ovam.be

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:36:aa:a1:d1:d2:55:a7:5c:4a:a6:3c:2c:e1:ea:16:d0:03 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=ovam.be

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:36:aa:a1:d1:d2:55:a7:5c:4a:a6:3c:2c:e1:ea:16:d0:03
Serial Number (int): 367051200515537353262635740879055897415683
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 0a:f5:4b:4e:82:b4:3e:49:b3:74:4a:97:9e:d9:d4:af:36:5d:ff:4e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 1f:10:18:47:f0:db:80:21:b7:ee:3c:91:4a:4d:71:d3:9a:e7:0a:85
Fingerprint (sha256): 05:70:30:9d:b5:6a:0d:6e:c5:57:3c:13:76:f0:a3:7b:bd:a3:bf:9b:3f:63:1d:eb:79:86:2e:0b:01:49:34:c5

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate ovam.be

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ovam.be

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ovam.be
www.ovam.be

Other certificates including the domain name ovam.be

(limited to 100 certificates)
*.dev.aws.ovam.be
jaarverslag.ovam.be
ovam.be
jaarverslag.ovam.be
ovam.be
*.tst.aws.ovam.be
*.uat.aws.ovam.be
*.uat.aws.ovam.be
ovam.be
*.ovam.be
K3000.ovam.be
jaarverslag.ovam.be
*.tst.aws.ovam.be
ovam.be
jaarverslag.ovam.be
ovam.be
*.uat.aws.ovam.be
jaarverslag.ovam.be
ovam.be
*.prd.aws.ovam.be
*.uat.aws.ovam.be
*.ovam.be
*.uat.aws.ovam.be
*.lt.aws.ovam.be
ovam.be
ovam.be
ovam.be
ovam.be
fluvius.ovam.be
*.lt.aws.ovam.be
*.uat.aws.ovam.be
*.tst.aws.ovam.be
ovam.be
ovam.be
*.tst.aws.ovam.be
ovam.be
*.ovam.be
jaarverslag.ovam.be
*.prd.aws.ovam.be
jaarverslag.ovam.be
services.ovam.be
*.lt.aws.ovam.be
*.lt.aws.ovam.be
*.dev.aws.ovam.be
ovam.be
*.ovam.be
jaarverslag.ovam.be
jaarverslag.ovam.be
ovam.be
ovam.be
*.prd.aws.ovam.be
ovam.be
*.tst.aws.ovam.be
*.tst.aws.ovam.be
*.uat.aws.ovam.be
*.ovam.be
*.uat.aws.ovam.be
*.dev.aws.ovam.be
www.ovam.be
jaarverslag.ovam.be
jaarverslag.ovam.be
*.dev.aws.ovam.be
*.ovamad.ovam.be
*.ovam.be
*.dev.aws.ovam.be
*.ovam.be
*.dev.aws.ovam.be
ovam.be
jaarverslag.ovam.be
jaarverslag.ovam.be
*.ovam.be
ovam.be
*.prd.aws.ovam.be
www.ovam.be
*.prd.aws.ovam.be
ovam.be

Certificate

The complete raw certificate details for ovam.be in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEm9qGrr8tCoXcdoy5Pi
NTOV4d3NdQBMWQ3Sj7fYxahpKIGqE7cqSpD80kYMBjs49XH6zjv0NU/9cIpQnKmk
SC87D53337rPPRSPQMllKLnySTPGmjnbjWSUc3MEQP1g6OG0bIcSrAa0TVRgxEHk
Rq83o44gSC5m/1WxuBp52AhDdcxtHD2WAj0z4yWBVaeGX4eAV5IOExyPijgWCnth
jjEOK8iljgKRx9pf/UP64Q58Ws8YMhJmNXyh8ewfF7bX/x6CBnxdKlmTqJwBY3ZX
q7LSzSzcmT3L3lzZqJmAu9xf/kPN+NjvYGaIxzUPib12GDXmL9TO/a3uTOfW09Zz
AQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 367051200515537353262635740879055897415683
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-16 08:42:39 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-16 08:42:39 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ovam.be'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24274117522426876075613738616441611349793529567312963558390533536972555360259390844817550213121741258488166485243359130324020944203075770444429837500795189662931064272039419557117352945291256227310766600080627856018512945227309510136708835200225606719743315708670515228915962281619641110172979330450634795355064247569524107448592673639889160873987190320141869760121042715581774946948040849024934316646177424120669010165595795521363558298308898193827413204082485532076323251817356839663569765378024530280085032126658776112707628631037607025723540638315216480777718621965670359326185659384662080212388475587434613469953
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							0af54b4e82b43e49b3744a979ed9d4af365dff4e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ovam.be'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ovam.be'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000168560a943d0000040300463044022043f5202d155b6ec5f3583f52d674b8f00060756eeaf28594844464cf754c24f4022073af30f2e4d4953f92a576d396201660c1100658ae7dd3a43b2c8edd771fb59b007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000168560a923c0000040300473045022076876bf53de7de0757730ce0a40be60aa63a25334dbe2db545b102814d2c672b022100f706699c33e69c4a4d8b8dba446584f1218536c3610782e1d8bd11791714e898
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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