fdn.coma.net
Issued by R3
About this certificate
This digital certificate with serial number 04:fc:15:ae:a8:42:0d:aa:80:4d:6e:18:fa:3a:66:31:51:8c was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=fdn.coma.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:fc:15:ae:a8:42:0d:aa:80:4d:6e:18:fa:3a:66:31:51:8cSerial Number (int): 434229120851360449240434675281591213838732
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: c5:5f:e6:26:2c:6b:13:66:46:14:01:89:e6:47:e9:4d:f5:9d:b7:31
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c1:52:d5:b2:49:25:88:34:f7:c8:f1:df:0d:cd:7f:b5:e5:58:b2:70
Fingerprint (sha256): ba:ec:e0:c5:72:1c:fb:f1:6e:5d:ff:b5:93:59:71:e2:4e:ff:a9:7b:45:54:05:9e:1a:36:5c:ea:45:86:27:cc
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate fdn.coma.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for fdn.coma.net
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
fdn.coma.net
Other certificates including the domain name coma.net
(limited to 100 certificates)
Certificate
The complete raw certificate details for fdn.coma.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgISBPwVrqhCDaqATW4Y+jpmMVGMMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDIyMTU3MTdaFw0yNDA3MDEyMTU3MTZaMBcxFTATBgNVBAMT DGZkbi5jb21hLm5ldDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAL6M 6ByjJroJ92DpuIsm3qUTGkrILi6CJZLRAFQNEFxvAwylj472b1vLa7KKzTDi2+PL iysDkkrDHSB7m880xgE53zERYs1gi+3H/xc5T5Z9MxjqIRK0W0q0Kshv/KPOjqiN kj6uQym2+U7Hxeq9MWNpPL0Xyz9WcnRCYs6MEYB3LW5g0FgumK684Q7mfYwVi91z n515Xk7q/fh/wTwR1jcPxK6wk6eBVk9IAAlsQmo6zAcH4MF8YupsPcVM1bvU0HEt l/FixT3KGmd9TAH7a+7bbs6LIq8OImTUUooTwlHw4Jed9j1bysfZeSbi/qBlyhnd amTIKTU5pMnlmscQvuGov5n6i8JNcOneCM74794RHmk5jzuMjYs6Cm5pyRHRk3yI KLgtNvdamJo98N5ohPOghUtz9uZeEQEz+W/hBJR7zmk6bgiTyXwtufEGWn6eY+D1 pojAlo2lBFsKNVzTwNNKQWjCe0IBEKH96q1YLW8eM0VBuDHSIqhiC0rbsxQttQfa 4xjosZjGnL63wgGNklEnV/g2MN4M90hMx2ZApg9/viwCWUT/vv1XAzLSd0JlFAxf fpz74AfAPeTI/kObh6J2SqwUH1th9qr5UG1qvMcYfAS8rNgYK30PdJS1U17uMdv2 6AV8iiSoraeVn9Hq6tAr/TaT9OXa/wfF+7a6hheBAgMBAAGjggEbMIIBFzAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFMVf5iYsaxNmRhQBieZH6U31nbcxMB8GA1UdIwQY MBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEF BQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8v cjMuaS5sZW5jci5vcmcvMBcGA1UdEQQQMA6CDGZkbi5jb21hLm5ldDATBgNVHSAE DDAKMAgGBmeBDAECATATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsF AAOCAQEAhThZF/b9Slb+3lYnYkv01uVPxueNtKnpZesD7IJyNvJYf7KIoxv0KqQt vU48CxUYp0Y4xy6pk9WtkjmVEqp3ENKooEeA7mcuEFz1KbMLsYCOw9dfJ9G2EMRj +dU2qrzazDkUrl7nk0Wuz2COoha10IIFnQs5+gH1wf6f8IAfkGJarNBDdfX0DQa0 uUHGyuDbp9nV+utDe8DnScbDMlKazYNDAKEPLPQ8Bt9VA3ZMo2w7yP2Lht0yX7fY gZkVGpoavB1ZU3Na/o4uWJSwnVGUU0r+0be37lbRd/0WZaEI+AzVazlsHjPai1Yy Opg1Uk3di62ufp6kpe2jkhL1+aqV3Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvozoHKMmugn3YOm4iybe pRMaSsguLoIlktEAVA0QXG8DDKWPjvZvW8trsorNMOLb48uLKwOSSsMdIHubzzTG ATnfMRFizWCL7cf/FzlPln0zGOohErRbSrQqyG/8o86OqI2SPq5DKbb5TsfF6r0x Y2k8vRfLP1ZydEJizowRgHctbmDQWC6YrrzhDuZ9jBWL3XOfnXleTur9+H/BPBHW Nw/ErrCTp4FWT0gACWxCajrMBwfgwXxi6mw9xUzVu9TQcS2X8WLFPcoaZ31MAftr 7ttuzosirw4iZNRSihPCUfDgl532PVvKx9l5JuL+oGXKGd1qZMgpNTmkyeWaxxC+ 4ai/mfqLwk1w6d4Izvjv3hEeaTmPO4yNizoKbmnJEdGTfIgouC0291qYmj3w3miE 86CFS3P25l4RATP5b+EElHvOaTpuCJPJfC258QZafp5j4PWmiMCWjaUEWwo1XNPA 00pBaMJ7QgEQof3qrVgtbx4zRUG4MdIiqGILStuzFC21B9rjGOixmMacvrfCAY2S USdX+DYw3gz3SEzHZkCmD3++LAJZRP++/VcDMtJ3QmUUDF9+nPvgB8A95Mj+Q5uH onZKrBQfW2H2qvlQbWq8xxh8BLys2BgrfQ90lLVTXu4x2/boBXyKJKitp5Wf0erq 0Cv9NpP05dr/B8X7trqGF4ECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 434229120851360449240434675281591213838732 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-02 21:57:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-01 21:57:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'fdn.coma.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 777377877336496989531071728850215608606207509029162399301566279653841545999708575758237549799985948618225240022621754097751790083267585959198379690117904746744419186170784096036908827471630269029277969361494194745589768943990920282386178433560782815174438608458942168963603565735197581951881037605331485628506522350348076477366434874165484785720003932847179588992495385290451651187496224519497976617853524025275953451336632589110798433601994153947853534061896071666120134412853106474016263752759356268441165083229721715349623602235780806292243481208826061305493051467197315709344705513683437006649712410888512433851213841148234690320366191540957758255056453514285700177019687923142675480061640155249814373821420533993388934965562019498205633851689099094781562007959474508886436346496084476055040705944489025674128521411060570082172887649601714324653953639822130275955133421940407120767989773181386465088343540125933200805215245168725028165009849441404506018499822743338645370394763489668620951636453745833505804901957325723510633024462773966687182517996301019208336916034611303180391356604654897485873295167496199674747477315449378330887768654388268377265367426288063352282434093225629839170952861021092508277607702702939886678579073 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c55fe6262c6b136646140189e647e94df59db731 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fdn.coma.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0085385917f6fd4a56fede5627624bf4d6e54fc6e78db4a9e965eb03ec827236f2587fb288a31bf42aa42dbd4e3c0b1518a74638c72ea993d5ad92399512aa7710d2a8a04780ee672e105cf529b30bb1808ec3d75f27d1b610c463f9d536aabcdacc3914ae5ee79345aecf608ea216b5d082059d0b39fa01f5c1fe9ff0801f90625aacd04375f5f40d06b4b941c6cae0dba7d9d5faeb437bc0e749c6c332529acd834300a10f2cf43c06df5503764ca36c3bc8fd8b86dd325fb7d88199151a9a1abc1d5953735afe8e2e5894b09d5194534afed1b7b7ee56d177fd1665a108f80cd56b396c1e33da8b56323a9835524ddd8badae7e9ea4a5eda39212f5f9aa95dd