*.bcopi.pt
Issued by R3
About this certificate
This digital certificate with serial number 04:fa:6d:b8:18:3f:05:ed:cf:1d:c8:99:90:0c:f8:bf:06:a3 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.bcopi.pt
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:fa:6d:b8:18:3f:05:ed:cf:1d:c8:99:90:0c:f8:bf:06:a3Serial Number (int): 433665577183209168335355785559571710281379
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 35:cd:7a:3b:90:c3:b7:d7:57:87:83:7b:7b:30:93:ca:69:9b:51:1b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ec:ed:a4:d0:a1:db:b6:fa:f5:9a:b0:51:2e:68:d6:a1:f0:3c:76:0b
Fingerprint (sha256): 11:30:98:f7:d7:8b:3d:67:c1:fa:77:88:0b:00:21:e3:52:cc:d0:ae:57:72:a0:3f:5d:16:32:80:51:77:e1:79
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate *.bcopi.pt
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.bcopi.pt
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.bcopi.pt
bcopi.pt
bcopi.pt
Other certificates including the domain name bcopi.pt
(limited to 100 certificates)
Certificate
The complete raw certificate details for *.bcopi.pt in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgISBPptuBg/Be3PHciZkAz4vwajMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMDMxNTUxNDlaFw0yNDAxMDExNTUxNDhaMBUxEzARBgNVBAMM CiouYmNvcGkucHQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrWQFZ bsuOKNa2jA+4WUAiWKvr1kHhBot/x5rF73vLYWHkbx4UGuCs8GxdAccfxp/TYazI vUvjeeO/wQWHDQzX7IwkUYHGBm73vsT+sI6HU3e1PqZeBWQhdEBR8Y86EiuMSYL1 BMx8mi4LEz4jHJEbLHfQKXhtoffCzl+XGmTeRlSyW1EGleGlp50qMw1JB8bbaOWs OQwkQipYCIxs4tdUKTiXounIsb1fu9t29A0ytZ96lUBK0hZmDOur+6YaSP841ez/ yc4JCuXgcBr1LcF2aG4skNqs12wgnWr9Ts2AD5EfPCOTDktcb+j9SsShuX4DQRfS xSlL4LxuEMSyfvDPAgMBAAGjggIVMIICETAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FDXNejuQw7fXV4eDe3swk8ppm1EbMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMB8G A1UdEQQYMBaCCiouYmNvcGkucHSCCGJjb3BpLnB0MBMGA1UdIAQMMAowCAYGZ4EM AQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAO1N3dT4tuYBOizBbBv5AO2fY T8P0x70ADS1yb+H61BcAAAGK9nP4eQAABAMARzBFAiAfs9Oar3lT+Zs7kGc8KpJE iWAqAvb6gQtppgi/tvcevgIhAMU1ACjtUWRt4/s8wzyql2zd0WEQaau7oafSchbk oehbAHUA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGK9nP4gQAA BAMARjBEAiAbsyraO6yvYJg1kViK6P7+ZrqILh9O/roNxkycQ6tyaQIgTB37hnWS hRy5aLNe8EV6SPqLdDvqorNdkutT+WGwUs4wDQYJKoZIhvcNAQELBQADggEBAJQc 0nFgSoXHyoDPP9i6axe5cuzj8SOkBYxUSTJt8oeKQPFDcKS4Gut16z29BK2Fwkpc zG3UksegThpekMEXpdf8eUMwpVb1x/xlEi0mh/8AmePoeBvAFu9a/xhD/m2VSOTi Atr8+it7CcpsYo0XHfDYLu3E0kOwP9o2NqlUBF+XVsf5u2NEPGDT/WnAJV1TgAo0 jShOqz8UtIFq6YlLULhL4r4Osd58bVv7YohJQmieuZtSBsuIuYocBDi/M1n/02d1 EVKmWSyaaFp6fSi/md6rOZjQD9l+EvuSqM0yZVI/gGBBC5bTehG7+YaxP13631/X 0Yh8OnjexK2RQ4/1Gag= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1kBWW7LjijWtowPuFlA Ilir69ZB4QaLf8eaxe97y2Fh5G8eFBrgrPBsXQHHH8af02GsyL1L43njv8EFhw0M 1+yMJFGBxgZu977E/rCOh1N3tT6mXgVkIXRAUfGPOhIrjEmC9QTMfJouCxM+IxyR Gyx30Cl4baH3ws5flxpk3kZUsltRBpXhpaedKjMNSQfG22jlrDkMJEIqWAiMbOLX VCk4l6LpyLG9X7vbdvQNMrWfepVAStIWZgzrq/umGkj/ONXs/8nOCQrl4HAa9S3B dmhuLJDarNdsIJ1q/U7NgA+RHzwjkw5LXG/o/UrEobl+A0EX0sUpS+C8bhDEsn7w zwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 433665577183209168335355785559571710281379 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-03 15:51:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-01 15:51:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.bcopi.pt' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21630640284077704543251253827469395554828765300420306809571736366937103730939897093198497358481348363757278920073705986091135175849449406176858283909156790266152876461055225724251289064745519954212743892812014996580261635740452917173938344960430479507588767456894762769963032551816277178018306988030529132300731735638589840810321456761719503518807045241923477159356228763026012116305970564492725851069330521262190286746261186714062646117793545045576186306331179947029497909059949622306305102425956001380007461199924134644180284573356929404730472182933761703676981279749488667888342895571139597176526163294572976730319 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 35cd7a3b90c3b7d75787837b7b3093ca699b511b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bcopi.pt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bcopi.pt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018af673f879000004030047304502201fb3d39aaf7953f99b3b90673c2a924489602a02f6fa810b69a608bfb6f71ebe022100c5350028ed51646de3fb3cc33caa976cddd1611069abbba1a7d27216e4a1e85b007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018af673f881000004030046304402201bb32ada3bacaf60983591588ae8fefe66ba882e1f4efeba0dc64c9c43ab726902204c1dfb867592851cb968b35ef0457a48fa8b743beaa2b35d92eb53f961b052ce . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00941cd271604a85c7ca80cf3fd8ba6b17b972ece3f123a4058c5449326df2878a40f14370a4b81aeb75eb3dbd04ad85c24a5ccc6dd492c7a04e1a5e90c117a5d7fc794330a556f5c7fc65122d2687ff0099e3e8781bc016ef5aff1843fe6d9548e4e202dafcfa2b7b09ca6c628d171df0d82eedc4d243b03fda3636a954045f9756c7f9bb63443c60d3fd69c0255d53800a348d284eab3f14b4816ae9894b50b84be2be0eb1de7c6d5bfb62884942689eb99b5206cb88b98a1c0438bf3359ffd367751152a6592c9a685a7a7d28bf99deab3998d00fd97e12fb92a8cd3265523f8060410b96d37a11bbf986b13f5dfadf5fd7d1887c3a78dec4ad91438ff519a8