DV SSL/TLS Certificate for milestonephotography.co.nz

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the milestonephotography.co.nz DV SSL/TLS Certificate

This certificate with serial number 05:8a:c5:37:c0:2c:d7:5f:81:de:72:9f:87:be:fc:97:52:f8 for milestonephotography.co.nz was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for milestonephotography.co.nz provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:8a:c5:37:c0:2c:d7:5f:81:de:72:9f:87:be:fc:97:52:f8
Serial Number (int): 482782543683162926823648330281999989691128
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 48:64:ea:d0:e4:01:d5:b4:c2:6a:13:67:a1:13:bc:37:26:eb:85:bf
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): 24:27:9e:23:b4:bf:81:c4:f1:c3:0b:49:f0:35:87:52:3f:ac:51:8c
Fingerprint (SHA-256): 22:29:74:28:ad:84:e2:ee:05:10:f8:9d:3a:a9:d5:d4:d5:45:ca:2b:96:52:95:d7:91:00:b5:76:61:eb:d6:da

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/121.crl

Check the revocation status for certificate milestonephotography.co.nz
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for milestonephotography.co.nz

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

milestonephotography.co.nz

X.509 Certificate

The complete raw X.509 certificate details for milestonephotography.co.nz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlMoebCh0G0uGwrAuQ7LE
CJ3CoDrscuukBu88NLYClA+dWa5NuUJJaHGeftTchcM6QT0LDwPhroqV4bO59xi0
YcoHZHss+Z/yNLK5zFkugbMxANAFzd75gR/Fv6vK6dHebjwlbpMmbDVDtyVBY/va
B3F64MPhAcxASAVQk9tfh8FLsz3gHM/oi2HeNx3yoGkc0C6p6yMP4nprOp+j+O76
SThkrGAGDfpJCBzdZt5ORLRfXyXTKHRZ7Ku4B64utLTERlWNCjE8yqANWXzeVbEH
xD+cwxWI7mkwiJ3MTeerIWYya4g64xJCBO8Myl+bN0a4JxV19/bXOLT7y6rCuuSV
oQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 482782543683162926823648330281999989691128
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-21 06:21:51 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-19 06:21:50 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'milestonephotography.co.nz'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18782937648622032707264212339426054987597220757647447108841976469610917512706001045675209358381482189143327056793935575827749789395949911392067430182319583235475608729077706974318741292234092610840610266461652942000899889342843654627361306915622397275670755460036942830572014181935767201898248401270860667251454138812637615539780632997137722189126561177339196384816557610494416298029149710363251463285721380586905953080809236554897181160215795960957253617314948573211437856834296603244981169030845971999290054168695737333097095490276470242393522251526839867050825153941684316922508167378509166098790890216586257667489
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							4864ead0e401d5b4c26a1367a113bc3726eb85bf
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'milestonephotography.co.nz'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/121.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa3400000197915c1ba400000403004730450220063ef74ff410d44c09d465727cb2d6310707612f1ca8fb041cc4a46cd48ca642022100eb6eb492f2398eb8d34eff9fc6baaf0581d6227a0cddde4925339a40c8d13bdd00760012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a00000197915c1ba100000403004730450221008a80f23825d2731e3c84a2be14afcee23c2875ae3ecd28619db2e4e8ac4d8c80022048dedb71831494822835e3f79bea83d2dc0a7a8855168db1abe1d5c3845c0e4b
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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