api.staging.snapcraft.io

Issued by R3

About this certificate

This digital certificate with serial number 03:85:84:f1:34:f0:5d:e9:ae:b4:52:a8:c0:84:dc:16:9b:a3 was issued on by Let's Encrypt.

With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=api.staging.snapcraft.io

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:85:84:f1:34:f0:5d:e9:ae:b4:52:a8:c0:84:dc:16:9b:a3
Serial Number (int): 306771123108481194373140096220062276819875
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 04:5f:f3:40:66:bd:4b:66:55:1a:f9:32:91:4d:18:cc:50:01:44:e1
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): c4:1b:15:e2:68:aa:9b:5a:03:e1:92:06:af:39:d9:d1:98:da:b6:3f
Fingerprint (sha256): 0c:73:50:48:b7:43:ed:d1:cf:c6:07:ad:33:f8:da:0f:65:71:7d:10:a7:09:ab:10:65:a5:bd:3a:dd:27:3b:21

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate api.staging.snapcraft.io

4

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for api.staging.snapcraft.io

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

api.staging.charmhub.io
api.staging.snapcraft.io
assertions.staging.ubuntu.com
search.apps.staging.ubuntu.com

Other certificates including the domain name snapcraft.io

(limited to 100 certificates)
systemstatus.rrc.ca
canonical-bos01.cdn.snapcraft.io
t2.shared.global.fastly.net
canonical-lgw01.cdn.snapcraft.io
t2.shared.global.fastly.net
status.hpiinc.com
t2.shared.global.fastly.net
customer-sp.site24x7.com
t2.shared.global.fastly.net
status.digitary.net
api.staging.snapcraft.io
sdrsatcom.snapcraft.io
h3.shared.global.fastly.net
build.staging.snapcraft.io
t2.shared.global.fastly.net
t2.shared.global.fastly.net
h3.shared.global.fastly.net
build.snapcraft.io
t2.shared.global.fastly.net
smartermonitor.smartercommerce.net
parts.snapcraft.io
t2.shared.global.fastly.net
forum.snapcraft.io
canonical-lgw01.cdn.staging.snapcraft.io
t2.shared.global.fastly.net
status.stability.ai
build.snapcraft.io
docs.staging.snapcraft.io
build.snapcraft.io
h3.shared.global.fastly.net
t2.shared.global.fastly.net
lists.ubuntu.com
t2.shared.global.fastly.net
canonical-lgw01.cdn.staging.snapcraft.io
t2.shared.global.fastly.net
t2.shared.global.fastly.net
t2.shared.global.fastly.net
t2.shared.global.fastly.net
t2.shared.global.fastly.net
statusp.dotdigital.com
t2.shared.global.fastly.net
t2.shared.global.fastly.net
limenet.snapcraft.io
build.staging.snapcraft.io
stg.dotdigitalstatus.com
h3.shared.global.fastly.net
customer-sp.site24x7.com
h3.shared.global.fastly.net
h3.shared.global.fastly.net
t2.shared.global.fastly.net
t2.shared.global.fastly.net
statuspage.vantage.online
customer-sp.site24x7.com
t2.shared.global.fastly.net
status.fmgsuite.com
api.snapcraft.io
t2.shared.global.fastly.net
t2.shared.global.fastly.net
api.staging.snapcraft.io
t2.shared.global.fastly.net
dashboard.snapcraft.io
t2.shared.global.fastly.net
canonical-bos01.cdn.snapcraft.io
t2.shared.global.fastly.net
t2.shared.global.fastly.net
t2.shared.global.fastly.net
canonical-lgw01.cdn.snapcraft.io
build.snapcraft.io
t2.shared.global.fastly.net
h3.shared.global.fastly.net
systemstatus.rrc.ca
staging.snapcraft.io
h3.shared.global.fastly.net
h3.shared.global.fastly.net
t2.shared.global.fastly.net
t2.shared.global.fastly.net
systemstatus.rrc.ca
h3.shared.global.fastly.net
t2.shared.global.fastly.net
dashboard.snapcraft.io
t2.shared.global.fastly.net
t2.shared.global.fastly.net
h3.shared.global.fastly.net
snapcraft.io
t2.shared.global.fastly.net
forum.snapcraft.io
staging.snapcraft.io
build.staging.snapcraft.io
t2.shared.global.fastly.net
status.esafetysystems.com
forum.snapcraft.io
sdrsatcom.snapcraft.io
sdrsatcom.staging.snapcraft.io
limenet.snapcraft.io
dashboard.staging.snapcraft.io
t2.shared.global.fastly.net
t2.shared.global.fastly.net
customer-sp.site24x7.com
dashboard.staging.snapcraft.io
h3.shared.global.fastly.net

Certificate

The complete raw certificate details for api.staging.snapcraft.io in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoAzLgsVJ9f7P+Vaox8iJ
RcSqtarww5aZGbBFlQwZiZ8B9AIdQpaBRloM7Oj20zhLW6Y+dSvgaj+vgL4ls680
dd4qj/uQuz/sdYSUyiT/OzRr6q7T3fF37gXRpCfZIxS3x+H6nTqJ+2vsHQupQWSV
Gye8VQcSRtTgBoVvfBUm4szPIXOsYrki07YJJ2gsbwxlrCLHmVahKmwAUHjfgtJS
td2PNgK0b01AdcxP3uoYieTsj7v75VMmLa0zavCFN8LGMxI2W8bwXoJWvMbpX5CF
aWldgnq7uWXBdopgm4tOHzA33geYAsLKQBMqbx+PZM7eZmNN8bmpIDKaCFJsJ3HA
6QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 306771123108481194373140096220062276819875
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-20 23:50:43 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-18 23:50:43 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api.staging.snapcraft.io'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20204438226548438335719818914533419584936741571233701151680247308110211586860910382431411908697094008114090987879407410956596143445391643137445169072980050131901195653007336833754629616196546503921122386615159464095698249119245584252757610177390233278646106437125616949463887110154976900215790933320376994586745468501176854565549228960668079247812717129555160856752346545652708430974813258382878401371328413007852511624660738110199238753707775051024497181603846235528057232519576607591070363422636623055937894506411106964491290613572033543356534260994430094489612589752227148889408248418504090707699593009280278708457
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							045ff34066bd4b66551af932914d18cc500144e1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.staging.charmhub.io'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.staging.snapcraft.io'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assertions.staging.ubuntu.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'search.apps.staging.ubuntu.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f20077009420bc1e8ed58d6c88731f828b222c0dd1da4d5e6c4f943d61db4e2f584da2c2000001798c672fe20000040300483046022100bffe42428e5d7d18660ad3a2b5c39167b0efc7b2d82bd432b15886a9de542da7022100def81de4a4f01d26d3416961fa4a6d6506d7629ac2ddaeb49e2ed178a2d0400e007700f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e3000001798c6731d100000403004830460221008bf640c09cc1d1e81c3a6286dc78f0acc789d281cea7365a88de2bd38e22b214022100aa012935fd2dc49269149e5815e8407c84c586b354a3f103b674fd940e318b4f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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