snowfreight.com
Issued by R3
About this certificate
This digital certificate with serial number 03:dc:cb:70:51:4a:8d:ee:ce:7f:99:5b:b8:21:19:99:bf:96 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=snowfreight.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:dc:cb:70:51:4a:8d:ee:ce:7f:99:5b:b8:21:19:99:bf:96Serial Number (int): 336469394987061683732440006246567169867670
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 52:40:da:53:66:22:6c:e6:02:da:e4:03:06:e0:c1:a5:56:e8:d0:a9
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 63:98:90:30:84:94:1d:5e:2f:5b:31:e7:a9:59:93:9c:d1:7e:c8:c0
Fingerprint (sha256): 08:23:2f:44:9d:56:bb:36:9c:71:48:19:f8:a1:3c:67:76:de:7e:b0:5e:64:0e:3b:ec:4b:ec:43:0e:07:83:5f
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate snowfreight.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for snowfreight.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
snowfreight.com
www.snowfreight.com
www.snowfreight.com
Other certificates including the domain name snowfreight.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for snowfreight.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/jCCBOagAwIBAgISA9zLcFFKje7Of5lbuCEZmb+WMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MjUwNDA5MzVaFw0yNDA3MjQwNDA5MzRaMBoxGDAWBgNVBAMT D3Nub3dmcmVpZ2h0LmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB ALs6tDMP8vIehPnJFQIAEk1DHuz3UHppmSJVOf7TrpxbIUvKNZi9lz6ZcgRoGkQ+ tBHZNlsYGj1P0C9nRqD79hY0wrTQli66hf1TIozrjqx1RTV/iGnNcnDwhqbtFJd1 XY7fC2pY0CVJwLbIyuo78AoLN1xojq71MYMMWMNEt2sdnXaMXYNmeKEeX+ZFS96D EPu5fvD4gQG+ab2i6veObCn0tRsk9l63+/vzRzUcqRYrlNGoPJMFNDpny4U+sWFg QgtGNVbFGmrUdXYJBnMkhZzXp9HAB0oQ2QzUidqYWhbBmw5vvZ1ibHcPGKoliW8J 1cTmMApDHO1HSp9r8h52nKXF/KROT10xrErxE845apxJdW6mmW+fhRq3rEv97lJc ffwz2qU7AGHi9k+5//wx9BYl140/Y+fAZjvxfd+dqnd1hi2s497Krv/ee7KVz8Jl GKxQlKZbAcoGbFBfMfnGeHq3d3pgsLw056LWFefO3DAmpsi4xryR/9wW7GgU9rGV K7Xz6tArMLft7RijBlLXcoFr8CtDnxvMKcdI6DQEfVkGco3jtFzynhmTffkQxqP5 Sb6TayBeh9ixH1IlgKpCCSXGxSc8wzW6LiaD2O7EXsNs1coqC3xKCKlj4/5LD3nV eUQ0BrkhE+riUZDVHYnoj96UlMd4EMBqH7oiM8K/Q7s1AgMBAAGjggIkMIICIDAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFFJA2lNmImzmAtrkAwbgwaVW6NCpMB8GA1Ud IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw Oi8vcjMuaS5sZW5jci5vcmcvMC8GA1UdEQQoMCaCD3Nub3dmcmVpZ2h0LmNvbYIT d3d3LnNub3dmcmVpZ2h0LmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQIGCisG AQQB1nkCBAIEgfMEgfAA7gB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s5 2IRzAAABjxOoubwAAAQDAEYwRAIgDk/qAEa9eSe0p1WaENGrQRUooNXrhs7owQAC UHEiuFcCICz+4tA0KUBGhuhEoowv4IIZMgDTmq41YZc1iVhX3zr9AHUAPxdLT9ci R1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGPE6i5wAAABAMARjBEAiAqUei4 lrPMWURd0PFAUCRFiFZLB5YvyPqvv/I9YUmXTgIgBX4XaRUiM+YpY3Uq5sPJAB1S 585spHl4xe6yy/rEAtQwDQYJKoZIhvcNAQELBQADggEBAG2NYzPaxBYPVPGD9XxS LGAXO//62BMjZeR8wE/CzaHH0qoAa08ndwuPJTYIzSYpQLyyyZzUB25xYyeYlIY+ j/Om5dJzRqqUvw/bu1uoMrggZXwCUERm5lnbWFKu9NkgiIOXJ3pjwMhy8Xe+X+vS KPwltVK8/2FBPITucPfzxxtaBObxF7sGdjhwKgePwwz08Ilpyvk5C5d1jvrnr0X9 LASAX3cwNuYOqGclksg4Hok0JD5fwmdJONWE3olSutqZX4rGbmu9Y0DGkOffx2fA aDDiDB+e3Z9oRH7OpcIsmVpAP5m/YJ5BqlnpDge7J/lHTLxdsY+CKJvTaWBrzIxV dR4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuzq0Mw/y8h6E+ckVAgAS TUMe7PdQemmZIlU5/tOunFshS8o1mL2XPplyBGgaRD60Edk2WxgaPU/QL2dGoPv2 FjTCtNCWLrqF/VMijOuOrHVFNX+Iac1ycPCGpu0Ul3Vdjt8LaljQJUnAtsjK6jvw Cgs3XGiOrvUxgwxYw0S3ax2ddoxdg2Z4oR5f5kVL3oMQ+7l+8PiBAb5pvaLq945s KfS1GyT2Xrf7+/NHNRypFiuU0ag8kwU0OmfLhT6xYWBCC0Y1VsUaatR1dgkGcySF nNen0cAHShDZDNSJ2phaFsGbDm+9nWJsdw8YqiWJbwnVxOYwCkMc7UdKn2vyHnac pcX8pE5PXTGsSvETzjlqnEl1bqaZb5+FGresS/3uUlx9/DPapTsAYeL2T7n//DH0 FiXXjT9j58BmO/F9352qd3WGLazj3squ/957spXPwmUYrFCUplsBygZsUF8x+cZ4 erd3emCwvDTnotYV587cMCamyLjGvJH/3BbsaBT2sZUrtfPq0Cswt+3tGKMGUtdy gWvwK0OfG8wpx0joNAR9WQZyjeO0XPKeGZN9+RDGo/lJvpNrIF6H2LEfUiWAqkIJ JcbFJzzDNbouJoPY7sRew2zVyioLfEoIqWPj/ksPedV5RDQGuSET6uJRkNUdieiP 3pSUx3gQwGofuiIzwr9DuzUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 336469394987061683732440006246567169867670 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-25 04:09:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-24 04:09:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'snowfreight.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 763828952572617606469313528441881873742777180040548833488179780075663406904590243103950175785370174008100747100791177489704833376805466335408411218586382976804608304469487301252985586877163465826600766837429517253004421119218218483813733383680156698660423391711793018390750336674018169577101252115063460802112366662469204643577520092745758335095205855640846339648965287694594817144799536946092393941696627912961964973231808319615536018431286330076644122737912276999306137861548246758465002037761058181183330218332684999588736114187476440943071065430859677621400989574432557175502988433181164209096917621516159993357699669599471124508687458848737298417514353277187377780401203628950453589608453347977489854229896171631280555909096610808736071519739993778720602427197424413627163899261255441299097973610303004835859477781481595153927946053084251386156758442597874204230780430562308249407300683126980371993976697369225216239307052289696047338995404598919944482282820690393100287830973672471224431990185932728108722197915637384924588104975923333053895189149817367522966057257752556413272807468109174789137189434293686151596291224082116193240750866242519922426644164521826132900734121752022306679692422710547438730960815048209569987935029 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5240da5366226ce602dae40306e0c1a556e8d0a9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'snowfreight.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.snowfreight.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f13a8b9bc000004030046304402200e4fea0046bd7927b4a7559a10d1ab411528a0d5eb86cee8c10002507122b85702202cfee2d03429404686e844a28c2fe082193200d39aae35619735895857df3afd0075003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f13a8b9c0000004030046304402202a51e8b896b3cc59445dd0f14050244588564b07962fc8faafbff23d6149974e0220057e1769152233e62963752ae6c3c9001d52e7ce6ca47978c5eeb2cbfac402d4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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