DV SSL/TLS Certificate for www.chabrybarna.cz

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the www.chabrybarna.cz DV SSL/TLS Certificate

This certificate with serial number 05:80:1b:a4:0e:bc:7e:71:66:88:b7:45:33:67:bb:71:98:b9 for www.chabrybarna.cz was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.chabrybarna.cz provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:80:1b:a4:0e:bc:7e:71:66:88:b7:45:33:67:bb:71:98:b9
Serial Number (int): 479154313616140110204594460855290312104121
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: aa:a2:27:68:0a:b4:a6:ed:91:54:5a:00:72:61:80:51:89:49:20:5a
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): 9a:11:d3:db:6e:55:85:97:9c:a6:d7:f3:12:e8:7e:38:f1:3b:66:ab
Fingerprint (SHA-256): 44:2b:b3:9b:ba:52:41:68:92:1e:d8:7c:c5:2b:41:85:06:3c:10:bd:d8:f4:00:2b:c5:32:4c:75:c8:0b:6f:e9

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/58.crl

Check the revocation status for certificate www.chabrybarna.cz
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.chabrybarna.cz

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for www.chabrybarna.cz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 479154313616140110204594460855290312104121
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-30 14:34:51 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-28 14:34:50 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.chabrybarna.cz'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 779999187121919680720052528434900622972439255314292638649910995323082592368036485968017416626212659617209663667600220594537292931157796334221262926215035815714918950266325334575528038162142126462053699712136076996353483206835760940713591292999780741070213787196153797911381193567037344970631976577498862375722972174997559127163911229014368708064506364752192661575778116903768548173852772791893682192116536582302354916205419223153827116001049179118868176783050372390655837906556465706250569385455202850556523865876918760385833217691742652038562577991332587019309438939428430445724332194596420827641158225432016995734563642773716195104541517117567882456913051731872162641822200276330096471952548150519208274461536172824550402420329715698020537209347595006166252524060633560783162086987010527130312699298389971682188706360514838149464363618570440007984172903714845192436985085793891869214352489171642787630698157952379965308673977248713884397057102332328303036720468112766207982520014011649391683214104092809708077327834892662733710379253847412588571739573076949032727266133123453872500968228034033791262315388151217226899234831709052481068382901194185860572709649085180357046520445843431617782868376758955646717026830109215412101036769
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							aaa227680ab4a6ed91545a00726180518949205a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chabrybarna.cz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.chabrybarna.cz'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/58.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa3400000197c178b1d100000403004730450221009baf3dc2b655a2d32147d947f8822c38aed018e8e1e8ec81e68afb281d36e3b60220716448ad3fe060f20dfdd5d5ad6c279e7047846b1d60f2cc4967ebebdb8d555c00760012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a00000197c178b1c4000004030047304502207c2d63c2e753d2256a85a4c4285d6461fc7d59492eb6040df1ea136087658a550221008bdb88b92588982a6255722bd35fdec2d90ac6051579b42ffe39327eb9bdcb38
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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