duvsa.com

Issued by R3

About this certificate

This digital certificate with serial number 03:2c:30:ac:c9:1c:4b:0a:36:36:af:4b:5f:4c:f0:65:38:9b was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=duvsa.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:2c:30:ac:c9:1c:4b:0a:36:36:af:4b:5f:4c:f0:65:38:9b
Serial Number (int): 276373982037665318889908170460625818171547
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 46:7f:53:8d:9d:94:5e:84:c2:5a:6b:ce:0c:c2:19:30:9c:be:9b:89
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 17:25:6f:0a:27:16:d3:d0:42:57:5d:2b:be:56:6f:1f:b5:b0:18:4c
Fingerprint (sha256): ff:a6:bc:c1:fa:24:cb:17:6a:cc:00:ce:c8:fa:b3:2d:17:c7:ac:5a:5e:7f:08:79:f2:44:9f:75:55:48:a5:ad

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate duvsa.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for duvsa.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

duvsa.com

Other certificates including the domain name duvsa.com

(limited to 100 certificates)
www.duvsa.com
duvsa.com
www.duvsa.com
duvsa.com
www.duvsa.com
duvsa.com
www.defenseminded.com
www.215canna.com
www.duvsa.com
duvsa.com

Certificate

The complete raw certificate details for duvsa.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 276373982037665318889908170460625818171547
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-28 19:35:30 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-26 19:35:29 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'duvsa.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 932133093433025112082179247865131524019704682008275187088167843301350930885900472897976920605598655985627940002899276627208974773910038734349283516248891271266539387662930331625088171307328943848871371988244796923044495726689808512632862606147291452558808488265483009562698202852395907975742887068031344341098683578739811779346019056972800395556658529617839844626166563817398586426853516089720940935798741363579810576967361166460897037868362167242023358441113095175186359109657320651448519679756476271148967542916305132792345154004010592937142490920254520754504207154451803292206361055381084179150956170282057628613915509119848547035141307352515114699339721182869377381923837811730625675556373917993832922030481477051373674190798957952808527110053146791869652705712330668374232590316876054896310826712121823968152550332300574130751594391219398818409264171906653020740277396500376342912079377366495499287975234843579900509489345498705199985655616218650780879254227869599129605173834688487194538952521621251691426624114942429643245516749858399222168530464508703533362714526923719215728040608053974117957197858560946967758568279831462991495609524574903083188881994963627295017865224947454276977062082756125194857039235312273411116500369
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							467f538d9d945e84c25a6bce0cc219309cbe9b89
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'duvsa.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f100760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c17a4df42000004030047304502205e744d80f58548d05cd1f0e1c763c317197a85b32c3afdf97046007fb6c7e50402210084b54a5856bf35bb7c5c1590678abb1be766c0474a310555f03649d77990e1c60077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c17a4df470000040300483046022100a323199d6e0e74b1b1b2b3ef7313df7bc17269e9b5c19237ff5b67355920f685022100e99decb4fd2607bc17991e33caa5a7dde8634b6aec97a2e7a6a10881f0a89b3d
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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