DV SSL/TLS Certificate for davidwaring.net

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the davidwaring.net DV SSL/TLS Certificate

This certificate with serial number 06:64:70:da:1d:78:f1:3d:fb:13:51:5e:03:1b:5b:fc:bd:ca for davidwaring.net was issued on by Let's Encrypt.

With 3 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for davidwaring.net provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:64:70:da:1d:78:f1:3d:fb:13:51:5e:03:1b:5b:fc:bd:ca
Serial Number (int): 556851958336670316221391545721824208534986
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: c7:36:43:34:93:59:3a:c5:e4:d7:1f:5b:92:92:1a:19:0b:b4:27:25
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 1e:b2:10:92:dd:d8:cd:83:4e:b0:fb:48:d6:28:16:32:00:f6:91:5f
Fingerprint (SHA-256): 7f:08:2e:bb:4c:eb:91:ab:f9:32:30:12:f9:fc:fd:50:bd:07:b7:18:1d:91:9b:a8:1f:15:27:fb:43:27:ce:06

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/75.crl

Check the revocation status for certificate davidwaring.net
3
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for davidwaring.net

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for davidwaring.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGJTCCBQ2gAwIBAgISBmRw2h148T37E1FeAxtb/L3KMA0GCSqGSIb3DQEBCwUA
MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD
EwNSMTAwHhcNMjUwNjEwMTEyMTM5WhcNMjUwOTA4MTEyMTM4WjAaMRgwFgYDVQQD
Ew9kYXZpZHdhcmluZy5uZXQwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC
AQC3VdAtko2TF+YxnhmgSnoVCQH7Synht6H3kvglNzinOYVmJYU3f8IwXssX2h/t
de2V48/gZD7hcggvEsRmjXAayIncbt+lQRzPdF7dNKITRXYovIQKW68qK8IkLvQg
0KuEXKUP1YOg+sZukVH24cdS88thgltqzH8fC6A6IrghxrMINZ/ZpHDpACzSDpfF
8DgQUABQVXSO0SAeoSvQmoY1m8CiOqWpS++H3eREp5fhYVu2jhLqxSY49erDLSgO
g6YaFiR/INtSEYB3SjwKkWY1pulS2je8Q6W/WabnDogZYhwhaaZAYcTXUWlrP47G
kF41tM8Oc/ZY2qsgvlRHdFxFgbbNGGpHijH1rJTf0tgvDbENPbDeePVqdZyUHM8J
+0NSuPj28fxXq9Zj0KaeZbBNM7jQkBkckzYhRfZj8puP0S0EN9ln85g6Qm5wVSWs
NwSGnPZtM9+ojttYvpH3Gp1qmsPyrnP+/JG8aX2ApNWidGt9Q6ws9k2ENDdN5gDw
aPr0ZyoRZHqwRVH3FiYQIhuxdNlTqN6R08wk7gvKjbE7JEb3nOayTtQ64ITRw0f9
q6M4fsHLTWSaQKUOxJ5ybqtxLJZvcvc+zioZN5ur38Nlo5G7yK4f9VqR5579opEr
PdUwQa6G3wHNbpWNqv7YKnjlSlSzNbhDnz67b4uDOMqGOQIDAQABo4ICSjCCAkYw
DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAM
BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTHNkM0k1k6xeTXH1uSkhoZC7QnJTAfBgNV
HSMEGDAWgBS7vMNHpeS8qcbDpHIMEI2iNeHI6DAzBggrBgEFBQcBAQQnMCUwIwYI
KwYBBQUHMAKGF2h0dHA6Ly9yMTAuaS5sZW5jci5vcmcvMEUGA1UdEQQ+MDyCFGJl
dGEuZGF2aWR3YXJpbmcubmV0gg9kYXZpZHdhcmluZy5uZXSCE3d3dy5kYXZpZHdh
cmluZy5uZXQwEwYDVR0gBAwwCjAIBgZngQwBAgEwLgYDVR0fBCcwJTAjoCGgH4Yd
aHR0cDovL3IxMC5jLmxlbmNyLm9yZy83NS5jcmwwggEEBgorBgEEAdZ5AgQCBIH1
BIHyAPAAdwDd3Mo0ldfhFgXnlTL6x5/4PRxQ39sAOhQSdgosrLvIKgAAAZdZyJ7p
AAAEAwBIMEYCIQCvkrX/jsxjD87R0GweTRG+Oauk7xSvnoWo7Qr84p7WGgIhAJAv
/UdtDvbQYv+v9qSfOTt/z2ww5QwM4OU4pibPSloOAHUAzPsPaoVxCWX+lZtTzumy
fCLphVwNl422qX5UwP5MDbAAAAGXWcimmAAABAMARjBEAiB8IW+sz2cPdQenmSlV
a256NlLqXvTTWll7WxXBBroOFwIgeHWAHBzM/Sw63loiqDNAxXTLrsH/o2txwQ85
Fz76ivswDQYJKoZIhvcNAQELBQADggEBADs18Oph9u2sVzuQQnz6PBo0tOzgxnph
m2GvRuzRZcqQRgcI9GUiC5p0YiqfQ9iRZ1+i2VONrmwQkLazmbN3HDKi9ZPCjeWU
x8og1agOo18d/b5vpjFS1fBNECmQDIXDFgR7eFFKd5B4fEHs+WvMaRmqkD+3jLdu
9VYx7hmyx1Ta344ce3DQjriA9BdTFv2EeFsKGuXak8x3EjbbifTiNn5B/A4sXTuK
+lwfAroImQz067/71Pu0bB9lGMELeQW7nlH2Fmb8a85E2LX65Zn5BDE/R64ifHXW
gmR8ZN+YpioPsxDFTyDCJsR9q64TKSMeU69X+iNFADYbpoby8rPMyLw=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 556851958336670316221391545721824208534986
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-10 11:21:39 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-08 11:21:38 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'davidwaring.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 747942392937889972409154317004116529122384586440209996444285136399881252798951794597716870318676802123373504313627449069716677119744352776810878696472640887247289942865921296297489540722923915673969426275894878107850416141791015197640550780205804185196188764537445382846598252993693449948219075766329949427917796436670406744095666045036899912406044426827359082522033104349362295454640380074155352422140069557995484844659191294746599824786845322825308107797229187421653893813635447108772753001089677128791647102679228036931796985535639487230426568920581593885476637636785174251043142452121296819828513184603585378926527990677294153051449713937628860682747684881559498642107128171501597087946708799219707565798224755968389705861078423774152202787624281843339430768329742701277256035212988962025591054096112355722225495709591569622206985632193026013034918274940592903946415164568440642486237094489925709922524167252065234381818809458678290881564223774514644855601590783523486450107281471552174797192790259319711491913617411865935621972904198941821602265035185302110672616583450047692174877895291457767508920743074156982627264963139879968796909954409351638637416916168626389622450297159905083492142983608840035133415899708064873019246137
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c736433493593ac5e4d71f5b92921a190bb42725
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'beta.davidwaring.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'davidwaring.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.davidwaring.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/75.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007700dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a0000019759c89ee90000040300483046022100af92b5ff8ecc630fced1d06c1e4d11be39aba4ef14af9e85a8ed0afce29ed61a022100902ffd476d0ef6d062ffaff6a49f393b7fcf6c30e50c0ce0e538a626cf4a5a0e007500ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db00000019759c8a698000004030046304402207c216faccf670f7507a79929556b6e7a3652ea5ef4d35a597b5b15c106ba0e1702207875801c1cccfd2c3ade5a22a83340c574cbaec1ffa36b71c10f39173efa8afb
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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