www.elegantjewelrydesign.com
Issued by R3
About this certificate
This digital certificate with serial number 03:43:b3:05:1b:bf:d3:b2:13:0f:15:92:08:5d:34:05:b2:ab was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.elegantjewelrydesign.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:43:b3:05:1b:bf:d3:b2:13:0f:15:92:08:5d:34:05:b2:abSerial Number (int): 284373734714536564561996725111881686430379
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 54:86:3f:8f:2e:fb:e2:ff:81:be:ce:7f:73:c4:6b:40:1a:96:ef:c7
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ac:d2:0d:3c:63:98:d4:3e:5f:2b:1b:ef:7a:6c:c8:42:4b:1e:c2:91
Fingerprint (sha256): dd:c7:25:fd:fb:c8:b2:99:fd:d5:45:d3:1a:89:5c:00:25:22:56:33:4e:49:f8:c9:97:d8:b1:55:aa:50:c2:ca
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.elegantjewelrydesign.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.elegantjewelrydesign.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
elegantjewelrydesign.com
www.elegantjewelrydesign.com
www.elegantjewelrydesign.com
Other certificates including the domain name elegantjewelrydesign.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.elegantjewelrydesign.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGHzCCBQegAwIBAgISA0OzBRu/07ITDxWSCF00BbKrMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMTgwMjE3MDNaFw0yNDA0MTcwMjE3MDJaMCcxJTAjBgNVBAMT HHd3dy5lbGVnYW50amV3ZWxyeWRlc2lnbi5jb20wggIiMA0GCSqGSIb3DQEBAQUA A4ICDwAwggIKAoICAQCj5MmNuOjTOR9f6MOtBAf5UzqAdaf/7wJUB4iGs+k/xGcc CTv9Dr6+7Avb4gKykidvRoSc5MuuMYkXpm+F2VSlbxkMCbUVi9TBBwbB1/p5aALi R7gDPiVvBEY47vXLgtqtsV6AyjahugGk2cEvraBQkf28fCklJBXcSpNahRcHH3Dz VMAB7/p7fUJFnD51qshtEGViy/c7pkMt9bYyxxG7ajwyEDTK899jjKbx6xaJgsR/ ESV09m4RzH3M3amYj5mA6/qADBMNNmultiCMUhN1gQnS6GVG59wV9qYJuC0VqxZ6 uAGdK1o7nf2DdpUvVFGnMwYUVp3BDP4MdJldxAL6FF9ia1pC2KTLe+zGJ9lSH3Hy Q3orjVtTeIzk2Wt7DIC1m2ALzZSR2atygYZLsrq2tWdMyFu9TthAlIPI11q1oF1P btUxvx3GPNIMFONwY30H/8L84v931koOyCPrOXPTCM5FHk5kwNKpHWEl02YcD9hl M551PvI3LrghfgXW5tI82xTFxt7X2dPDzjkGkBLfyiKB/PhipXz0p5UqaKgGzZoH Oz6rpoO8iDEXLFKQwhZ7b8gIbNdKbDebJ2PVd8TM7hE4ABljv4Ohb0bThH7u/9C6 KaRUms8bp5Wf/4ceWaH6+wCss87RsLwYFYYt0YEjk08wtUBb2WPxDTGapvd5WQID AQABo4ICODCCAjQwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRUhj+PLvvi/4G+zn9z xGtAGpbvxzAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEF BQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggr BgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzBBBgNVHREEOjA4ghhlbGVn YW50amV3ZWxyeWRlc2lnbi5jb22CHHd3dy5lbGVnYW50amV3ZWxyeWRlc2lnbi5j b20wEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAA dgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY0aknhTAAAEAwBH MEUCIQC1ZO73fxKf7Yk2MVrrpF3dEjiGVvLvpwPWXaCxwsgN5QIgLcBA64dvoYUb 249fBl3c/asQIhrNt0pbGN6FoElCvMkAdgA7U3d1Pi25gE6LMFsG/kA7Z9hPw/TH vQANLXJv4frUFwAAAY0aknhTAAAEAwBHMEUCIQCPlgKTQs7Xf1VqPVHZFbRbrhj9 ap09cfLNz/H49Pe9PgIgDrttF9mcBz6lFFj8z75u1YltlQkyhla1Ii21CLNsknYw DQYJKoZIhvcNAQELBQADggEBAKD0sPBpgODUclSioyD9jzoGubmLSp3+umOzYs0m PsrW0TMAxTBYXZJnjQ5SpSi2F706iY/0Fqptkx+XO6ybWtyVAtN7obunRhz7qT+W EKvleF3s1qGyHkazxuXoqdt4fAq66d2cZ3/i/AA2CAhlRS/KMT80yjR3NV7xDf4P YFla6Fx9vL30CMuVIpjCnIyT5Q9RdxrGXkq6V16P3MJcDIQGbu7lCsCDSaPfEihn 41znziVXT0RYR93iNoLj6uc78G0w7X2ZjEqenQHvJMn1meRZc2yJmPhsoBWle9u3 Cr7pMGVRoy0xD+feH8JjfMH7ifVJKpeQBBSV4oxN1weXTOE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAo+TJjbjo0zkfX+jDrQQH +VM6gHWn/+8CVAeIhrPpP8RnHAk7/Q6+vuwL2+ICspInb0aEnOTLrjGJF6ZvhdlU pW8ZDAm1FYvUwQcGwdf6eWgC4ke4Az4lbwRGOO71y4LarbFegMo2oboBpNnBL62g UJH9vHwpJSQV3EqTWoUXBx9w81TAAe/6e31CRZw+darIbRBlYsv3O6ZDLfW2MscR u2o8MhA0yvPfY4ym8esWiYLEfxEldPZuEcx9zN2pmI+ZgOv6gAwTDTZrpbYgjFIT dYEJ0uhlRufcFfamCbgtFasWergBnStaO539g3aVL1RRpzMGFFadwQz+DHSZXcQC +hRfYmtaQtiky3vsxifZUh9x8kN6K41bU3iM5NlrewyAtZtgC82UkdmrcoGGS7K6 trVnTMhbvU7YQJSDyNdataBdT27VMb8dxjzSDBTjcGN9B//C/OL/d9ZKDsgj6zlz 0wjORR5OZMDSqR1hJdNmHA/YZTOedT7yNy64IX4F1ubSPNsUxcbe19nTw845BpAS 38oigfz4YqV89KeVKmioBs2aBzs+q6aDvIgxFyxSkMIWe2/ICGzXSmw3mydj1XfE zO4ROAAZY7+DoW9G04R+7v/QuimkVJrPG6eVn/+HHlmh+vsArLPO0bC8GBWGLdGB I5NPMLVAW9lj8Q0xmqb3eVkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 284373734714536564561996725111881686430379 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-18 02:17:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-17 02:17:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.elegantjewelrydesign.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 668627962883454160218621684463845637954857413001780971274823886759988308776779086685097438939032052358571531435020795576658570932619839056912796933212119772191175218644519118278619176465133750156722218215469117689265620620774769347669073298400436637706512117544145741121374632065605831845672852245345073437721997180401930145818595290995707194095204305611399912697130940221958477252673742257023150833189604756357461230293922745379578328255595287779918802060478669064466766705938010981563433745610632939918893932065002750891452799529711842939533867158793787099938811925837624378621061040333202492799303301702449334763251046875908755447434683385723743934824725243135106887174510776846360871563056450948976812985238227770724565455172186503929946337370344124372484717714442289679976425354799567365074452729934878702195535624885522605392338184109597217257565023374707832485917037593358343880427541853625022315217906398783322888377700448210944275551458411761358322599826962447830825224349912159676693108414197993505051207033172446084447099167940081064552043540935306360961660889283391611376384620978705734190399053757930519681857968457419336087439697614839311471092141037583060071732340136475016187527873351045499554134879549659342427355481 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 54863f8f2efbe2ff81bece7f73c46b401a96efc7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'elegantjewelrydesign.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.elegantjewelrydesign.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d1a9278530000040300473045022100b564eef77f129fed8936315aeba45ddd12388656f2efa703d65da0b1c2c80de502202dc040eb876fa1851bdb8f5f065ddcfdab10221acdb74a5b18de85a04942bcc90076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d1a92785300000403004730450221008f96029342ced77f556a3d51d915b45bae18fd6a9d3d71f2cdcff1f8f4f7bd3e02200ebb6d17d99c073ea51458fccfbe6ed5896d9509328656b5222db508b36c9276 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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