lindbergh.info
Issued by R3
About this certificate
This digital certificate with serial number 04:d9:5d:2f:0d:5c:ae:6d:27:a1:0c:33:e4:69:6d:90:56:dd was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=lindbergh.info
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:d9:5d:2f:0d:5c:ae:6d:27:a1:0c:33:e4:69:6d:90:56:ddSerial Number (int): 422414279861459279621676867344493490231005
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: de:a3:96:5d:e5:3f:a5:8c:0f:a2:55:a5:b2:ca:28:38:40:da:ee:55
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 10:6f:e7:26:13:47:a0:9b:61:17:9c:1e:a7:72:63:00:8b:13:e9:f9
Fingerprint (sha256): d6:40:29:52:d4:3e:b5:42:5e:1e:e3:d5:dd:b5:c4:3e:90:11:7b:8e:34:c2:5d:ce:b2:4f:41:2b:72:d0:d0:5d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate lindbergh.info
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lindbergh.info
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lindbergh.info
www.lindbergh.info
www.lindbergh.info
Other certificates including the domain name lindbergh.info
(limited to 100 certificates)
Certificate
The complete raw certificate details for lindbergh.info in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgISBNldLw1crm0noQwz5GltkFbdMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MjUwMzEzNDlaFw0yMzEyMjQwMzEzNDhaMBkxFzAVBgNVBAMT DmxpbmRiZXJnaC5pbmZvMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA v1pWhaEdLCpCVlG94zkRXqN95KEwNlLhmxTlXrYpU9cONSa0DIhjrWTWR+djz/wQ MNxYVfKpLvJahtmDc27Kzc9pmaUA81gdMMeIeYnnzG+UkcNlcOTokLGeDTF9RF5i hzSenHrhyKcDVkSgsY290NwISRge5cEhX/yBFdrMhR3RvuUHM7R6Nffk/V9s6xnP OITav1bp4BUPetr1EQtKtMFyVvoNEluYdZjOJT6yErcKc1eMGmLzw/pEThkFerh9 3to0yZhb1VQF/k0oomvgViyW4cQLOzkbVpxcyvwvJ8eAjYTeK5k3TPhOnIgggn47 sJQxeGe9wJbFY3YNl5r2bDA47B8D8btQwY+lIsSGISnjqm4UNGnyyp7/HiAp1Fdc OQ0lTyRtb/7vKe/SJ9c+4x1WW/fZ7tvrfoI17gn2ZFDQguEbne7zLQ1S7Fd1x0/4 716Aglzh1/udWZWiAQqwD9nmi3E7OgOCjPynOETwPD9zFmgia1uKiqEkqbbWpMeD C1CW7JOrmW/Vo7+Y7G9HKpH94Y1rCMWjnopxA+wMip0AlbppbiwHflmTS6z4iEGn 6tJQSsja1SNeyddqPmRi7RwJ1tGh+uqLJpJz8iHhRNKnmyaaXBSV9W1l4ert4JE0 8S63PvcK8DkrDydnLSrel5J+8TLp+0iPWm9p2g73wiECAwEAAaOCAiQwggIgMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYD VR0TAQH/BAIwADAdBgNVHQ4EFgQU3qOWXeU/pYwPolWlssooOEDa7lUwHwYDVR0j BBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsG AQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6 Ly9yMy5pLmxlbmNyLm9yZy8wLQYDVR0RBCYwJIIObGluZGJlcmdoLmluZm+CEnd3 dy5saW5kYmVyZ2guaW5mbzATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB 1nkCBAIEgfUEgfIA8AB2ALc++yTfnE26dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZ AAABisqLIAYAAAQDAEcwRQIhAOzqFMFMlM0BxmNFXBe0PbVDnyl15omz99yJNn2y /bdiAiBbngAsZ5xYwewHOR7jc/nR5x+R38UKEuHQmbSnGtRYeQB2AOg+0No+9QY1 MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABisqLICsAAAQDAEcwRQIhANbZ7VJ7 KPsR8TPYwAq8yLTN70PQcBnSFVWjLEE+ZJSnAiBgvHtSZCMTt/K0ZAitVQez0lHs BeQD2zI/PmT12CPGRzANBgkqhkiG9w0BAQsFAAOCAQEAm3AT6TY6RTOmZxGrGAe5 ZyS3Utbdx/PRkGW2BF4QosW6WjD+98VEBBlRa1NuyTw/JylQijD6SZI2fgl0Q45K uQxoUGtet4/N40hBundqUwIn6erHUOmFbJ8GhPyKoxPQ/7RM9Ua8DgxdZyUnggcq OYzUx4lrqVAjr4BrNKsPLPhomjH9kELygIluB8PGm7o0fKsD9bewJkQFITRHPh9s P1pWyi4TtRUoQqFU1yZVmMZrubSw7//AJIRkJkYEqm4CAyjn5hxknd/evOqGO0H2 HXUMkhecXVLFDtp3IbqXAoudA51hNU9jsdlkAoBlvrON/BHZyUu1rCMKWIvo4IKg tw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAv1pWhaEdLCpCVlG94zkR XqN95KEwNlLhmxTlXrYpU9cONSa0DIhjrWTWR+djz/wQMNxYVfKpLvJahtmDc27K zc9pmaUA81gdMMeIeYnnzG+UkcNlcOTokLGeDTF9RF5ihzSenHrhyKcDVkSgsY29 0NwISRge5cEhX/yBFdrMhR3RvuUHM7R6Nffk/V9s6xnPOITav1bp4BUPetr1EQtK tMFyVvoNEluYdZjOJT6yErcKc1eMGmLzw/pEThkFerh93to0yZhb1VQF/k0oomvg ViyW4cQLOzkbVpxcyvwvJ8eAjYTeK5k3TPhOnIgggn47sJQxeGe9wJbFY3YNl5r2 bDA47B8D8btQwY+lIsSGISnjqm4UNGnyyp7/HiAp1FdcOQ0lTyRtb/7vKe/SJ9c+ 4x1WW/fZ7tvrfoI17gn2ZFDQguEbne7zLQ1S7Fd1x0/4716Aglzh1/udWZWiAQqw D9nmi3E7OgOCjPynOETwPD9zFmgia1uKiqEkqbbWpMeDC1CW7JOrmW/Vo7+Y7G9H KpH94Y1rCMWjnopxA+wMip0AlbppbiwHflmTS6z4iEGn6tJQSsja1SNeyddqPmRi 7RwJ1tGh+uqLJpJz8iHhRNKnmyaaXBSV9W1l4ert4JE08S63PvcK8DkrDydnLSre l5J+8TLp+0iPWm9p2g73wiECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 422414279861459279621676867344493490231005 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-25 03:13:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-24 03:13:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lindbergh.info' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 780651652890419515201820354936098668824829940797832428815898980860376561093639528958794256143981720786844288144127244827822291814122476772683212912860160780456165663070515483232444365338923068949802511763785141691186054054841277295488684751393007873031476123257945264225803402316519372697920302201299986388306429062589950990213479220089367217270772655286343296625310267786660885134527148186710771339276211149452166618349943858671436054389421229436770874836632502890165825106675000642544838024196783803832497664228009082030079499447733979355859857873578459811459328044186449640281478352088799680062141817887618723827832223406683381623782083032406221409881393501928693494497830579189489426703441716774371413487285353079606140495107728168286265233900863551434613607701231919171201152506620486322546692917708056922406969584488002306967443936544587831692633103918536231061478320817260680038552438658345916753568043704491993287756208810652875715020393217396409199919105787211720016821253788843735402795878399804903193183412442157577886780421981202694370386184860184335536901955787046309564726525780720000999457265580712166390703754073621702950704175665008342776002167774079893382326209033043650980099733763938795708285589643050985476047393 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dea3965de53fa58c0fa255a5b2ca283840daee55 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lindbergh.info' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lindbergh.info' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018aca8b20060000040300473045022100ecea14c14c94cd01c663455c17b43db5439f2975e689b3f7dc89367db2fdb76202205b9e002c679c58c1ec07391ee373f9d1e71f91dfc50a12e1d099b4a71ad45879007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018aca8b202b0000040300473045022100d6d9ed527b28fb11f133d8c00abcc8b4cdef43d07019d21555a32c413e6494a7022060bc7b52642313b7f2b46408ad5507b3d251ec05e403db323f3e64f5d823c647 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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