lindbergh.info

Issued by R3

About this certificate

This digital certificate with serial number 04:d9:5d:2f:0d:5c:ae:6d:27:a1:0c:33:e4:69:6d:90:56:dd was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=lindbergh.info

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:d9:5d:2f:0d:5c:ae:6d:27:a1:0c:33:e4:69:6d:90:56:dd
Serial Number (int): 422414279861459279621676867344493490231005
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: de:a3:96:5d:e5:3f:a5:8c:0f:a2:55:a5:b2:ca:28:38:40:da:ee:55
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 10:6f:e7:26:13:47:a0:9b:61:17:9c:1e:a7:72:63:00:8b:13:e9:f9
Fingerprint (sha256): d6:40:29:52:d4:3e:b5:42:5e:1e:e3:d5:dd:b5:c4:3e:90:11:7b:8e:34:c2:5d:ce:b2:4f:41:2b:72:d0:d0:5d

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate lindbergh.info

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for lindbergh.info

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

lindbergh.info
www.lindbergh.info

Other certificates including the domain name lindbergh.info

(limited to 100 certificates)
www.lindbergh.info
www.lindbergh.info
lindbergh.info
www.firecode.info

Certificate

The complete raw certificate details for lindbergh.info in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 422414279861459279621676867344493490231005
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-25 03:13:49 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-24 03:13:48 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lindbergh.info'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 780651652890419515201820354936098668824829940797832428815898980860376561093639528958794256143981720786844288144127244827822291814122476772683212912860160780456165663070515483232444365338923068949802511763785141691186054054841277295488684751393007873031476123257945264225803402316519372697920302201299986388306429062589950990213479220089367217270772655286343296625310267786660885134527148186710771339276211149452166618349943858671436054389421229436770874836632502890165825106675000642544838024196783803832497664228009082030079499447733979355859857873578459811459328044186449640281478352088799680062141817887618723827832223406683381623782083032406221409881393501928693494497830579189489426703441716774371413487285353079606140495107728168286265233900863551434613607701231919171201152506620486322546692917708056922406969584488002306967443936544587831692633103918536231061478320817260680038552438658345916753568043704491993287756208810652875715020393217396409199919105787211720016821253788843735402795878399804903193183412442157577886780421981202694370386184860184335536901955787046309564726525780720000999457265580712166390703754073621702950704175665008342776002167774079893382326209033043650980099733763938795708285589643050985476047393
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							dea3965de53fa58c0fa255a5b2ca283840daee55
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lindbergh.info'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lindbergh.info'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018aca8b20060000040300473045022100ecea14c14c94cd01c663455c17b43db5439f2975e689b3f7dc89367db2fdb76202205b9e002c679c58c1ec07391ee373f9d1e71f91dfc50a12e1d099b4a71ad45879007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018aca8b202b0000040300473045022100d6d9ed527b28fb11f133d8c00abcc8b4cdef43d07019d21555a32c413e6494a7022060bc7b52642313b7f2b46408ad5507b3d251ec05e403db323f3e64f5d823c647
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		009b7013e9363a4533a66711ab1807b96724b752d6ddc7f3d19065b6045e10a2c5ba5a30fef7c5440419516b536ec93c3f2729508a30fa4992367e0974438e4ab90c68506b5eb78fcde34841ba776a530227e9eac750e9856c9f0684fc8aa313d0ffb44cf546bc0e0c5d67252782072a398cd4c7896ba95023af806b34ab0f2cf8689a31fd9042f280896e07c3c69bba347cab03f5b7b02644052134473e1f6c3f5a56ca2e13b5152842a154d7265598c66bb9b4b0efffc0248464264604aa6e020328e7e61c649ddfdebcea863b41f61d750c92179c5d52c50eda7721ba97028b9d039d61354f63b1d964028065beb38dfc11d9c94bb5ac230a588be8e082a0b7