www.elegantjewelrydesign.com

Issued by R3

About this certificate

This digital certificate with serial number 03:43:b3:05:1b:bf:d3:b2:13:0f:15:92:08:5d:34:05:b2:ab was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=www.elegantjewelrydesign.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:43:b3:05:1b:bf:d3:b2:13:0f:15:92:08:5d:34:05:b2:ab
Serial Number (int): 284373734714536564561996725111881686430379
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 54:86:3f:8f:2e:fb:e2:ff:81:be:ce:7f:73:c4:6b:40:1a:96:ef:c7
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): ac:d2:0d:3c:63:98:d4:3e:5f:2b:1b:ef:7a:6c:c8:42:4b:1e:c2:91
Fingerprint (sha256): dd:c7:25:fd:fb:c8:b2:99:fd:d5:45:d3:1a:89:5c:00:25:22:56:33:4e:49:f8:c9:97:d8:b1:55:aa:50:c2:ca

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate www.elegantjewelrydesign.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.elegantjewelrydesign.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

elegantjewelrydesign.com
www.elegantjewelrydesign.com

Other certificates including the domain name elegantjewelrydesign.com

(limited to 100 certificates)
www.elegantjewelrydesign.com
www.elegantjewelrydesign.com
www.elegantjewelrydesign.com
www.elegantjewelrydesign.com

Certificate

The complete raw certificate details for www.elegantjewelrydesign.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAo+TJjbjo0zkfX+jDrQQH
+VM6gHWn/+8CVAeIhrPpP8RnHAk7/Q6+vuwL2+ICspInb0aEnOTLrjGJF6ZvhdlU
pW8ZDAm1FYvUwQcGwdf6eWgC4ke4Az4lbwRGOO71y4LarbFegMo2oboBpNnBL62g
UJH9vHwpJSQV3EqTWoUXBx9w81TAAe/6e31CRZw+darIbRBlYsv3O6ZDLfW2MscR
u2o8MhA0yvPfY4ym8esWiYLEfxEldPZuEcx9zN2pmI+ZgOv6gAwTDTZrpbYgjFIT
dYEJ0uhlRufcFfamCbgtFasWergBnStaO539g3aVL1RRpzMGFFadwQz+DHSZXcQC
+hRfYmtaQtiky3vsxifZUh9x8kN6K41bU3iM5NlrewyAtZtgC82UkdmrcoGGS7K6
trVnTMhbvU7YQJSDyNdataBdT27VMb8dxjzSDBTjcGN9B//C/OL/d9ZKDsgj6zlz
0wjORR5OZMDSqR1hJdNmHA/YZTOedT7yNy64IX4F1ubSPNsUxcbe19nTw845BpAS
38oigfz4YqV89KeVKmioBs2aBzs+q6aDvIgxFyxSkMIWe2/ICGzXSmw3mydj1XfE
zO4ROAAZY7+DoW9G04R+7v/QuimkVJrPG6eVn/+HHlmh+vsArLPO0bC8GBWGLdGB
I5NPMLVAW9lj8Q0xmqb3eVkCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 284373734714536564561996725111881686430379
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-18 02:17:03 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-17 02:17:02 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.elegantjewelrydesign.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 668627962883454160218621684463845637954857413001780971274823886759988308776779086685097438939032052358571531435020795576658570932619839056912796933212119772191175218644519118278619176465133750156722218215469117689265620620774769347669073298400436637706512117544145741121374632065605831845672852245345073437721997180401930145818595290995707194095204305611399912697130940221958477252673742257023150833189604756357461230293922745379578328255595287779918802060478669064466766705938010981563433745610632939918893932065002750891452799529711842939533867158793787099938811925837624378621061040333202492799303301702449334763251046875908755447434683385723743934824725243135106887174510776846360871563056450948976812985238227770724565455172186503929946337370344124372484717714442289679976425354799567365074452729934878702195535624885522605392338184109597217257565023374707832485917037593358343880427541853625022315217906398783322888377700448210944275551458411761358322599826962447830825224349912159676693108414197993505051207033172446084447099167940081064552043540935306360961660889283391611376384620978705734190399053757930519681857968457419336087439697614839311471092141037583060071732340136475016187527873351045499554134879549659342427355481
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							54863f8f2efbe2ff81bece7f73c46b401a96efc7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'elegantjewelrydesign.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.elegantjewelrydesign.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d1a9278530000040300473045022100b564eef77f129fed8936315aeba45ddd12388656f2efa703d65da0b1c2c80de502202dc040eb876fa1851bdb8f5f065ddcfdab10221acdb74a5b18de85a04942bcc90076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d1a92785300000403004730450221008f96029342ced77f556a3d51d915b45bae18fd6a9d3d71f2cdcff1f8f4f7bd3e02200ebb6d17d99c073ea51458fccfbe6ed5896d9509328656b5222db508b36c9276
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00a0f4b0f06980e0d47254a2a320fd8f3a06b9b98b4a9dfeba63b362cd263ecad6d13300c530585d92678d0e52a528b617bd3a898ff416aa6d931f973bac9b5adc9502d37ba1bba7461cfba93f9610abe5785decd6a1b21e46b3c6e5e8a9db787c0abae9dd9c677fe2fc0036080865452fca313f34ca3477355ef10dfe0f60595ae85c7dbcbdf408cb952298c29c8c93e50f51771ac65e4aba575e8fdcc25c0c84066eeee50ac08349a3df122867e35ce7ce25574f445847dde23682e3eae73bf06d30ed7d998c4a9e9d01ef24c9f599e459736c8998f86ca015a57bdbb70abee9306551a32d310fe7de1fc2637cc1fb89f5492a9790041495e28c4dd707974ce1