covalta.com
Issued by R3
About this certificate
This digital certificate with serial number 04:99:42:90:5b:6f:51:bd:ac:de:5f:f6:14:77:d2:f8:6b:34 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=covalta.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:99:42:90:5b:6f:51:bd:ac:de:5f:f6:14:77:d2:f8:6b:34Serial Number (int): 400600824458932902519691985746930311916340
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 38:c8:c7:32:13:61:1e:b1:08:8d:99:58:66:cc:7f:85:7e:12:92:77
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): da:bd:28:ad:a8:6d:e8:41:5a:ce:bb:b1:b2:48:b7:52:07:55:0a:af
Fingerprint (sha256): ef:cc:ba:c3:2e:24:ed:72:6e:bd:8d:d4:60:e6:85:68:79:62:ba:f5:27:93:41:bc:4d:52:08:72:fa:e9:0e:51
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate covalta.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for covalta.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
covalta.com
Other certificates including the domain name covalta.com
(limited to 100 certificates)
ss9d.com
www.zaud.com
wildfirecrowd.com
insectrepellent.organic
www.electropic.com
defivia.com
insectrepellent.organic
mammakush.com
klevurb.com
34883.com
www.fidweb.com
www.mosquitorepellant.organic
thermoblend.com
covalta.com
westvirginiasportsmedicine.com
www.scubagear.online
www.jointpainarizona.com
upperdarbydentistry.com
www.covalta.com
ballernomad.com
www.lgbtidating.com
washingtoncourierservice.com
634.me
www.apexbeam.com
www.californiacherimoya.com
covalta.com
washingtoncourierservice.com
wifirouterstore.com
jointpaindc.com
www.zaud.com
wildfirecrowd.com
insectrepellent.organic
www.electropic.com
defivia.com
insectrepellent.organic
mammakush.com
klevurb.com
34883.com
www.fidweb.com
www.mosquitorepellant.organic
thermoblend.com
covalta.com
westvirginiasportsmedicine.com
www.scubagear.online
www.jointpainarizona.com
upperdarbydentistry.com
www.covalta.com
ballernomad.com
www.lgbtidating.com
washingtoncourierservice.com
634.me
www.apexbeam.com
www.californiacherimoya.com
covalta.com
washingtoncourierservice.com
wifirouterstore.com
jointpaindc.com
Certificate
The complete raw certificate details for covalta.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5TCCBM2gAwIBAgISBJlCkFtvUb2s3l/2FHfS+Gs0MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMjMxMDE0NDBaFw0yNDAzMjIxMDE0MzlaMBYxFDASBgNVBAMT C2NvdmFsdGEuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtu+M Fq43t1wd+a8VWGdD0g60NvovVuYSe+bsEwrFp5Bxr+pBb52gUn0uxkRKat5TYORn 58xi0Zx7e5NYd0gY/rid8yE1PQ3xbMfdS+7Xe9kpdq9+FWsxPo4Ak+4ukWCe0iQs 7uz3pH0a/LPXru4QeRa8O94h2nos3Sx3kjapEDhyomAot2flKTy8u0A5rKqtVkXk PPB0LJ/eyiXH/sSilnsZw9XWlEezLoI0fWfEZHzDhb1G5PywiNOVLijkwko9ZGRR 5nyBSioOt3YcTCvuRe3z2U6eVLCChT5bm/x03RyC+fidPFyBCYLrL6yP1JmJ6xBY VW2+Tl5U6U/Bd85smU4IQPtBk/T6GhkjZza2Z3BQBvTS07wi9GVR3oR4LBqYl3BM BEhuGSu5i1TivHNOGNdzLlIKMuV0qAqaJyUZ/SCf5AkpT8Cei/bxCJRjeUq/Vhvy BYKTaCn4u+KDTnTHelvqnd5T5yS3dphxV1lLQ1TaboYbj8WOKwNNMQAFx9CXql3B k27DDm4cOrESYn9DdPxMGhhHwWWJJmDXPabexzLXHkzQDRH345ZjPs/EklkuvKvf PRp2A7C1gj0QAailoVLiztN8p9MeK5da9zjKfUlQTUD5Bz2APo0DRMME5tLSzXiU rERFlLx2yhOkmBQ56su1Xy8dtrhaI0q/HwuLUqsCAwEAAaOCAg8wggILMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQUOMjHMhNhHrEIjZlYZsx/hX4SkncwHwYDVR0jBBgw FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y My5pLmxlbmNyLm9yZy8wFgYDVR0RBA8wDYILY292YWx0YS5jb20wEwYDVR0gBAww CjAIBgZngQwBAgEwggEGBgorBgEEAdZ5AgQCBIH3BIH0APIAdwBIsONr2qZHNA/l agL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYyWYmZYAAAEAwBIMEYCIQDBQWtDVC37 4VfXtKISLFz87hQ/CQ+BYH74xAu1dhcKBwIhAIOh3XTfn+NvSL6ILwmW7urAMjpM fVcIuBkZskTvl7xBAHcAouK/1h7eLy8HoNZObTen3GVDsMa1LqLat4r4mm31F9gA AAGMlmJmZQAABAMASDBGAiEAyq6bOtRLCQmnKD4yGah9Tq4CSrqmqJ+GTUt9Y4o8 r00CIQD96WltVFdG/h18eF5EdeRvpzEgl0t4NboREcEEZp2PpDANBgkqhkiG9w0B AQsFAAOCAQEAYEseod/kaxOo06gS+CF3J8APzZM2IBDQUpumk40b+wkUx9jX+zKl t1ImyAisQBObNuhWfsVU7vGtxoBPwF7zPESGYVdH34EU8hq68tJ8I5+ySDsHurjC jljo2S0zbOoBNYViCrq7YvDv+Twjsk9Sqio2C/HWUf9X8lGjLrPVh2ZOz4N6KYAp BrjYh5n19nCozJiH75iXvmcWMH80cpx5wZpXgqqfkREUN7kLk05vFfkq2BSxV5O2 P+LH40T+b4GVpE5jznxzDBFXzilkO84fzRFv6YN2xzotWTdZBk6ghVKB87+aWgCa Ltp+nKk/E6Uul7bKKp+SIElKU1zBZzanLg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtu+MFq43t1wd+a8VWGdD 0g60NvovVuYSe+bsEwrFp5Bxr+pBb52gUn0uxkRKat5TYORn58xi0Zx7e5NYd0gY /rid8yE1PQ3xbMfdS+7Xe9kpdq9+FWsxPo4Ak+4ukWCe0iQs7uz3pH0a/LPXru4Q eRa8O94h2nos3Sx3kjapEDhyomAot2flKTy8u0A5rKqtVkXkPPB0LJ/eyiXH/sSi lnsZw9XWlEezLoI0fWfEZHzDhb1G5PywiNOVLijkwko9ZGRR5nyBSioOt3YcTCvu Re3z2U6eVLCChT5bm/x03RyC+fidPFyBCYLrL6yP1JmJ6xBYVW2+Tl5U6U/Bd85s mU4IQPtBk/T6GhkjZza2Z3BQBvTS07wi9GVR3oR4LBqYl3BMBEhuGSu5i1TivHNO GNdzLlIKMuV0qAqaJyUZ/SCf5AkpT8Cei/bxCJRjeUq/VhvyBYKTaCn4u+KDTnTH elvqnd5T5yS3dphxV1lLQ1TaboYbj8WOKwNNMQAFx9CXql3Bk27DDm4cOrESYn9D dPxMGhhHwWWJJmDXPabexzLXHkzQDRH345ZjPs/EklkuvKvfPRp2A7C1gj0QAail oVLiztN8p9MeK5da9zjKfUlQTUD5Bz2APo0DRMME5tLSzXiUrERFlLx2yhOkmBQ5 6su1Xy8dtrhaI0q/HwuLUqsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 400600824458932902519691985746930311916340 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-23 10:14:40 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-22 10:14:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'covalta.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 746312671158880657322760684205358119113415373080236867908984981827539282700664517921758006540842308796916996944610811626188818972691293133952747022883405237799713660895418038636005442268606013013417774980962963583613941900519433534536123335865069261501212722132941246870426595839137528962561323516060380890643443246674172525610502425426017038182814357765950805427610325083593416807975476557208300815452607660390635331718612153209658472999008547773595951113415787622912472905379437310837865720288845755406802430344859917029748751521942843055050939160437787291183988117146748664341012653924599546215514692945610659408308345907351948028646919908248233486221302137621121875564091259937839304347467542461927179775656491641386078449225428929214974076238799876669796121742996018812018612541735673916647406257674778563326861105406851775185571545679035641652546642647740144459246874251100052568152469679372981191272382927116974017954510402116697300654428059020402532096687244865668891269587191336773488423703750683310012366614675453667938826450755592633011240972107709766560237285944419424214363916397011045730355412836021156896034703304018237086075830523561749594584864718501961001606297460606625090250205718272118001380036016170949069722283 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 38c8c73213611eb1088d995866cc7f857e129277 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'covalta.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f200770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c966266580000040300483046022100c1416b43542dfbe157d7b4a2122c5cfcee143f090f81607ef8c40bb576170a0702210083a1dd74df9fe36f48be882f0996eeeac0323a4c7d5708b81919b244ef97bc41007700a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018c966266650000040300483046022100caae9b3ad44b0909a7283e3219a87d4eae024abaa6a89f864d4b7d638a3caf4d022100fde9696d545746fe1d7c785e4475e46fa73120974b7835ba1111c104669d8fa4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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