nuvact.com
Issued by R3
About this certificate
This digital certificate with serial number 03:68:c4:0e:e3:ad:69:14:53:1f:0d:ce:c3:64:b2:bd:5f:f6 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=nuvact.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:68:c4:0e:e3:ad:69:14:53:1f:0d:ce:c3:64:b2:bd:5f:f6Serial Number (int): 296986829952234175779712415547644685672438
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 82:41:2a:54:2b:bf:3d:b5:3c:27:16:22:12:e2:16:7a:66:35:4e:33
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): b9:5d:67:bf:20:1e:5f:c4:2c:e6:24:38:1e:6c:e7:87:c4:f8:21:1a
Fingerprint (sha256): d7:1f:2c:cb:1d:44:60:b4:3b:b2:b8:6f:16:91:f8:5d:a9:1c:af:2f:08:7f:d8:cb:a3:12:77:90:a0:41:66:b5
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate nuvact.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nuvact.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
nuvact.com
Other certificates including the domain name nuvact.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for nuvact.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4TCCBMmgAwIBAgISA2jEDuOtaRRTHw3Ow2SyvV/2MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMDYxOTMzNTZaFw0yNDAzMDUxOTMzNTVaMBUxEzARBgNVBAMT Cm51dmFjdC5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDfl2ir QDriBkP/snVimKgJhZddCoN1tHyo41o17V80gemBficvIvUQ0Su0XNFCjKCgE9lJ 6DdJ5Mz6mhRhoCLDjhqr+gQjD8gaRhftqCbTvqL/9C7jIw7YebZhAGzad7OWArLB bdV1976ksYv3k9rsiMDWcbwTq5s7Ouc6sl33TSIfObKlkoO/ASRLrC2GA0yuQfjT Q0XJsEpA4P2fzYVZ/qdc2wXgWmOyKjgPNml5JBkXvineU80isd2Y8TPEhMlr4n7h pStz+RIZjAB9qbZusZczGSMsbvX3HIQ74zhh1aghFCLRROZVlvuqCd51tdWYPZVo A+owdc3UHmMFx5FbAc0WOxShPomIoHRNG7vWZqADGWC6NHUXYFq2uDqxBFpyRIKK 4drmJj1Z3KCWwwtyjZ3lKmYP8kSbBjAlVHyv292pjUq/QU2AzPkFwMO3tJJGhAqK ugvlD6b+UfgM3bWTHUiVnYKjq9wWTFuUzQArt8FYlT045quVx98A1Gid8sSooDfT mdHoW0virLGLJY0DYuEmA06E7t/76DhmczfUA3b7vniXlv8X/PVaf3FCbwElDfhh NxTXHr9e0QVOsinYg2o6HKfwsKV0HjEw3pIb9VYD3ZH/v6b7R8g49+EP6i4q9K9y 7SGnr670184hTeebTwlm/ZtXsfRsmDVzYB2gtQIDAQABo4ICDDCCAggwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBSCQSpUK789tTwnFiIS4hZ6ZjVOMzAfBgNVHSMEGDAW gBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUH MAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3Iz LmkubGVuY3Iub3JnLzAVBgNVHREEDjAMggpudXZhY3QuY29tMBMGA1UdIAQMMAow CAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAO1N3dT4tuYBOizBb Bv5AO2fYT8P0x70ADS1yb+H61BcAAAGMQNZTEgAABAMARzBFAiAJwgRc90OWjxQd x6pNXLzv8j4aq1MOWJ2uC6Z51hOoXwIhAPHW77MrxE+P0NH5Hlf0vawsqYGTLgFi PYl0N7ycDVctAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGM QNZTCAAABAMARzBFAiApFRBk8LprfZ3t3tNfPO/Z9uBq7lGXUWGpy8Tp3w+fhgIh AO8sZf2L0a74MaE7tYuYFVgk9m9Zm0MunfiguRrGqX+KMA0GCSqGSIb3DQEBCwUA A4IBAQB2zgFhjrQbwUoPg3Venw6I6ZidpCVjq9dmWn5ZOc1i9kHOJvVyAICMm+t5 mw6nPrMUItIU5sMl6z/kJpyxN1terGq0jpcSa3y1QwpoEKNU82lzQKnUxtMY94bA N1SAkNqyZoB8yEeua08eVfgkVsnrJWqV/nqfZYTmt4tGEZY30TaHcbPnciN+IWFY TfL4t+4uJP/3CaLbclJLsBoXGhIElD4sTIiG8GTOVuA20Yd9t3jm1K4kpMDeJb9O GetUu0ap81HNqzKab4ik6f4nwBOdZVDL6LMoPmJ9r3qgzw9zBP3yF3OlmIlmJCA8 iJi/qwzLfK6QvP94y8rsCnJtloKM -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA35doq0A64gZD/7J1Ypio CYWXXQqDdbR8qONaNe1fNIHpgX4nLyL1ENErtFzRQoygoBPZSeg3SeTM+poUYaAi w44aq/oEIw/IGkYX7agm076i//Qu4yMO2Hm2YQBs2nezlgKywW3Vdfe+pLGL95Pa 7IjA1nG8E6ubOzrnOrJd900iHzmypZKDvwEkS6wthgNMrkH400NFybBKQOD9n82F Wf6nXNsF4Fpjsio4DzZpeSQZF74p3lPNIrHdmPEzxITJa+J+4aUrc/kSGYwAfam2 brGXMxkjLG719xyEO+M4YdWoIRQi0UTmVZb7qgnedbXVmD2VaAPqMHXN1B5jBceR WwHNFjsUoT6JiKB0TRu71magAxlgujR1F2Batrg6sQRackSCiuHa5iY9WdyglsML co2d5SpmD/JEmwYwJVR8r9vdqY1Kv0FNgMz5BcDDt7SSRoQKiroL5Q+m/lH4DN21 kx1IlZ2Co6vcFkxblM0AK7fBWJU9OOarlcffANRonfLEqKA305nR6FtL4qyxiyWN A2LhJgNOhO7f++g4ZnM31AN2+754l5b/F/z1Wn9xQm8BJQ34YTcU1x6/XtEFTrIp 2INqOhyn8LCldB4xMN6SG/VWA92R/7+m+0fIOPfhD+ouKvSvcu0hp6+u9NfOIU3n m08JZv2bV7H0bJg1c2AdoLUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 296986829952234175779712415547644685672438 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-06 19:33:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-05 19:33:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nuvact.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 912173495411126780698962033276292892507098074709776922069472753908776963219529820756278565151781508928288685305922750806179331638339560302667509195940744082266093932124860839484062018822362544757680860399569660231557067760511293644266400439332927653522298924814660090554960316190794897114571044876653789125756403372510928217548270668284353987763919373294019440613986480807462316007270288946526550224774691789067168130457948535832080580026528161972568123205144348722668869199871944412692999932580344938635593431756225647464470710427698180454685047812208869699077280269954423218404112445321233142055227035281580770045297098430413614113142974151862020123736721490541092377949097229696162250939044301948671790316264157365752739818817743274208058586781457998800078415520531498989069845366669706935413457653488168717056855477977572568951739339271627597984752266818783617794589410051932487172512718537362541252700391554565458790233590521232696494750660964126737583929433255771139009099252911251935093344209411721288119902881537227208125769474864468794529946763663847771654742108884453722585343381987716282813059185198333627692944078352343338860276370302527370702255098014564740325950772231858322304577106840600493962100363995876275691298997 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 82412a542bbf3db53c27162212e2167a66354e33 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nuvact.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c40d653120000040300473045022009c2045cf743968f141dc7aa4d5cbceff23e1aab530e589dae0ba679d613a85f022100f1d6efb32bc44f8fd0d1f91e57f4bdac2ca981932e01623d897437bc9c0d572d007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018c40d653080000040300473045022029151064f0ba6b7d9dedded35f3cefd9f6e06aee51975161a9cbc4e9df0f9f86022100ef2c65fd8bd1aef831a13bb58b98155824f66f599b432e9df8a0b91ac6a97f8a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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