sanb.co.za
Issued by R3
About this certificate
This digital certificate with serial number 03:d7:18:4d:7b:e5:7e:af:e9:f7:f6:64:c4:3f:27:c0:df:e1 was issued on by Let's Encrypt.
With 16 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sanb.co.za
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d7:18:4d:7b:e5:7e:af:e9:f7:f6:64:c4:3f:27:c0:df:e1Serial Number (int): 334529870474958292990237735642530723192801
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: db:c6:5b:73:0a:a1:0f:80:7b:69:b9:b4:b7:08:a2:86:aa:e4:3c:65
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 4c:1f:ef:f6:44:d2:ef:15:5a:9e:bc:91:0d:eb:bf:a7:c0:74:06:38
Fingerprint (sha256): 07:fb:86:c5:3f:7b:cf:23:7b:30:a8:70:2b:88:5a:47:10:39:84:1b:ba:c0:ae:31:11:8d:08:44:c2:0d:c1:ec
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate sanb.co.za
16
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sanb.co.za
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
affiliatereferralnetwork.com
arbitrageuring.com
atxchiropractors.com
conservativevideographer.org
definitive-imaging.com
drdukeshow.com
mosandb.org
nevadausedchillers.com
ofmaths.com
pupuniverse.com
sanb.co.za
tailwindmatters.com
targear.com
ujhotels.com
umiworkshops.net
yaoigame.com
arbitrageuring.com
atxchiropractors.com
conservativevideographer.org
definitive-imaging.com
drdukeshow.com
mosandb.org
nevadausedchillers.com
ofmaths.com
pupuniverse.com
sanb.co.za
tailwindmatters.com
targear.com
ujhotels.com
umiworkshops.net
yaoigame.com
Other certificates including the domain name sanb.co.za
(limited to 100 certificates)
Certificate
The complete raw certificate details for sanb.co.za in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGCTCCBPGgAwIBAgISA9cYTXvlfq/p9/ZkxD8nwN/hMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMTMwNjI5MDVaFw0yNDA0MTIwNjI5MDRaMBUxEzARBgNVBAMT CnNhbmIuY28uemEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIENOD C2+1IKmYkpy9xGSr81TzA7qP1ggetRYm46aNFTu2c3hyvyBWZOdjk/9zlLNSo9rN 1cjLika/GO87SZPH445QM/5/ENRVYZmeanIhM80LdM4qNvqjpiiXCRHzG09fYIvZ TkTEWwKIumMhPk3BTRFGi4EDYigtrRUZhTVMEotQsawe41IT24QanWXXZ+VU1Kai BqB2jL6LkWkMMuYxOmprgDFIRfu6jCGM1SDJXwgnHIjX2rQNhr76nax/16P02L9o ox91+2d+z7f5lVeKLUVaqbfC+Rr1r4L0Tii+e4IFh1Ai7jrIJT2jEoYQhxKW6gm1 GYr+JCuyYNgwczVFAgMBAAGjggM0MIIDMDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FNvGW3MKoQ+Ae2m5tLcIooaq5DxlMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMIIB OgYDVR0RBIIBMTCCAS2CHGFmZmlsaWF0ZXJlZmVycmFsbmV0d29yay5jb22CEmFy Yml0cmFnZXVyaW5nLmNvbYIUYXR4Y2hpcm9wcmFjdG9ycy5jb22CHGNvbnNlcnZh dGl2ZXZpZGVvZ3JhcGhlci5vcmeCFmRlZmluaXRpdmUtaW1hZ2luZy5jb22CDmRy ZHVrZXNob3cuY29tggttb3NhbmRiLm9yZ4IWbmV2YWRhdXNlZGNoaWxsZXJzLmNv bYILb2ZtYXRocy5jb22CD3B1cHVuaXZlcnNlLmNvbYIKc2FuYi5jby56YYITdGFp bHdpbmRtYXR0ZXJzLmNvbYILdGFyZ2Vhci5jb22CDHVqaG90ZWxzLmNvbYIQdW1p d29ya3Nob3BzLm5ldIIMeWFvaWdhbWUuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIB MIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYAouK/1h7eLy8HoNZObTen3GVDsMa1 LqLat4r4mm31F9gAAAGNAblqfgAABAMARzBFAiEAgjHnb2YRfgWZ5b1Z+4zzNP6F kj/oRWOnDUAjRuhaGL0CIEobAbL+vM/5j4coesom99ISiFiGxFi/Kt4raVvSFk6Q AHcAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGNAblrlAAABAMA SDBGAiEAlU3WryBKC7kn5O45Cyf8tdLhJ4iGcNN0YSIfbRQm5KECIQDD53k7W5xf KdXvfzkAdi0Tei8CaCT6fjo0vE7u8ctfHjANBgkqhkiG9w0BAQsFAAOCAQEAI6aI aNgr/1sICc0Zyu8RvG2VpjuW7psme7sgorPlKdum2URTBr5n3XEY2T7Srm402Ioq +GeFe7AA6J+o3om+/Pq4JpyKvPpnslK4g4rP9Wh2l2f8+8ZKslDTfRLvKtXo9KjQ CuZfc6AC74AgAfDN++F+iBrlOwFWnipGKo0BYqcov+C32xIgjFCCgpPSTb/8iDXR dBb38+vZXz9QcU0WQpraYoRNehIp42Y/M/IQQzUDLy66k+oQrOY2hC0+DXI3Iyda 8JjoGVwHikSRbLxrzr8pZ92tfcqCRHA+dK6JroJFoUkWEChcZkU5NMBWSUrfV+pQ 6hnsTg5tKYP7LpnNeA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyBDTgwtvtSCpmJKcvcRk q/NU8wO6j9YIHrUWJuOmjRU7tnN4cr8gVmTnY5P/c5SzUqPazdXIy4pGvxjvO0mT x+OOUDP+fxDUVWGZnmpyITPNC3TOKjb6o6YolwkR8xtPX2CL2U5ExFsCiLpjIT5N wU0RRouBA2IoLa0VGYU1TBKLULGsHuNSE9uEGp1l12flVNSmogagdoy+i5FpDDLm MTpqa4AxSEX7uowhjNUgyV8IJxyI19q0DYa++p2sf9ej9Ni/aKMfdftnfs+3+ZVX ii1FWqm3wvka9a+C9E4ovnuCBYdQIu46yCU9oxKGEIcSluoJtRmK/iQrsmDYMHM1 RQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 334529870474958292990237735642530723192801 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-13 06:29:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-12 06:29:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sanb.co.za' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25255958310716998579627197898342175414568123037517706136821831250278502642670271378267185226365731464417122265583854586896447962266018579447351912942874393437301191036322730036419071993764641327869378638527292774840080898692400753864481099498226287791580599262046265565999726704363571879819033698437850869228927661950361521535445075480849747153729664459062456342087381124164725494485826437361662088526427600539120786570815437235449602130873866891388879573799482543490952940809305899466744626568050969680951069731926011595440067635065745673175745823925402665829309291043464998570076134505030423650141121104201867539781 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dbc65b730aa10f807b69b9b4b708a286aae43c65 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (305 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'affiliatereferralnetwork.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'arbitrageuring.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'atxchiropractors.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'conservativevideographer.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'definitive-imaging.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'drdukeshow.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mosandb.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nevadausedchillers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ofmaths.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pupuniverse.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sanb.co.za' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tailwindmatters.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'targear.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ujhotels.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'umiworkshops.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'yaoigame.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d01b96a7e00000403004730450221008231e76f66117e0599e5bd59fb8cf334fe85923fe84563a70d402346e85a18bd02204a1b01b2febccff98f87287aca26f7d212885886c458bf2ade2b695bd2164e900077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d01b96b940000040300483046022100954dd6af204a0bb927e4ee390b27fcb5d2e127888670d37461221f6d1426e4a1022100c3e7793b5b9c5f29d5ef7f3900762d137a2f026824fa7e3a34bc4eeef1cb5f1e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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