28921.com
Issued by R11
About this certificate
This digital certificate with serial number 03:cf:e8:76:3b:66:e8:f0:6b:ed:86:61:79:4f:e3:f8:c5:50 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=28921.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:cf:e8:76:3b:66:e8:f0:6b:ed:86:61:79:4f:e3:f8:c5:50Serial Number (int): 332084302538781939835017644263480340563280
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 80:f4:b7:9a:f0:e6:57:4c:d7:44:35:df:5a:c9:6f:be:bc:58:6c:6c
AuthorityKeyId: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9
Fingerprint (sha1): df:9d:66:c3:dc:8d:e1:1e:39:b2:7f:27:4b:fb:6b:70:5d:ec:ce:dd
Fingerprint (sha256): 0b:6e:cd:80:a0:df:67:85:7a:3c:db:81:ee:c6:d3:6b:d6:76:51:c1:78:ca:2b:8d:c0:1e:6d:15:9a:e5:a1:4a
Issuing Certificate URL: http://r11.i.lencr.org/
Revocation information
OCSP Server: http://r11.o.lencr.orgCheck the revocation status for certificate 28921.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for 28921.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
28921.com
Other certificates including the domain name 28921.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for 28921.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4jCCBMqgAwIBAgISA8/odjtm6PBr7YZheU/j+MVQMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTEwHhcNMjQwNjE1MTg0MTM2WhcNMjQwOTEzMTg0MTM1WjAUMRIwEAYDVQQD EwkyODkyMS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDa/jZX hFHvwUKEl8FIbtNI4jKC4eTR+fXvEQeK7rvq9fpg7GhlMxebjP4kf9+s6R7Q/YPa 54/FEIsXKDuLnwuj4MbLF6TKPQ7J6qJvDZudBVhm3M1INqqifx8MeNN8SgjhSl3R kHhyMIempqOrpKcyGTmpE6Xl9yB6gpGaYlshcLOxGHKK0fNYsOJ0KRE2+3+nwDAd RGgoKwIjVnxW5tlznEOu3U2Iry7kh2ygoEHEWPP21m7i6bsSoeuUCtdKBYcR4ESz W3oix0im63fX5ZrwqyUOFsIggpYE9lcAIqCBY4ZDSolM8q/CTmV1g98ZCQMHIS8T M16ulLEjby1vVL4vPd0RR6fkaf8L89BjiFXE02lhuVuX38sGI/6qPst1AiDpC26B uEgZbTnTkEJXMaPHqeuog0KV+gRYjpen2gPMqcedaYBnvB3XNXzTVg1tUvtxnAer nT1T9+HUv+BTFXcm0ybDu0zwRw+CQEilsA4YZZLiPpENv2owP/Wr5HFilNeRUqAo fpf1ec1t1bcqUhYCHZRbD0hWdKi5FWprE4zcMGx0zFcLGLoq5XlwUHaRvKu9z/ZI lqjVYvSaURubrHgJJ85NOpcXFfo11rygdQswfSiMpxp4H7vwzCu8eEtb3qyT1uLm YW8ONxSl5yZaJLqxeqFKICpcYTVjO1RXEtk8GwIDAQABo4ICDTCCAgkwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBSA9Lea8OZXTNdENd9ayW++vFhsbDAfBgNVHSMEGDAW gBTFz0ak6vTDwHpslcQtsF6SLybjuTBXBggrBgEFBQcBAQRLMEkwIgYIKwYBBQUH MAGGFmh0dHA6Ly9yMTEuby5sZW5jci5vcmcwIwYIKwYBBQUHMAKGF2h0dHA6Ly9y MTEuaS5sZW5jci5vcmcvMBQGA1UdEQQNMAuCCTI4OTIxLmNvbTATBgNVHSAEDDAK MAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB3AHb/iD8KtvuVUcJh zPWHujS0pM27KdxoQgqf5mdMWjp0AAABkB1rZxIAAAQDAEgwRgIhAMTf7WW+OnCX 1Ki6NiVRPStEbdV9EFPthFsoCKbCbiHSAiEAqgk5XaLm/DMdAzBDzZ9hJcev/z9t OsENBDYbi9ttWPYAdQAZmBBxCfDWUi4wgNKeP2S7g24ozPkPUo7u385KPxa0ygAA AZAda2dLAAAEAwBGMEQCID8Ay4bz2FzTfYvTgFFBaAMJ1exTgsF1uW+ie8xzbetj AiBtgB9+u3zWzY4YMlTYaEiOlyCi1HgtbOQscIV7BduxEDANBgkqhkiG9w0BAQsF AAOCAQEAsgpDUBA6np+4gHEHTVeApuGHMWm5IA7e1wT5za+MWJV3nqNdOqV7cmGN lG5l9bPLB3sX4ctouAD6OjsN/EYrf0IgQz9sepDui/ljvWfSdnbDgf+7iOHuZOIZ ITmvQvsYSAg/cBqQ47xrUK/hdV6DwAjRQIrtcn4Kw73at/whLC0wihkrHC87AUcw aDOggJONS4putAo8m2JsrCo+chzqwW0dpif1OkDmE02BMkihdiLi9pbMyuAw6SUV ozP5Rd003yX/1K5d16fi7AO4fLFMi8dy8U9jT4he3quybyI9MH/hC41FqkWczXKm L5VNGF+CPHmMtPLmLNg2n0mh2JmKIw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2v42V4RR78FChJfBSG7T SOIyguHk0fn17xEHiu676vX6YOxoZTMXm4z+JH/frOke0P2D2uePxRCLFyg7i58L o+DGyxekyj0Oyeqibw2bnQVYZtzNSDaqon8fDHjTfEoI4Upd0ZB4cjCHpqajq6Sn Mhk5qROl5fcgeoKRmmJbIXCzsRhyitHzWLDidCkRNvt/p8AwHURoKCsCI1Z8VubZ c5xDrt1NiK8u5IdsoKBBxFjz9tZu4um7EqHrlArXSgWHEeBEs1t6IsdIput31+Wa 8KslDhbCIIKWBPZXACKggWOGQ0qJTPKvwk5ldYPfGQkDByEvEzNerpSxI28tb1S+ Lz3dEUen5Gn/C/PQY4hVxNNpYblbl9/LBiP+qj7LdQIg6QtugbhIGW0505BCVzGj x6nrqINClfoEWI6Xp9oDzKnHnWmAZ7wd1zV801YNbVL7cZwHq509U/fh1L/gUxV3 JtMmw7tM8EcPgkBIpbAOGGWS4j6RDb9qMD/1q+RxYpTXkVKgKH6X9XnNbdW3KlIW Ah2UWw9IVnSouRVqaxOM3DBsdMxXCxi6KuV5cFB2kbyrvc/2SJao1WL0mlEbm6x4 CSfOTTqXFxX6Nda8oHULMH0ojKcaeB+78MwrvHhLW96sk9bi5mFvDjcUpecmWiS6 sXqhSiAqXGE1YztUVxLZPBsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 332084302538781939835017644263480340563280 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-15 18:41:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-13 18:41:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '28921.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 893413561481359075185729648967564997990570336333904076478287361948521677725246197679481242861744009721058931067951053537228191653769960965065892828018111789859449293596578154011243629578847168771450896912143571380852955212298473010929787023663742200281448934493269671525646255707798529179432368932108423309477453995110737308712871703256647735900059056871297974738297911113538022257897004696867020480713791356691595764389304351199877932079880020743420485071455091235935036749584235690095743745914292042535581504365625811383928794925693843009447514705660349825100910831739560385400907853771666756458474720388199542561303704463474427643670832360257685757995456831957490602333433952349214145639962867030264684351587693401984114383211812886550908874272917399363697823703866258066137395365763184337447978269866012105787314430144856669229369680634362895845745925808110334834310724303782121460257554146456223185940306533403974740235454498336617157074095189047419744038584519938116041385693067910584872990082175121989145941756794736506249412029900010187211597565952975676048268472490120751463491862399659701644977369772178389870013062060654187175979034680914940317164779831858859827198488330052785111307762641703704658235237674785319096499227 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 80f4b79af0e6574cd74435df5ac96fbebc586c6c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '28921.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a74000001901d6b67120000040300483046022100c4dfed65be3a7097d4a8ba3625513d2b446dd57d1053ed845b2808a6c26e21d2022100aa09395da2e6fc331d033043cd9f6125c7afff3f6d3ac10d04361b8bdb6d58f60075001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca000001901d6b674b000004030046304402203f00cb86f3d85cd37d8bd3805141680309d5ec5382c175b96fa27bcc736deb6302206d801f7ebb7cd6cd8e183254d868488e9720a2d4782d6ce42c70857b05dbb110 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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