYwNai1EkxyZkhK7G2E9xc8JUSUExJC+qjrpWOWtU00x7z3Nzvo5oTPm+9U AlJpsGAs0S+DRvS9/YEMuyZbnwIDAQABo4ICKjCCAiYwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0G A1UdDgQWBBRGlgtsENkQo69x3P/gGSYgYH7IFTAfBgNVHSMEGDAWgBQULrMXt1hW y65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6 Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iu b3JnLzAzBgNVHREELDAqghFkZW5vdm9zdHVkaW9zLmNvbYIVd3d3LmRlbm92b3N0 dWRpb3MuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB 9QSB8gDwAHYAGZgQcQnw1lIuMIDSnj9ku4NuKMz5D1KO7t/OSj8WtMoAAAGOsRVa NQAABAMARzBFAiA2KWovWSx0XqvAsqRpoRqOGDGjAcLPSXlKQ2JkzpvHhwIhALKi vrdnozzgLGZcluk7gbLoILaMoTh2pArh9730OqOrAHYAPxdLT9ciR1iUHWUchL4N Eu2QN38fhWrrwb8ohez4ZG4AAAGOsRVakQAABAMARzBFAiEAjru8qJ06Wxx+2mup Ql1zdErP76fOf+ZONoC4dMm3upcCIAcDgWKlUbNf2GcXFzElD+CDeuw2pVaWIDM0 qpOJtpoXMA0GCSqGSIb3DQEBCwUAA4IBAQBTj6DZMi3dFRCGZrzXr5eAdY2BCRS6 kD4sVKLx2AQXorO9b0XifqzCNu28QyEKDju+ZUSGLDRx5sEc52X+ZSkZ4ZejLyp8 ISR+ylUOj9Nu7D/ZlPiSrU9Zjbj1W5jjGvp8+qMTgOnErvlgikOXjjUKh6/GDRNt ZCIHDeM1W+2i9ebz8MFh7wpGe92LsMCI3UUwiUCqUqhSdJ5TslFJ8iaMkVAp0D6L 1HVP3n5FDX7VJqg6/u36Ow8Qa1WdPsZirN9sI31m9VBR4g9L51GuTtNMOjUZPsci CmTrXDKz3Tdi59ZzQYZDavzZzfucyINEm1faWmGgobpZj8vNimX1mv7x -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGNE6Wmd1fm1ald8ydDf xVN3BmbqrJREKwqaQAxdkT5R0Abfz3F/JbwhlxhXPCPz8GgDMvmrWcXRPHxZYRGa GpsraBdgwjEXhmm5DORT1TnO8YlIxSWYhuk9+rvKJUStnwNHblTN5TZZwrrH6yRB XiMUFNOxq41n5vTpOzVsakzd9rBRrNlbgfBsn9iCxciDw0jxVC6FKoltgt0R1NhW 3VXjmO53sRZPDAxWbUt819tS705qQ34IJIlzCFCvCpKmkYYwNai1EkxyZkhK7G2E 9xc8JUSUExJC+qjrpWOWtU00x7z3Nzvo5oTPm+9UAlJpsGAs0S+DRvS9/YEMuyZb nwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 262233874036813710865574489694125339944679 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-06 00:45:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-05 00:45:49 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'denovostudios.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23781752793973985270796152703226297197660894061032419906025797818194371676710296803890822861539583228445404249786128689064135679745187132544389846773288496231052517139013886077634182874097475594960050412854174514654082180613708867417988013807493354603811437115338442554937394587949557318784140167534365188605576957044064343886551061567235997622517283854244220345760938814010170896104763187635808457089949455684305720886280273163789498639731241973966179236413388405677124874223762285876842823819899079041771965378447571108725761391620405510720462603654207743183991888340775487321364389720886785956906750003919546899359 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 46960b6c10d910a3af71dcffe0192620607ec815 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'denovostudios.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.denovostudios.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018eb1155a350000040300473045022036296a2f592c745eabc0b2a469a11a8e1831a301c2cf49794a436264ce9bc787022100b2a2beb767a33ce02c665c96e93b81b2e820b68ca13876a40ae1f7bdf43aa3ab0076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018eb1155a9100000403004730450221008ebbbca89d3a5b1c7eda6ba9425d73744acfefa7ce7fe64e3680b874c9b7ba97022007038162a551b35fd867171731250fe0837aec36a55696203334aa9389b69a17 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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