cantinala20.com
Issued by R3
About this certificate
This digital certificate with serial number 03:00:5e:d8:c6:58:5c:9c:99:36:65:54:45:ac:01:21:64:9f was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=cantinala20.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:00:5e:d8:c6:58:5c:9c:99:36:65:54:45:ac:01:21:64:9fSerial Number (int): 261462930785923807315835345833269970166943
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 75:55:d9:3a:89:db:0b:5f:60:29:fa:3d:fa:2c:64:07:25:f3:31:fd
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 7c:10:d9:4d:ff:06:74:e8:ec:c8:c6:b1:da:fa:cc:ea:0b:0e:a1:d8
Fingerprint (sha256): fb:74:f9:44:46:a9:fa:47:72:d6:fb:c6:c7:f2:32:1f:4d:75:7f:e5:41:6d:82:97:f4:46:85:c2:e5:0e:f8:59
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate cantinala20.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cantinala20.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cantinala20.com
www.cantinala20.com
www.cantinala20.com
Other certificates including the domain name cantinala20.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for cantinala20.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGADCCBOigAwIBAgISAwBe2MZYXJyZNmVURawBIWSfMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMTQwMjQyMDhaFw0yNDAzMTMwMjQyMDdaMBoxGDAWBgNVBAMT D2NhbnRpbmFsYTIwLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB AKrj0sA84+CgCq97LeoTufcm6JyQuZ2XHMcwoFQ1vFMem8UN7WTIYK17eFx+zeAU uFFvN8wPKUhFLT9xVDbTkb4HXgoQQ0C/x85bmYdl3tmGlUHZlcK5/uUxx4Z0jQtV 3I7dsXKpa1EaXqXsVXJRItSHWCdTb4zprqc3IeM/qyE/yEwQBlOh/Y4OkTi9ycPr nbGcLClUavp/2Zlcz1BUisNQkGAy+4Qp6ygZIZucJF5GhqhokTpJrFfTBPi9qJv2 t5v80SNey06K/n1/JUlqdsgjzYIoM3Ri3iu7UHxrA7et7Iigk5OaR36Ls6J/9rWT UBqN37Z9bm0qVZFevG87h1UyWOQ9LpTkcJp+S9Y1jgyoIHUrefKOwfTxft+25FOH 1yz88qiVfE5ItT+lAGJRl/DRrR0S0efNEP7VAzfpxoUx8VtKfzh4AyEF0NWnoe1h bdr/Lwvnri/5aVmjRQ2eNVM4A31lGVuLa26tgOGvxwq8pm0VwFi+3h5i6IFPK0Vv m8M7+EzVVjbffGD5koo7gROUFzxKSARG4a7yVwAfwjqwunxWCdDbNcOOmIe/0AuC NN7zq9902qm8R0NcmyntNdCxM15wawhFr/OqqSyp9bQACKP87kbloHufHiGQBgE9 roiBT3EUq6UkI2Cv2JTUP9NhQrKQAOoVilh7qIPM/PJ5AgMBAAGjggImMIICIjAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFHVV2TqJ2wtfYCn6PfosZAcl8zH9MB8GA1Ud IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw Oi8vcjMuaS5sZW5jci5vcmcvMC8GA1UdEQQoMCaCD2NhbnRpbmFsYTIwLmNvbYIT d3d3LmNhbnRpbmFsYTIwLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisG AQQB1nkCBAIEgfUEgfIA8AB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s5 2IRzAAABjGZq3WgAAAQDAEcwRQIhAPoUkV/WrM48F55RqCUmnhiU828pUPPeC9xs aVHWiyBAAiAss1mo/NJdSISmMgG8hDN8YMf7eq8VX71LmPFN0HA8IAB2ACnQOhu2 dKpxHNMDW2VXwU+Kp4tP6DiUSeykU/lEvSRoAAABjGZq3jUAAAQDAEcwRQIhAOQn t3pKvAH3w1W5haTowID5yIZ3Put0oqVUJyIwQklvAiBvjXY9MNlEm6MwWF7jbUtW eFWR4oaF+CXd4vaiL79A5zANBgkqhkiG9w0BAQsFAAOCAQEAHoDSNoatNRaZwM94 vpnHJaj1FaAQTG3Z9bgRHsDTASYEYYUy8qw8WPSrFb1FowcWroViclBG/8JPg6/F rzDg3KSEbsZM0o/6CfdeJpzHDIfh5cps0LigfsVBmja1cLd3fES7b+enjDD97rT8 vUD8WSD53BGMOMDqXm48Bffbxy15Cy4t8hI3oMnIp8ZprE/GlYWDMOBQp42nlIuv DgwBwoV8++xcVC9VhK62mYd2utHWmTzgcvpB3wGRmBvqxgvyc1DC9gGha9yHxMIk YbfT0oQOG91h5KLEc2V3aBt/D8vvjPc6QeZuvACBa1+8ySV/38kzdqaeYQyivKxy s0hx1g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAquPSwDzj4KAKr3st6hO5 9ybonJC5nZccxzCgVDW8Ux6bxQ3tZMhgrXt4XH7N4BS4UW83zA8pSEUtP3FUNtOR vgdeChBDQL/HzluZh2Xe2YaVQdmVwrn+5THHhnSNC1Xcjt2xcqlrURpepexVclEi 1IdYJ1NvjOmupzch4z+rIT/ITBAGU6H9jg6ROL3Jw+udsZwsKVRq+n/ZmVzPUFSK w1CQYDL7hCnrKBkhm5wkXkaGqGiROkmsV9ME+L2om/a3m/zRI17LTor+fX8lSWp2 yCPNgigzdGLeK7tQfGsDt63siKCTk5pHfouzon/2tZNQGo3ftn1ubSpVkV68bzuH VTJY5D0ulORwmn5L1jWODKggdSt58o7B9PF+37bkU4fXLPzyqJV8Tki1P6UAYlGX 8NGtHRLR580Q/tUDN+nGhTHxW0p/OHgDIQXQ1aeh7WFt2v8vC+euL/lpWaNFDZ41 UzgDfWUZW4trbq2A4a/HCrymbRXAWL7eHmLogU8rRW+bwzv4TNVWNt98YPmSijuB E5QXPEpIBEbhrvJXAB/COrC6fFYJ0Ns1w46Yh7/QC4I03vOr33TaqbxHQ1ybKe01 0LEzXnBrCEWv86qpLKn1tAAIo/zuRuWge58eIZAGAT2uiIFPcRSrpSQjYK/YlNQ/ 02FCspAA6hWKWHuog8z88nkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 261462930785923807315835345833269970166943 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-14 02:42:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-13 02:42:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cantinala20.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 697170107787459650189813495807297214516414713634274658665319642523466459291739121904971761282469462517880130908787189029049720460645775359228883189244472079776699208931715690034890827222107161549697809246867019069152347735829814726578146079188657146067547922673843593470063543774007424850474336772473518529406167138399733046472878168151515572881066089674740221069563775042446574072413820085381992984418413125051060358517885640297100667503047967673757543569179683373269155926362066891093561715603643323164216627698065834858681388725431874934375353110858283611133549874135096150532011363940660517433382459407392825563071981900529917263860775894046436205028166206884174409184415052719853977296956240170835544520683334072249739077599801159221328703584922854110981299129377959702613432003524542301349856525958923481764112607145369061137645517164059575693249453478232077363029915066884803822372676182503561010348682066843874289970900994968549281778433017324956193707705204365994658629701794537663710460007944827554285637504418807950721504073126899138013661225469737768059435783792232408184537515172518717020943743461620387203874396641549303205038606961416401274357098510235384643169799407578909479200515093163263772221800744250774675845753 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7555d93a89db0b5f6029fa3dfa2c640725f331fd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cantinala20.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cantinala20.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c666add680000040300473045022100fa14915fd6acce3c179e51a825269e1894f36f2950f3de0bdc6c6951d68b204002202cb359a8fcd25d4884a63201bc84337c60c7fb7aaf155fbd4b98f14dd0703c2000760029d03a1bb674aa711cd3035b6557c14f8aa78b4fe8389449eca453f944bd24680000018c666ade350000040300473045022100e427b77a4abc01f7c355b985a4e8c080f9c886773eeb74a2a55427223042496f02206f8d763d30d9449ba330585ee36d4b56785591e28685f825dde2f6a22fbf40e7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 001e80d23686ad351699c0cf78be99c725a8f515a0104c6dd9f5b8111ec0d3012604618532f2ac3c58f4ab15bd45a30716ae8562725046ffc24f83afc5af30e0dca4846ec64cd28ffa09f75e269cc70c87e1e5ca6cd0b8a07ec5419a36b570b7777c44bb6fe7a78c30fdeeb4fcbd40fc5920f9dc118c38c0ea5e6e3c05f7dbc72d790b2e2df21237a0c9c8a7c669ac4fc695858330e050a78da7948baf0e0c01c2857cfbec5c542f5584aeb6998776bad1d6993ce072fa41df0191981beac60bf27350c2f601a16bdc87c4c22461b7d3d2840e1bdd61e4a2c4736577681b7f0fcbef8cf73a41e66ebc00816b5fbcc9257fdfc93376a69e610ca2bcac72b34871d6