gotit.co
Issued by R3
About this certificate
This digital certificate with serial number 04:06:ef:19:40:76:c4:77:4e:2e:2d:08:b3:da:b4:a7:c9:cb was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=gotit.co
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:06:ef:19:40:76:c4:77:4e:2e:2d:08:b3:da:b4:a7:c9:cbSerial Number (int): 350808654534464616735274566480047007844811
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 68:7d:0e:70:42:0f:13:88:7c:7b:a8:bd:5e:c9:22:8a:f5:4c:d6:58
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): be:1a:5a:72:48:c7:0d:5f:9b:50:16:e7:ef:7b:bc:15:5b:cb:81:24
Fingerprint (sha256): 10:74:34:8d:44:11:dc:b9:cc:47:fd:86:0b:a4:f0:42:39:7c:85:95:f3:e5:6b:f4:cd:36:5c:9d:ac:bf:b9:17
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate gotit.co
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gotit.co
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gotit.co
Other certificates including the domain name gotit.co
(limited to 100 certificates)
Certificate
The complete raw certificate details for gotit.co in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF3jCCBMagAwIBAgISBAbvGUB2xHdOLi0Is9q0p8nLMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMDkwNjEzNDdaFw0yNDA2MDcwNjEzNDZaMBMxETAPBgNVBAMT CGdvdGl0LmNvMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6MP79fvX t1AlpvVOK7Ra5xFESDu9szOgp8Fx+jr6ql60glitUe7zICXoesdOtK0FCcG+cI+p LzEjgMiQaKhwE6w4+Yhhk7oU86YGmoVD1g/jW0Uo8pEqaRVw/sIOBdIrVa81BgCC 0QnjTkHMni1fQGtxf1RVs9HvOwxMxe1WLBzL0FYlBEQLxcyOCvhRInGhnb6t9/MW HDWBlFFqw27kGVGeIyvBdrMINhQSOrasj7uI6uaR1tki+Tmkyno9+ov3XjO0uo2Q sb0JudnTbiDliRRz8qoGs+gb87TKHDlU5U+sFPGXjZMT4iw8nV3kuol4ItxGVOgR F2AJy830QUZwyVeU6fxJklHYw4igz61srGZOXOdmZdb54qrQxmXPzah6xlhIvigD dA23LmkOA0mNyVNPilNh/vZSMhfVkd0MXFcAMaZ3w5E5VuVTCbsiKWg+NuxfVN3Z wOiws7RHYEuzDFv51NkRqvMl8Ax4DSaiH0z0eWNfGT+6UO/o3PW73oVG1X8y0YrS KoMZYnBKLrRWOkDzqQhigd4UOTZJiOqLNfxtHvAGrBc9u46cTI0p1cw5963koQLr MQILEkvY4qGozVeaQ9xTa2wCH/Dg29dtYPYEGikL63P8XpYQaHUelmzeXKPcsLk/ FngfkwV4gHcSGvCWoWyFTCv7PVAFl0Qw+hcCAwEAAaOCAgswggIHMA4GA1UdDwEB /wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/ BAIwADAdBgNVHQ4EFgQUaH0OcEIPE4h8e6i9XskiivVM1lgwHwYDVR0jBBgwFoAU FC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzAB hhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5p LmxlbmNyLm9yZy8wEwYDVR0RBAwwCoIIZ290aXQuY28wEwYDVR0gBAwwCjAIBgZn gQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwA7U3d1Pi25gE6LMFsG/kA7 Z9hPw/THvQANLXJv4frUFwAAAY4iD4oAAAAEAwBIMEYCIQDJrPMcx/FjXX3MnUC8 nv3ig0L006p6Ac8RGd+fQ77Z4AIhAJJwywbcz2hkMZvFXX9vb85wJa8QPkRYX2Vh cTsWNnQtAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGOIg+L /AAABAMARzBFAiEAqqE9mldLKuH0xuWpUu7plBMCbAzqpXf1oyjRp6kMiFUCIE/i /LyCT3ToUCnU0Z5Ot/N8TjuZvmKywfGMOQnfrmSLMA0GCSqGSIb3DQEBCwUAA4IB AQCDsw3EDlood+qNpf4c10Niuow2FzSCZs7e9x4273imJ9eUdNRlY/rAjYEDC6F0 jkMO+TJl+9MiW/ZF3I/XFbsUgHNL9U5evglP8IKNHLHLNj+K1nTRWyD63sZmVnZn 4iTGxYn0ih79Lvp1y3f4zEZf4ZEbTKsrUwZnyGdTXMvaOqw8hXZj87RRDXjUnn1I TQq1Qm6VX1wv/v/I94qguePV6O6JWlVYTYu9a7+CEb0sJSjLyJlasCV4/Vcs0I/S 6jc61ZDxfkJ93zXOGO+nUkGy2cUEQPSFZ5CVL3ac37lseI4g6zAUtziVGtsH8Ppp JyH1cLOrM/JRKUhW+AlUkhns -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6MP79fvXt1AlpvVOK7Ra 5xFESDu9szOgp8Fx+jr6ql60glitUe7zICXoesdOtK0FCcG+cI+pLzEjgMiQaKhw E6w4+Yhhk7oU86YGmoVD1g/jW0Uo8pEqaRVw/sIOBdIrVa81BgCC0QnjTkHMni1f QGtxf1RVs9HvOwxMxe1WLBzL0FYlBEQLxcyOCvhRInGhnb6t9/MWHDWBlFFqw27k GVGeIyvBdrMINhQSOrasj7uI6uaR1tki+Tmkyno9+ov3XjO0uo2Qsb0JudnTbiDl iRRz8qoGs+gb87TKHDlU5U+sFPGXjZMT4iw8nV3kuol4ItxGVOgRF2AJy830QUZw yVeU6fxJklHYw4igz61srGZOXOdmZdb54qrQxmXPzah6xlhIvigDdA23LmkOA0mN yVNPilNh/vZSMhfVkd0MXFcAMaZ3w5E5VuVTCbsiKWg+NuxfVN3ZwOiws7RHYEuz DFv51NkRqvMl8Ax4DSaiH0z0eWNfGT+6UO/o3PW73oVG1X8y0YrSKoMZYnBKLrRW OkDzqQhigd4UOTZJiOqLNfxtHvAGrBc9u46cTI0p1cw5963koQLrMQILEkvY4qGo zVeaQ9xTa2wCH/Dg29dtYPYEGikL63P8XpYQaHUelmzeXKPcsLk/FngfkwV4gHcS GvCWoWyFTCv7PVAFl0Qw+hcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 350808654534464616735274566480047007844811 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-09 06:13:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-07 06:13:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gotit.co' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 949600649832927943356297331634270672250089152675519826861249945343771491814667088373418375026874481194774392075840412293844853716228523525186609892197225642578366995570480308062948856522420990931531064850449061929615727302637032856226238762956763777538970601980487075987839492672455781018953427630466478456345458550760373001979805659039980267480591167857203580122542105307096439003498647507368379322122937030022227643939210707499025267790874215825697240574204312992952366007620140639161778375858571045699838066854940148052618352739398645727344171593624838813778582076635352187150604089404905890816808143734587806118310049399440479890474419566374138902401818351350467486545544504658960608522176436205720853628682234998528374766968839629850370533280034699599567216866212112401076646028475514828230131980126033930015493123650863881139196092038709427083669343229572089344787827407895178087793334651345936411893768517169552945211382018474429126771982921933236455131940823996435887183010778582946411152122099871886990692369074553471443615952336665766310348629072524212137708840412035929344682396053767584079005376451152446906405184264603695917754112426107203247956401370988759280273871296658979867376906771453313269931448883267577664567831 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 687d0e70420f13887c7ba8bd5ec9228af54cd658 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gotit.co' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e220f8a000000040300483046022100c9acf31cc7f1635d7dcc9d40bc9efde28342f4d3aa7a01cf1119df9f43bed9e00221009270cb06dccf6864319bc55d7f6f6fce7025af103e44585f6561713b1636742d007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e220f8bfc0000040300473045022100aaa13d9a574b2ae1f4c6e5a952eee99413026c0ceaa577f5a328d1a7a90c885502204fe2fcbc824f74e85029d4d19e4eb7f37c4e3b99be62b2c1f18c3909dfae648b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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