cantinala20.com

Issued by R3

About this certificate

This digital certificate with serial number 03:00:5e:d8:c6:58:5c:9c:99:36:65:54:45:ac:01:21:64:9f was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=cantinala20.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:00:5e:d8:c6:58:5c:9c:99:36:65:54:45:ac:01:21:64:9f
Serial Number (int): 261462930785923807315835345833269970166943
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 75:55:d9:3a:89:db:0b:5f:60:29:fa:3d:fa:2c:64:07:25:f3:31:fd
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 7c:10:d9:4d:ff:06:74:e8:ec:c8:c6:b1:da:fa:cc:ea:0b:0e:a1:d8
Fingerprint (sha256): fb:74:f9:44:46:a9:fa:47:72:d6:fb:c6:c7:f2:32:1f:4d:75:7f:e5:41:6d:82:97:f4:46:85:c2:e5:0e:f8:59

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate cantinala20.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for cantinala20.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

cantinala20.com
www.cantinala20.com

Other certificates including the domain name cantinala20.com

(limited to 100 certificates)
cantinala20.com
cantinala20.com
cantinala20.com
cantinala20.com
cantinala20.com
cantinala20.com
cantinala20.com
cantinala20.com
cantinala20.com
cantinala20.com
cantinala20.com

Certificate

The complete raw certificate details for cantinala20.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 261462930785923807315835345833269970166943
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-14 02:42:08 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-13 02:42:07 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cantinala20.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 697170107787459650189813495807297214516414713634274658665319642523466459291739121904971761282469462517880130908787189029049720460645775359228883189244472079776699208931715690034890827222107161549697809246867019069152347735829814726578146079188657146067547922673843593470063543774007424850474336772473518529406167138399733046472878168151515572881066089674740221069563775042446574072413820085381992984418413125051060358517885640297100667503047967673757543569179683373269155926362066891093561715603643323164216627698065834858681388725431874934375353110858283611133549874135096150532011363940660517433382459407392825563071981900529917263860775894046436205028166206884174409184415052719853977296956240170835544520683334072249739077599801159221328703584922854110981299129377959702613432003524542301349856525958923481764112607145369061137645517164059575693249453478232077363029915066884803822372676182503561010348682066843874289970900994968549281778433017324956193707705204365994658629701794537663710460007944827554285637504418807950721504073126899138013661225469737768059435783792232408184537515172518717020943743461620387203874396641549303205038606961416401274357098510235384643169799407578909479200515093163263772221800744250774675845753
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							7555d93a89db0b5f6029fa3dfa2c640725f331fd
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cantinala20.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cantinala20.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c666add680000040300473045022100fa14915fd6acce3c179e51a825269e1894f36f2950f3de0bdc6c6951d68b204002202cb359a8fcd25d4884a63201bc84337c60c7fb7aaf155fbd4b98f14dd0703c2000760029d03a1bb674aa711cd3035b6557c14f8aa78b4fe8389449eca453f944bd24680000018c666ade350000040300473045022100e427b77a4abc01f7c355b985a4e8c080f9c886773eeb74a2a55427223042496f02206f8d763d30d9449ba330585ee36d4b56785591e28685f825dde2f6a22fbf40e7
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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