puzzelsite.nl

Issued by R3

About this certificate

This digital certificate with serial number 04:f7:fe:85:89:b2:2d:ac:86:a9:40:86:e0:ca:29:53:f9:ad was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=puzzelsite.nl

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:f7:fe:85:89:b2:2d:ac:86:a9:40:86:e0:ca:29:53:f9:ad
Serial Number (int): 432837205635731204850161380115648865368493
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 48:0c:69:bc:32:e5:2c:16:2e:20:59:87:28:39:f2:9f:43:ba:25:6f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 88:2c:68:89:52:54:bf:76:db:ee:a7:3b:95:29:6e:84:16:0f:14:41
Fingerprint (sha256): e4:72:7e:2b:28:49:a9:01:e3:7e:7f:27:68:a1:54:17:35:34:02:27:4b:cd:31:8d:18:79:7f:82:e6:d9:55:23

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate puzzelsite.nl

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for puzzelsite.nl

Public Key Algorithm

RSA

Key Size

3072

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

puzzelsite.nl
www.puzzelsite.nl

Other certificates including the domain name puzzelsite.nl

(limited to 100 certificates)
www.puzzelsite.nl
puzzelsite.nl
www.puzzelsite.nl
www.puzzelsite.nl
puzzelsite.nl
www.puzzelsite.nl
login.puzzelsite.nl
preview.puzzelsite.nl
www.puzzelsite.nl
www.puzzelsite.nl
puzzelsite.nl
www.puzzelsite.nl
puzzelsite.nl
www.puzzelsite.nl
login.puzzelsite.nl
puzzelsite.nl
preview.puzzelsite.nl
www.puzzelsite.nl
preview.puzzelsite.nl
preview.puzzelsite.nl
beta.puzzelsite.nl
puzzelsite.nl
puzzelsite.nl
www.puzzelsite.nl
www.puzzelsite.nl
puzzelsite.nl
preview.puzzelsite.nl
puzzelsite.nl
puzzelsite.nl
puzzelsite.nl
www.puzzelsite.nl
preview.puzzelsite.nl
auth-apprm.mypoiworld.com
beta.puzzelsite.nl
login.puzzelsite.nl
puzzelsite.nl
login.puzzelsite.nl
puzzelsite.nl
puzzelsite.nl
login.puzzelsite.nl
www.puzzelsite.nl
login.puzzelsite.nl
preview.puzzelsite.nl
www.puzzelsite.nl
puzzelsite.nl
puzzelsite.nl
www.puzzelsite.nl
beta.puzzelsite.nl
www.puzzelsite.nl
www.puzzelsite.nl
puzzelsite.nl
puzzelsite.nl
puzzelsite.nl
www.puzzelsite.nl
beta.puzzelsite.nl
www.puzzelsite.nl
puzzelsite.nl
preview.puzzelsite.nl
www.puzzelsite.nl
www.puzzelsite.nl
preview.puzzelsite.nl
puzzelsite.nl
puzzelsite.nl
login.puzzelsite.nl
www.puzzelsite.nl
puzzelsite.nl

Certificate

The complete raw certificate details for puzzelsite.nl in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 432837205635731204850161380115648865368493
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-26 08:30:31 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-25 08:30:30 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'puzzelsite.nl'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 3035093689031479495930056301270989738920300491481374712757387017288870843876212860801984640988645736334827002147099549660071880874599524180607862628793516745024409236295536886300022818280940706375631892235328242163798267229160445605619231849804277652552613481188689165753908151715929744666814606314402566936437234978558763024237935654669516457608087824431145211348974791886261855873094998747395626538961859101943074902854789001907844591274469978679789213642518816377007424683902488028062752365814983141143295577568620042742327710827458131881661071409600013026906613082679805355079111675555799246916651520688173274741770824682102623544665770333557791346568834765613837575055956374123687792107129378334893555621961467848750531922671007145003783097149611180347604759246184922138249507167234035599110439976508558271132102814077338521390442743452294283511810170894440891898262034090940912575203749683154725517938043993115953616237
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							480c69bc32e52c162e2059872839f29f43ba256f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'puzzelsite.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.puzzelsite.nl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018ad0d36e70000004030047304502206b77dd3dceb1f51faa5d8f59993190f30a3a970009c46f9044d212862decf98f022100b7ab20ac77da2f5df9fa872be62de4cd32e31268a4a485bd4da8045a13f18fa7007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018ad0d36e6c0000040300473045022100898d809c6454e0a26c59a2d91ee65ea0710cfb3c912b2d3959939db76c1aa81d0220146cf942609df0d9ca44aadbc1278b03babde81a3133695071ce42ca213a1f67
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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