inisa.id
Issued by R3
About this certificate
This digital certificate with serial number 03:5b:ef:05:61:c3:c2:80:99:2f:f3:6d:ac:1b:1e:51:cf:71 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=inisa.id
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:5b:ef:05:61:c3:c2:80:99:2f:f3:6d:ac:1b:1e:51:cf:71Serial Number (int): 292620266620466446485111378609145174413169
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 36:95:f4:b6:17:d9:12:7e:b8:1d:af:4f:92:98:95:32:44:fe:67:69
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 7f:bf:d3:5b:e3:a4:94:0c:5f:c1:b8:3e:0c:9a:30:4e:b1:e5:27:f6
Fingerprint (sha256): 03:88:b4:be:47:a4:1f:f7:83:2c:44:cd:66:66:df:37:2e:f2:c2:97:33:9d:4a:fa:f3:c4:ac:9b:bd:13:88:55
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate inisa.id
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for inisa.id
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.inisa.id
inisa.id
inisa.id
Other certificates including the domain name inisa.id
(limited to 100 certificates)
inisa.id
inisa.id
docs.spur.dev
*.inisa.id
feriaalbacete2023.bracelit.es
registrdluznikuknahlednutizdarma.cz
inisa.id
skullcapsnft.com
dynlink.inisa.id
admin.airwallet.dk
amberfog.ru
firestore-ui.com
inisa.id
inisa.id
tabletopmusic.com
inisa.id
gdsctcoer.tech
inisa.id
hesrealequipment.com.ph
*.inisa.id
inisa.id
inisa.id
docs.spur.dev
*.inisa.id
feriaalbacete2023.bracelit.es
registrdluznikuknahlednutizdarma.cz
inisa.id
skullcapsnft.com
dynlink.inisa.id
admin.airwallet.dk
amberfog.ru
firestore-ui.com
inisa.id
inisa.id
tabletopmusic.com
inisa.id
gdsctcoer.tech
inisa.id
hesrealequipment.com.ph
*.inisa.id
inisa.id
Certificate
The complete raw certificate details for inisa.id in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgISA1vvBWHDwoCZL/NtrBseUc9xMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDkxMDU3MTVaFw0yNDA3MDgxMDU3MTRaMBMxETAPBgNVBAMT CGluaXNhLmlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxjcU65n/ XiK1NQLTDjq2cgLLQtOfvgUy8oSd1EvST/kwlQyjnkrjKNtfW8f9q6cm1XYJmi+r 0b++FLsyAQowvKI6vo6ie3RBq1mC3ahl7vp1Ywvn5rKl+Z5nuUtH+uBC5VTowkA0 4B5gNt/9eKw1iOLNbcNZap/GsH0tNaMYZfXmzSoDzdMw4JZB6jg0NqNVy3eeG4W5 hvq+Ijebf2WYKdDRIoAEezjZHpo56kNnih0MIXDfGzG/Mfooup+XZXoYev5A3a0D b0SFYHrtFfW/4fQ1Q4eUWJJy0Dl+OXrZyQ9Cik00ojfg+OxGjzhSGf9EC5a44CEC 9g6UlL3NIvwtUwIDAQABo4ICFzCCAhMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ2 lfS2F9kSfrgdr0+SmJUyRP5naTAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+d ixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxl bmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAfBgNV HREEGDAWggoqLmluaXNhLmlkgghpbmlzYS5pZDATBgNVHSAEDDAKMAgGBmeBDAEC ATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8 vOzew1FIWUZxH7WbAAABjsK4M2gAAAQDAEcwRQIhAKa7YxYVJS2Y+bdeDRBHgSzk BdJJ/jO9yp9aLphqqyV3AiBBfCvXCBt3el4WewF0WuMEhABamoQCdaQ3rOHVz2jU AQB3AN/hVuuqBa+1nA+GcY2owDJOrlbZbqf1pWoB0cE7vlJcAAABjsK4NC0AAAQD AEgwRgIhAPxAIvxrX3jPyWxbEtubqpRDUW+qtI3xw5hpltFvbLOSAiEA0D8ZcnPq 5D8GxvgE1Alp92Nt/DF01lXLUNJIWV36q4wwDQYJKoZIhvcNAQELBQADggEBAD9C WyLn0Tgf+b9/K36nO/oD9VE5lHzUlSGwUXbMm1Hhd/LXTAMeeZEdfQU+WY6zzpm1 ev4mC4RSdZIw4jfgYpG0WbpPxd7mJ+YeTMK7fHAjEl0ATQpuYFHtWFIRGg9BTzc0 F/wYm7XWtGrKfkah+lMjA5tUb3T5oUK9zQOeoD0MScB8kg65YQCW94SzMci1tAcP PnAcAHOfr/nu7Ck6lR5FYve1WxePOMJwzccQGDbCQtuc4PtcF7q04stQ5VSm2OQ3 A5Adgqk4kfDxJJYkAFDW4VumeUYsI0STzc2M37qkivSLXWWspOwfZYJBzMlCy11n 8kQQ0tqrFqqpCcEsoac= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxjcU65n/XiK1NQLTDjq2 cgLLQtOfvgUy8oSd1EvST/kwlQyjnkrjKNtfW8f9q6cm1XYJmi+r0b++FLsyAQow vKI6vo6ie3RBq1mC3ahl7vp1Ywvn5rKl+Z5nuUtH+uBC5VTowkA04B5gNt/9eKw1 iOLNbcNZap/GsH0tNaMYZfXmzSoDzdMw4JZB6jg0NqNVy3eeG4W5hvq+Ijebf2WY KdDRIoAEezjZHpo56kNnih0MIXDfGzG/Mfooup+XZXoYev5A3a0Db0SFYHrtFfW/ 4fQ1Q4eUWJJy0Dl+OXrZyQ9Cik00ojfg+OxGjzhSGf9EC5a44CEC9g6UlL3NIvwt UwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 292620266620466446485111378609145174413169 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-09 10:57:15 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-08 10:57:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'inisa.id' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25022346191743309686776340294561973069177032800841880286317813595046490572900763428700915788275213965755579752023589238920399041166580164060336284512010756472014217603739507873178753828904483533733155129322139385573975833482106665229629148609975380184355987341529134112450696725820058469648103777916683200108006633546459889181666363831060916302965120040788679382979441945047123190270340021903493068774746417576912704148860527513713676690621092532184553825321792666391231237962419567643490257048952813224409658072864617183645532039936425864283887992914696840350625199075488048702794826150783207802492478182072453442899 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3695f4b617d9127eb81daf4f9298953244fe6769 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.inisa.id' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'inisa.id' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ec2b833680000040300473045022100a6bb631615252d98f9b75e0d1047812ce405d249fe33bdca9f5a2e986aab25770220417c2bd7081b777a5e167b01745ae30484005a9a840275a437ace1d5cf68d401007700dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ec2b8342d0000040300483046022100fc4022fc6b5f78cfc96c5b12db9baa9443516faab48df1c3986996d16f6cb392022100d03f197273eae43f06c6f804d40969f7636dfc3174d655cb50d248595dfaab8c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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