duvsa.com
Issued by R3
About this certificate
This digital certificate with serial number 03:2c:30:ac:c9:1c:4b:0a:36:36:af:4b:5f:4c:f0:65:38:9b was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=duvsa.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:2c:30:ac:c9:1c:4b:0a:36:36:af:4b:5f:4c:f0:65:38:9bSerial Number (int): 276373982037665318889908170460625818171547
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 46:7f:53:8d:9d:94:5e:84:c2:5a:6b:ce:0c:c2:19:30:9c:be:9b:89
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 17:25:6f:0a:27:16:d3:d0:42:57:5d:2b:be:56:6f:1f:b5:b0:18:4c
Fingerprint (sha256): ff:a6:bc:c1:fa:24:cb:17:6a:cc:00:ce:c8:fa:b3:2d:17:c7:ac:5a:5e:7f:08:79:f2:44:9f:75:55:48:a5:ad
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate duvsa.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for duvsa.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
duvsa.com
Other certificates including the domain name duvsa.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for duvsa.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4DCCBMigAwIBAgISAywwrMkcSwo2Nq9LX0zwZTibMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMjgxOTM1MzBaFw0yNDAyMjYxOTM1MjlaMBQxEjAQBgNVBAMT CWR1dnNhLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAOR74pNl kPPYxXkz80VPygIH8TcQBEELOGf1G5kafMbFfMETGk8c27IaPpPdFJIzng2ugYN4 /3uPj2i3Ke/kC4/VGIWA9Ud0SRfApygAKEeSZx8T8sFaCqWO3KzzOgSivogl2raD 3knvf72VsUaocGm9p/DKHqSn0ru14rJW5ViOzSfjcsRsWrQrB/j822Ed6Biz8+NE H0fcXqQQYpo5QYRUemmjoMUfizuVTRduovzZHmp6mZ0KZ2dxl1o4WnQfce3jSslN 3rq5t7MUyWYPsxLqH27bsyFCHDangGRAqlVMXQvOZ+BbB4lBm/KtvfnGceTTGi7W rtBw3ZDIjrdxRlFQenWGAC8rNFn49Umjpo9EvagdCK45wRlHbuGYO9rqzdMSl5ct OWyq2Hb3zMp8hJtvI6yIH0OIvCVWC4IS0vMvFgxIeF8Q4zh6ZNIHCLI1n0uX+Y8x aAo85EmEwoYSM6EykLRvu/WAJ/g0D7eoTfxlDPtO2tizIdR7+ZF/OUwb14DNHj1n jgF55lxgRAImSA27pe3v4JLv9rnnsfP47oFtigSEgMRwqo6wTYXNfxyYn57Iy4AZ cw+3/aNciHFHQVFrCHQtuSXEkNVvTe+IK7Pkt3AUnFIQw50uwoCuj5cRE2BmsFsR KlUcLiznLnpcGQVBzRJfJUKuCU3iX8PqkgWRAgMBAAGjggIMMIICCDAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFEZ/U42dlF6EwlprzgzCGTCcvpuJMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMBQGA1UdEQQNMAuCCWR1dnNhLmNvbTATBgNVHSAEDDAKMAgG BmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2AEiw42vapkc0D+VqAvqd MOscUgHLVt0sgdm7v6s52IRzAAABjBek30IAAAQDAEcwRQIgXnRNgPWFSNBc0fDh x2PDFxl6hbMsOv35cEYAf7bH5QQCIQCEtUpYVr81u3xcFZBnirsb52bAR0oxBVXw NknXeZDhxgB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjBek 30cAAAQDAEgwRgIhAKMjGZ1uDnSxsbKz73MT33vBcmnptcGSN/9bZzVZIPaFAiEA 6Z3stP0mB7wXmR4zyqWn3ehjS2rsl6LnpqEIgfComz0wDQYJKoZIhvcNAQELBQAD ggEBAB4iJhjCzyHEII+7vzLEVPHk9m989lFz1Vh2lnNaYsZvOnVkt2dW+fhu3sYY zVW7tVZlEEwXx1ZJmVziuD9uNY4vGs7b2uTmzeVCr1O6fMPYuqf93YxyxFzLfgH9 0IRMjO1G3aRSyrQIO8Bfy/7+6TUPZHaG/PN6aVthGONS92T4I+GW4rcdiDU8Fo6J XcJ3NwhhNuSXWyfziVadDr8C543sjfVxlSP4Q1RciilWFT0A4abGlkD754gJgFu6 hEhQkSJhMovpp4kIm9ROziPrndPEUt4mw0moM6S2QiEyKmDa+eBZB98Byqn+4mQN 09uji+gaZU22pbi79ESOsHqPfgQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA5Hvik2WQ89jFeTPzRU/K AgfxNxAEQQs4Z/UbmRp8xsV8wRMaTxzbsho+k90UkjOeDa6Bg3j/e4+PaLcp7+QL j9UYhYD1R3RJF8CnKAAoR5JnHxPywVoKpY7crPM6BKK+iCXatoPeSe9/vZWxRqhw ab2n8MoepKfSu7XislblWI7NJ+NyxGxatCsH+PzbYR3oGLPz40QfR9xepBBimjlB hFR6aaOgxR+LO5VNF26i/NkeanqZnQpnZ3GXWjhadB9x7eNKyU3eurm3sxTJZg+z EuofbtuzIUIcNqeAZECqVUxdC85n4FsHiUGb8q29+cZx5NMaLtau0HDdkMiOt3FG UVB6dYYALys0Wfj1SaOmj0S9qB0IrjnBGUdu4Zg72urN0xKXly05bKrYdvfMynyE m28jrIgfQ4i8JVYLghLS8y8WDEh4XxDjOHpk0gcIsjWfS5f5jzFoCjzkSYTChhIz oTKQtG+79YAn+DQPt6hN/GUM+07a2LMh1Hv5kX85TBvXgM0ePWeOAXnmXGBEAiZI Dbul7e/gku/2ueex8/jugW2KBISAxHCqjrBNhc1/HJifnsjLgBlzD7f9o1yIcUdB UWsIdC25JcSQ1W9N74grs+S3cBScUhDDnS7CgK6PlxETYGawWxEqVRwuLOcuelwZ BUHNEl8lQq4JTeJfw+qSBZECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 276373982037665318889908170460625818171547 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-28 19:35:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-26 19:35:29 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'duvsa.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 932133093433025112082179247865131524019704682008275187088167843301350930885900472897976920605598655985627940002899276627208974773910038734349283516248891271266539387662930331625088171307328943848871371988244796923044495726689808512632862606147291452558808488265483009562698202852395907975742887068031344341098683578739811779346019056972800395556658529617839844626166563817398586426853516089720940935798741363579810576967361166460897037868362167242023358441113095175186359109657320651448519679756476271148967542916305132792345154004010592937142490920254520754504207154451803292206361055381084179150956170282057628613915509119848547035141307352515114699339721182869377381923837811730625675556373917993832922030481477051373674190798957952808527110053146791869652705712330668374232590316876054896310826712121823968152550332300574130751594391219398818409264171906653020740277396500376342912079377366495499287975234843579900509489345498705199985655616218650780879254227869599129605173834688487194538952521621251691426624114942429643245516749858399222168530464508703533362714526923719215728040608053974117957197858560946967758568279831462991495609524574903083188881994963627295017865224947454276977062082756125194857039235312273411116500369 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 467f538d9d945e84c25a6bce0cc219309cbe9b89 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'duvsa.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c17a4df42000004030047304502205e744d80f58548d05cd1f0e1c763c317197a85b32c3afdf97046007fb6c7e50402210084b54a5856bf35bb7c5c1590678abb1be766c0474a310555f03649d77990e1c60077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c17a4df470000040300483046022100a323199d6e0e74b1b1b2b3ef7313df7bc17269e9b5c19237ff5b67355920f685022100e99decb4fd2607bc17991e33caa5a7dde8634b6aec97a2e7a6a10881f0a89b3d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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