www.bspb.co.uk
Issued by R3
About this certificate
This digital certificate with serial number 03:a1:a8:64:4d:49:ea:c0:7b:3e:3d:60:e1:36:1c:b2:5d:f9 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.bspb.co.uk
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a1:a8:64:4d:49:ea:c0:7b:3e:3d:60:e1:36:1c:b2:5d:f9Serial Number (int): 316346149970131399439660381291015845338617
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 35:f3:2b:f2:3c:99:27:7d:dc:e1:10:5a:18:0a:e6:8a:36:81:b2:5b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ff:99:aa:12:a8:6e:74:c6:69:8c:c0:8a:ef:90:a9:67:ba:ef:6a:73
Fingerprint (sha256): 0e:09:d2:48:c7:86:ea:16:d5:b7:6b:20:9d:e1:80:f9:43:ca:d1:94:11:9b:f9:42:0a:a3:8e:e5:6e:56:71:ee
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.bspb.co.uk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.bspb.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bspb.co.uk
www.bspb.co.uk
www.bspb.co.uk
Other certificates including the domain name bspb.co.uk
(limited to 100 certificates)
bspb.co.uk
www.bspb.co.uk
bspb.co.uk
bspb.co.uk
*.bspb.co.uk
bspb.co.uk
bspb.co.uk
www.bspb.co.uk
www.bspb.co.uk
bspb.co.uk
*.bspb.co.uk
bspb.co.uk
bspb.co.uk
bspb.co.uk
bspb.co.uk
bspb.co.uk
bspb.co.uk
bspb.co.uk
bspb.co.uk
*.bspb.co.uk
bspb.co.uk
*.bspb.co.uk
bspb.co.uk
bspb.co.uk
www.bspb.co.uk
bspb.co.uk
bspb.co.uk
bspb.co.uk
www.bspb.co.uk
bspb.co.uk
bspb.co.uk
bspb.co.uk
www.bspb.co.uk
bspb.co.uk
bspb.co.uk
*.bspb.co.uk
bspb.co.uk
bspb.co.uk
www.bspb.co.uk
www.bspb.co.uk
bspb.co.uk
*.bspb.co.uk
bspb.co.uk
bspb.co.uk
bspb.co.uk
bspb.co.uk
bspb.co.uk
bspb.co.uk
bspb.co.uk
bspb.co.uk
*.bspb.co.uk
bspb.co.uk
*.bspb.co.uk
bspb.co.uk
bspb.co.uk
www.bspb.co.uk
bspb.co.uk
bspb.co.uk
bspb.co.uk
www.bspb.co.uk
bspb.co.uk
bspb.co.uk
bspb.co.uk
Certificate
The complete raw certificate details for www.bspb.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgISA6GoZE1J6sB7Pj1g4TYcsl35MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMTAxMTIwMTUxMzRaFw0yMTA0MTIwMTUxMzRaMBkxFzAVBgNVBAMT Dnd3dy5ic3BiLmNvLnVrMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA wEUR98FTqs8hxRnUNFj9SkKa2UwL1ovSeUCgsxa6Di+rz9x+S00J/vrhtWCilZeK zuopFSgUHSe6cdIhRVLNgwGDx5MDA1wizEDN0nY523UNjGPi/HHtaVLEh896GagX 4pKM82LU6rHZBmcslDzq7ve3qphjliWCHTk17upAMtq59Ud8PpZlz7ubjTUd40SF sr8AU33/8rjnhJ5SkEaKCEszTPjh4Kj0ndKaJoBF+V21f3ik2Hgf2CMiZfBxrsQO Z21I22r9uZenhuKeDmPeSoyVU2o4FImCojQI7mghA4WhwJeupo9QMuKi2Fsx4A1h LGuShfDw9lB3CAI3LgymhQIDAQABo4ICVTCCAlEwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBQ18yvyPJknfdzhEFoYCuaKNoGyWzAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzAlBgNVHREEHjAcggpic3BiLmNvLnVrgg53d3cuYnNwYi5jby51azBMBgNVHSAE RTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRw Oi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2 AFzcQ5L+5qtFRLFemtRW5hA3+9X6R9yhc5SyXub2xw7KAAABdvSBegMAAAQDAEcw RQIhAKBZHdcMmdO1G66hU40W2F3CW6Dlf/PNw3Y3Axge+cEuAiAW1YjTMs4qZD5a sMMrJ7PdpF6KUsLzNAE+wpA+aXy2BgB2AH0+8viP/4hVaCTCwMqeUol5K8UOeAl/ LmqXaJl+IvDXAAABdvSBemsAAAQDAEcwRQIgEX4wb9u7sVvoI038pHFBibzuwB/B iDaI2ilXYa+vN1gCIQDYuTbG2Pic4dyX7lwHJ+Df75Mreb0rdNkX+NOhUQRBazAN BgkqhkiG9w0BAQsFAAOCAQEAHSE/Mqc7LL0uUY9JQNb8k6gGYXnYXRgg1qgx90R6 LaWQcCiMJzs9VwnKJ0DXyPsOMydJacL2TH2PD4F/rZk9DbJ73sFYNLDrskch2BDq +1x3RAI3WWQIIH3aPJVEL4BG/GB5mZK9KNHdFLjKY3305sQ0Jx0TeelO5YlLXPyz ApHnR3HzgETbtk7WxNHfEJfKJJSUCrfAwAbJFDpMBAV5fosPqPLVnV+rF/fGC0e5 vcoG78wUr9JLW/HVCYejKYMaxdRFTVwYe5XA7XertCT5N05SrkdYeVU+NfKOkNtA wmzpB/xnCMHS1J8GSFu3gE7lEJ4u/D51687uecG+B2Eg/w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEUR98FTqs8hxRnUNFj9 SkKa2UwL1ovSeUCgsxa6Di+rz9x+S00J/vrhtWCilZeKzuopFSgUHSe6cdIhRVLN gwGDx5MDA1wizEDN0nY523UNjGPi/HHtaVLEh896GagX4pKM82LU6rHZBmcslDzq 7ve3qphjliWCHTk17upAMtq59Ud8PpZlz7ubjTUd40SFsr8AU33/8rjnhJ5SkEaK CEszTPjh4Kj0ndKaJoBF+V21f3ik2Hgf2CMiZfBxrsQOZ21I22r9uZenhuKeDmPe SoyVU2o4FImCojQI7mghA4WhwJeupo9QMuKi2Fsx4A1hLGuShfDw9lB3CAI3Lgym hQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 316346149970131399439660381291015845338617 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-01-12 01:51:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-12 01:51:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.bspb.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24271814331967432295962495264586788621501012947248904254767894964972551663317289880679315623226554583600078286410727089554732680809288027543081009533927251867937666848193755492278829841006468391965068074210122855656847374113397536041847123845450072166220249494769675050385951406314947391199385524116596875538255065278229890359307011011215935497698053812248082207851536288588062323305730944921548390377123550828579301124963523710574971996429249346446436493159985926498713686276879290311772994853632185647640797390657120496963208866079851413351045080332684740644123998493202101687555333518504095262051502501707496859269 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 35f32bf23c99277ddce1105a180ae68a3681b25b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bspb.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bspb.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076005cdc4392fee6ab4544b15e9ad456e61037fbd5fa47dca17394b25ee6f6c70eca00000176f4817a030000040300473045022100a0591dd70c99d3b51baea1538d16d85dc25ba0e57ff3cdc3763703181ef9c12e022016d588d332ce2a643e5ab0c32b27b3dda45e8a52c2f334013ec2903e697cb6060076007d3ef2f88fff88556824c2c0ca9e5289792bc50e78097f2e6a9768997e22f0d700000176f4817a6b00000403004730450220117e306fdbbbb15be8234dfca4714189bceec01fc1883688da295761afaf3758022100d8b936c6d8f89ce1dc97ee5c0727e0dfef932b79bd2b74d917f8d3a15104416b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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