nuvact.com

Issued by R3

About this certificate

This digital certificate with serial number 03:68:c4:0e:e3:ad:69:14:53:1f:0d:ce:c3:64:b2:bd:5f:f6 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=nuvact.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:68:c4:0e:e3:ad:69:14:53:1f:0d:ce:c3:64:b2:bd:5f:f6
Serial Number (int): 296986829952234175779712415547644685672438
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 82:41:2a:54:2b:bf:3d:b5:3c:27:16:22:12:e2:16:7a:66:35:4e:33
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): b9:5d:67:bf:20:1e:5f:c4:2c:e6:24:38:1e:6c:e7:87:c4:f8:21:1a
Fingerprint (sha256): d7:1f:2c:cb:1d:44:60:b4:3b:b2:b8:6f:16:91:f8:5d:a9:1c:af:2f:08:7f:d8:cb:a3:12:77:90:a0:41:66:b5

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate nuvact.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for nuvact.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

nuvact.com

Other certificates including the domain name nuvact.com

(limited to 100 certificates)

Certificate

The complete raw certificate details for nuvact.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 296986829952234175779712415547644685672438
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-06 19:33:56 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-05 19:33:55 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nuvact.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 912173495411126780698962033276292892507098074709776922069472753908776963219529820756278565151781508928288685305922750806179331638339560302667509195940744082266093932124860839484062018822362544757680860399569660231557067760511293644266400439332927653522298924814660090554960316190794897114571044876653789125756403372510928217548270668284353987763919373294019440613986480807462316007270288946526550224774691789067168130457948535832080580026528161972568123205144348722668869199871944412692999932580344938635593431756225647464470710427698180454685047812208869699077280269954423218404112445321233142055227035281580770045297098430413614113142974151862020123736721490541092377949097229696162250939044301948671790316264157365752739818817743274208058586781457998800078415520531498989069845366669706935413457653488168717056855477977572568951739339271627597984752266818783617794589410051932487172512718537362541252700391554565458790233590521232696494750660964126737583929433255771139009099252911251935093344209411721288119902881537227208125769474864468794529946763663847771654742108884453722585343381987716282813059185198333627692944078352343338860276370302527370702255098014564740325950772231858322304577106840600493962100363995876275691298997
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							82412a542bbf3db53c27162212e2167a66354e33
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nuvact.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c40d653120000040300473045022009c2045cf743968f141dc7aa4d5cbceff23e1aab530e589dae0ba679d613a85f022100f1d6efb32bc44f8fd0d1f91e57f4bdac2ca981932e01623d897437bc9c0d572d007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018c40d653080000040300473045022029151064f0ba6b7d9dedded35f3cefd9f6e06aee51975161a9cbc4e9df0f9f86022100ef2c65fd8bd1aef831a13bb58b98155824f66f599b432e9df8a0b91ac6a97f8a
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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