mail.stucpatje.nl
Issued by R3
About this certificate
This digital certificate with serial number 03:db:15:c5:e6:fc:32:ce:d3:4d:c2:0c:b7:68:05:66:b3:80 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=mail.stucpatje.nl
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:db:15:c5:e6:fc:32:ce:d3:4d:c2:0c:b7:68:05:66:b3:80Serial Number (int): 335887637506294308113266966371456317305728
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b7:30:4b:27:34:02:af:24:38:ab:eb:47:73:94:bc:32:c9:ae:2c:10
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 60:b0:4a:e4:2e:85:0f:c6:46:57:e1:8e:dd:c8:2d:b5:93:ae:04:9c
Fingerprint (sha256): bd:a7:10:74:d6:bc:af:ef:9d:e8:e2:43:b3:2b:44:40:56:e7:6e:1f:f5:eb:3e:54:37:25:63:16:29:d6:00:b9
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate mail.stucpatje.nl
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mail.stucpatje.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mail.stucpatje.nl
stucpatje.nl
www.stucpatje.nl
stucpatje.nl
www.stucpatje.nl
Other certificates including the domain name stucpatje.nl
(limited to 100 certificates)
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
mail.stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
mail.stucpatje.nl
stucpatje.nl
stucpatje.nl
mail.stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
mail.stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
mail.stucpatje.nl
stucpatje.nl
stucpatje.nl
mail.stucpatje.nl
stucpatje.nl
stucpatje.nl
stucpatje.nl
Certificate
The complete raw certificate details for mail.stucpatje.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGEDCCBPigAwIBAgISA9sVxeb8Ms7TTcIMt2gFZrOAMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMDgyMjE0NDhaFw0yNDA1MDgyMjE0NDdaMBwxGjAYBgNVBAMT EW1haWwuc3R1Y3BhdGplLm5sMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKC AgEAzg3JaPomxNFkagKV8nS4Wa8WtTaqGq82y18kXTG6/1M/IUC1iGyxo86PmrOK vJKHvK/0niMFoBcBk3mZIvpUZsSyi4Poq4NxaG5LOlSCd6SOj8IRltvbFgsDcNys oFmaboZcuw22vIcrazHkPVDVQaxgevQmwO65BriRQTzcnpgnIqc+X7SivQ/SNhOy nPBdFcTD+sbCcCGmQNoW7R4qbcpYoke+qZAHX/eX+S9KH+ps5C8GSCkoF34zi/dw JfVBtUCdCDeeTfv4pJVTTOgDzLvrtmJ8HAc0yrPuqv4ud+oAJl+5Qh0FnQDU6Csi yX/ks/ZMgG5mAKgZAHKeKYzOB2yeZrTqr94mZI0LTVcXKWwr0mlnCRbHnsxD9qbn uiroTFO1vlfTEYTFHagEHoBtQaPaobd4UbZEZLjRiaxugoI/k4DDvx/Kead2nik6 SuovpEzw0AB0vl8ycgZNlZID8bRanPMXGWSnSVPKyRZtonkmp02FmoPhoSGybfH5 mLYVczAswcMVs0TUXOCAiRWcZtUXinZcKZwfsacPnroQMoNZbKD+bM+zt7BhMQbF kzRi5T8V5ABjVJaJZhCvHCY7Fn1sbCqHLjVPb8tZtmVYrgbPEBek/JAu7tvNEAAC IrlG+K6JWB2222hjZR6Ld4ZPLeoMLUoKq86xYHlT0V9ZL4cCAwEAAaOCAjQwggIw MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw DAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUtzBLJzQCryQ4q+tHc5S8MsmuLBAwHwYD VR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEG CCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0 dHA6Ly9yMy5pLmxlbmNyLm9yZy8wPAYDVR0RBDUwM4IRbWFpbC5zdHVjcGF0amUu bmyCDHN0dWNwYXRqZS5ubIIQd3d3LnN0dWNwYXRqZS5ubDATBgNVHSAEDDAKMAgG BmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2AO7N0GTV2xrOxVy3nbTN E6Iyh0Z8vOzew1FIWUZxH7WbAAABjYsAmLgAAAQDAEcwRQIhAOHPUdUS1B+0ibUe jqMpplI3CIueChmrgE3Ce5Caqz5kAiBewpCkMXrdcLZxHdjBXtqChwgcj8S6vOUe pW1HA92XbgB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjYsA mqUAAAQDAEgwRgIhAJvR3UM5Nyhk+hjHiUkbqQEZWygZuxGtBFjuPqED2t2uAiEA opY8obJTpoVINaBz0Bsuk1VLpGCQJeXXtDY+GIfUmXswDQYJKoZIhvcNAQELBQAD ggEBAHXtS3IGdZYHW4qcu7Nv9YUZW9Zxx/LMDOtk6TZU1XxESzhXZ82bkdGazc5f lSEJ9ie9EtJRfESiStcAjS0UHdg2qqHCfYk6qk5nem/od30pi+rQ3cBM5LHFeOt/ HfxoWwansBeJoVbtWRpYvBlYFzvdqnPm2CGohuo5WLinoqSHtdYIwziJ6WcdNJS+ mn49zBh64JPOtA8lcRv7UErPAvzVL6gxWPoDQRnKWLiMOodDy87MJqi7Ny6Dsz1o yL6vrDxGebBGwLnHjSTCSCJEKifKMwd29H/vsS1jsE4WDNpA2fwDik4B7sAqCP17 3voKWm9djDl4b+lAEdhscdParvo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzg3JaPomxNFkagKV8nS4 Wa8WtTaqGq82y18kXTG6/1M/IUC1iGyxo86PmrOKvJKHvK/0niMFoBcBk3mZIvpU ZsSyi4Poq4NxaG5LOlSCd6SOj8IRltvbFgsDcNysoFmaboZcuw22vIcrazHkPVDV QaxgevQmwO65BriRQTzcnpgnIqc+X7SivQ/SNhOynPBdFcTD+sbCcCGmQNoW7R4q bcpYoke+qZAHX/eX+S9KH+ps5C8GSCkoF34zi/dwJfVBtUCdCDeeTfv4pJVTTOgD zLvrtmJ8HAc0yrPuqv4ud+oAJl+5Qh0FnQDU6CsiyX/ks/ZMgG5mAKgZAHKeKYzO B2yeZrTqr94mZI0LTVcXKWwr0mlnCRbHnsxD9qbnuiroTFO1vlfTEYTFHagEHoBt QaPaobd4UbZEZLjRiaxugoI/k4DDvx/Kead2nik6SuovpEzw0AB0vl8ycgZNlZID 8bRanPMXGWSnSVPKyRZtonkmp02FmoPhoSGybfH5mLYVczAswcMVs0TUXOCAiRWc ZtUXinZcKZwfsacPnroQMoNZbKD+bM+zt7BhMQbFkzRi5T8V5ABjVJaJZhCvHCY7 Fn1sbCqHLjVPb8tZtmVYrgbPEBek/JAu7tvNEAACIrlG+K6JWB2222hjZR6Ld4ZP LeoMLUoKq86xYHlT0V9ZL4cCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 335887637506294308113266966371456317305728 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-08 22:14:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-08 22:14:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mail.stucpatje.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 840626385300407265836013718109892384769696612124154876395613767441669451805383173014765505383925353344703421835327650202930459122346770479923307014846471581392076612912924471687350823041237850971516056104017304184953211527568499767115628156784351781394715948373791143647193696207282946034982178667241991174057128720506678853451328127628653240692105659645522777497848268845364028035741256489249540638554482266453778444700094043432885557231774196298966413587591984529365544489366388589181929153729594564757762137503971467597942040851465399760235907875214986267786627108147428784688999425079917922230208946645239535056992359546870325404637951967809426774310783878363388999637496259469818630309282483455867599452346915999077556587558619577526102137523631730466198279539197212209235273459016440765152949047325032891505275598322840514070128281220586048966248906911568024185196902071569420709574760177987054991011429845722020732451753758146245800304029674011535625153925095595559627821768782797201871612521871814923305557726591297821125908348374779229632704140021405561223542510712837913022602498582563551899023956577999859796015406701035265187216005436920547063452326516011448060800340570869647338033584627903305044956664542657083392733063 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b7304b273402af2438abeb477394bc32c9ae2c10 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.stucpatje.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stucpatje.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.stucpatje.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018d8b0098b80000040300473045022100e1cf51d512d41fb489b51e8ea329a65237088b9e0a19ab804dc27b909aab3e6402205ec290a4317add70b6711dd8c15eda8287081c8fc4babce51ea56d4703dd976e00770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d8b009aa500000403004830460221009bd1dd4339372864fa18c789491ba901195b2819bb11ad0458ee3ea103daddae022100a2963ca1b253a6854835a073d01b2e93554ba4609025e5d7b4363e1887d4997b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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