blendr.co
Issued by R3
About this certificate
This digital certificate with serial number 04:07:4d:2c:03:bf:8f:ed:f1:68:c2:6d:50:1f:13:24:ef:02 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=blendr.co
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:07:4d:2c:03:bf:8f:ed:f1:68:c2:6d:50:1f:13:24:ef:02Serial Number (int): 350933699388249121748394463209144300400386
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 34:63:1e:5f:ef:8b:36:fe:a2:90:5c:27:2c:92:cc:a0:7f:f9:6e:c1
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): e0:0f:46:58:35:cd:17:45:0e:2b:18:b3:7c:52:a8:85:45:c5:71:3b
Fingerprint (sha256): 06:83:79:0c:97:09:8b:39:a6:13:df:60:d8:39:6a:60:c7:5f:d6:49:bb:8b:16:97:cf:18:c1:f5:f2:5c:39:5f
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate blendr.co
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for blendr.co
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
blendr.co
www.blendr.co
www.blendr.co
Other certificates including the domain name blendr.co
(limited to 100 certificates)
Certificate
The complete raw certificate details for blendr.co in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF7zCCBNegAwIBAgISBAdNLAO/j+3xaMJtUB8TJO8CMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMDMwNTEyMDRaFw0yNDAyMDEwNTEyMDNaMBQxEjAQBgNVBAMT CWJsZW5kci5jbzCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAK55bpYG jsCNBZBzgsQ4FubECbMhD3w6aC0op+34/EmL1byWAtSuhP8JTkaXzzIZyNbo0yMz wjnU4eT+mH1jR7ldrPjJuG9K7Vc9pallS1xU3/YUXucymIV4zARf+OhmNR2h7ijZ pN7DVedNIcBhwXOYhA5FvE4JagwYZXNpek4DxgaVcPzzaNsPkQ7DVyU5S8qlVbV1 Mn8ajQgJ2LruvqRdDFXFl5aNF3FQI0oAev8NCOUxv7Av4NKy2eDReXf2Ywum83MC 4alA+G+/uMGW06vOJT0ZPOC9lv6YyvNlmIFi3//M32YNAqWAFKHtJIbcP5yUoV6B vCoy0n7xXSlDHrV8hkYIHC/1O8vTd+mwZzz2AwwqG1pERO+rZZFnqAzQ/wQwEGc9 IdiRR4MZXicB/373kotNNhvMzVtHpFt23OI60k7x4mJnP+6T+HVyBIQP2atTWaik 1EqSKvlnvyzfYxoKDt/VGNdpoZ1VF0aDp4WjHd9mzajyIAwxgWHsWGcwHwnDkNap xgi6iIOVxxaP31VJm4nGVw5IgTLyPJob6pRu7nrtAoheJEhV4PuI05R/KbftTRxI XsFNTr3//Yp86apQ5KdKXOwA7TLhXtTBRe8vQmptASjGyEaHE/I+hCPKIwAe8QCv ne4ZitCeMF+XZ1TqtVwG5I1Oe44IDsdLy57nAgMBAAGjggIbMIICFzAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFDRjHl/vizb+opBcJyySzKB/+W7BMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMCMGA1UdEQQcMBqCCWJsZW5kci5jb4INd3d3LmJsZW5kci5j bzATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB3 ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi5PPZxkAAAQDAEgw RgIhAKBrid71uul7r6LOuCy7IqXQOXlGvhytgth0M3/DraniAiEAyrYCp6ASYqlR vTztTYfkRNlWDY8nrCLRn1HDEjlPnvcAdgDuzdBk1dsazsVct520zROiModGfLzs 3sNRSFlGcR+1mwAAAYuTz2kLAAAEAwBHMEUCIHF3F2W+6Go+HMPLF0mVvb0sWiak gnLjqB1ZxgwfHnvgAiEA7kmNqpu7WJ37hSxKEMx44nmZGaF+33P9ooth1hcJ38gw DQYJKoZIhvcNAQELBQADggEBALqLVJ0krRXAoH9Uj9NjRKAbutpVsrcgpJlTVETZ 4PhGZ/IdmFK5HzA6EEmU45Mg3zagXDKVplCp244kMWH5CGxc3hCoTl+jr89lGAce 7mfKibiq/6UVgrw9uIVfv2ni1QCCdQ5X2Yg31ThM4StUB8oPbpVd9PyOyoETb5ZJ j7iVgfQTBt1aPt5jLzI4/+Mt528jPglTp6TAYRnQzz+VP4wEubDy+Rjw9/GZzXk9 m/5jKxRu2BBJj8Adtz7A481vyFdq6zmuHxdd2rTv8rvqfPyuVXnjaaJNJtUjq2WC uIK6k5NdBNlpMKNNKgKGkK95t7smBOslaF9gKQjeDL3DMfw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArnlulgaOwI0FkHOCxDgW 5sQJsyEPfDpoLSin7fj8SYvVvJYC1K6E/wlORpfPMhnI1ujTIzPCOdTh5P6YfWNH uV2s+Mm4b0rtVz2lqWVLXFTf9hRe5zKYhXjMBF/46GY1HaHuKNmk3sNV500hwGHB c5iEDkW8TglqDBhlc2l6TgPGBpVw/PNo2w+RDsNXJTlLyqVVtXUyfxqNCAnYuu6+ pF0MVcWXlo0XcVAjSgB6/w0I5TG/sC/g0rLZ4NF5d/ZjC6bzcwLhqUD4b7+4wZbT q84lPRk84L2W/pjK82WYgWLf/8zfZg0CpYAUoe0khtw/nJShXoG8KjLSfvFdKUMe tXyGRggcL/U7y9N36bBnPPYDDCobWkRE76tlkWeoDND/BDAQZz0h2JFHgxleJwH/ fveSi002G8zNW0ekW3bc4jrSTvHiYmc/7pP4dXIEhA/Zq1NZqKTUSpIq+We/LN9j GgoO39UY12mhnVUXRoOnhaMd32bNqPIgDDGBYexYZzAfCcOQ1qnGCLqIg5XHFo/f VUmbicZXDkiBMvI8mhvqlG7ueu0CiF4kSFXg+4jTlH8pt+1NHEhewU1Ovf/9inzp qlDkp0pc7ADtMuFe1MFF7y9Cam0BKMbIRocT8j6EI8ojAB7xAK+d7hmK0J4wX5dn VOq1XAbkjU57jggOx0vLnucCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 350933699388249121748394463209144300400386 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-03 05:12:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-01 05:12:03 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'blendr.co' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 711793221130227661630119411996748613987660743731304410695108565254047612252487447395847572346565867361657655312889230128199077205784493184141644971746110401988275625469279360531431379565734074540527169839141477343431798182592036728137142779220278186213435603779078287925058444354674890018232731906748098148606900652376033260886673019534782770513372052779272118349212458523354899859767652438916929907684437180684172303624312302670582769719380109344582476394739901024148247477143198404410132664133342190425255302134882327595638712701836074813613872860560577201989209794882273479382009406957869202990141266109300668772354673494448447912445572029852572787431215323012371440197731622126079414439483061598518331522108935950645490674571316232045840679925507572539664303097202735100620495199806148044864101278766653171345388855589636912443553790977379132315203313827897256048748830942192964521629623896205243158359395026765804112192745019397509876871184259327243940720820499562772194432786502730499648227916046673207049843128259200021085917528742051246670595020785399767624295895367483608035468384225200271572835529119587938683854292080010197170291639140305926876082571785459557982801336508413035504573017033194190006544251160081216333127399 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 34631e5fef8b36fea2905c272c92cca07ff96ec1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blendr.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.blendr.co' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b93cf67190000040300483046022100a06b89def5bae97bafa2ceb82cbb22a5d0397946be1cad82d874337fc3ada9e2022100cab602a7a01262a951bd3ced4d87e444d9560d8f27ac22d19f51c312394f9ef7007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018b93cf690b0000040300473045022071771765bee86a3e1cc3cb174995bdbd2c5a26a48272e3a81d59c60c1f1e7be0022100ee498daa9bbb589dfb852c4a10cc78e2799919a17edf73fda28b61d61709dfc8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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