blog.ami.com

Issued by R3

About this certificate

This digital certificate with serial number 04:91:e6:72:02:28:16:83:7f:f7:7e:4f:3c:b7:35:77:cf:9c was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=blog.ami.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:91:e6:72:02:28:16:83:7f:f7:7e:4f:3c:b7:35:77:cf:9c
Serial Number (int): 398096401335190380761480788318533855989660
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: fb:2d:40:23:0e:7c:e8:fe:e3:4f:4d:d4:fd:0f:43:7d:9c:f4:a7:92
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 6d:2c:e9:2d:c3:91:98:59:f7:f4:2d:05:7e:06:22:90:be:48:e0:0f
Fingerprint (sha256): 11:ee:08:50:8c:cf:78:9b:0f:f0:ad:53:0d:d8:79:58:e0:9a:9b:f1:d3:d3:2d:db:05:99:51:ff:d4:fe:82:84

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate blog.ami.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for blog.ami.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

blog.ami.com

Other certificates including the domain name ami.com

(limited to 100 certificates)
ami.com
fossgit.ami.com
webmail.ami.com
testgit.ami.com
git2.ami.com
megaracdevnet.ami.com
info.ami.com
doc.ami.com
servicedesk1.adaresec.com
notary.ami.com
blog.ami.com
doc.ami.com
ami.com
www.ami.com
tickets.ec-comptech.com
testgit.ami.com
serviceportal.lbfoster.com
www.demo.ami.com
demo.ami.com
cwsupport.wefreight.com
testgit.ami.com
testgit.ami.com
blogs.ami.com
testgit.ami.com
ami.com
git3.ami.com
blog.ami.com
blog.ami.com
ami.com
git3.ami.com
megaracdevnet.ami.com
blogs.ami.com
notary.ami.com
blog.ami.com
webmail.ami.com
helpdesk.visitbarbados.org
doc.ami.com
helpdesk.anfalservices.com.sa
blogs.ami.com
*.ami.com
fossgit.ami.com
demo.ami.com
testgit.ami.com
*.ami.com
blog.ami.com
doc.ami.com
*.ami.com
ami.com
www.demo.ami.com
megaracdevnet.ami.com
*.ami.com
fossgit.ami.com
fossgit.ami.com
helpdesk.brazos.org
ami.com
servicedesk.melnor.com
blog.ami.com
megaracdevnet.ami.com
ami.com
helpdesk.visitbarbados.org
www.demo.ami.com
helpdesk.porticopm.com
www.ami.com
megaracdevnet.ami.com
ami.com
testgit.ami.com
ami.com
notary.ami.com
notary.ami.com
ami.com
demo.ami.com
clfhelpdesk.clf.uk
testgit.ami.com
megaracdevnet.ami.com
doc.ami.com
notary.ami.com
doc.ami.com
*.ami.com
demo.ami.com
www.ami.com
notary.ami.com
msg.kiwitcms.ami.com
ami.com
demo.ami.com
*.ami.com
www.ami.com
servicedesk1.adaresec.com
*.ami.com
megaracdevnet.ami.com
git3.ami.com
megaracdevnet.ami.com
www.demo.ami.com
notary.ami.com
serviceportal.ami.com
git3.ami.com
megaracdevnet.ami.com
notary.ami.com
notary.ami.com
helpdesk.porticopm.com
testgit.ami.com

Certificate

The complete raw certificate details for blog.ami.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIEKzCCAxOgAwIBAgISBJHmcgIoFoN/935PPLc1d8+cMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yMjEwMjUyMTI0MDJaFw0yMzAxMjMyMTI0MDFaMBcxFTATBgNVBAMT
DGJsb2cuYW1pLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALFP
PU4h7h2lntJYWQQoWECTlSZylDkInHfh9u0kBJQ3tYaq5ZZ8t9Hs7eJpxfCf7U5R
s/fiPzvTgOJjFj897IZFFpk9mt7ZjcJNTAV9MsOjR9UIHkTc+N27OtB9+vzIQ7Fh
+VHtNP9Ab2lsGdEpXwly1euyGIlPfFjSl+10rzFsK1qzhKcyQ/JHPNM7F0Z+oKkQ
BtT+m4uxfMf7ml2RQvyX7z9VEMnVoYshv2PaKsSjUZ4TPdxBB5OR9bY11nKn3m7k
svChvWaC8dkqte+aWzYinl1ht5PY+wW7gm6RYLt27ISV+FnhQV+JRUk+HUS/Ah80
pVJRybm16uiNESAurkECAwEAAaOCAVQwggFQMA4GA1UdDwEB/wQEAwIFoDAdBgNV
HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E
FgQU+y1AIw586P7jT03U/Q9DfZz0p5IwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA
5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu
by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w
FwYDVR0RBBAwDoIMYmxvZy5hbWkuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcG
CysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5
cHQub3JnMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAg
wRZZroDV/upYtFYaHW0QZl6T1gYCgaZZhIGwnokICfnUJ6ApZ8d6uCxDQQBWZYsX
XtcpbNK5nlrGCHK4ojoFVxquh8tIB/RKz9NmMhQ9Uy5APqiSz3pWR7enJbEKgeiK
dd6hq6TXe29blyGyXrGH+Zr9iod5Nj5lVswVoh0lEh9HF42b5HQ/px73ZjgaOLJR
/eY2Es44IcdVS1J0G6FbvtVTKiyHol5HR8xn8gJqnTxW0hC/qKB4o2q6IfAZMf5A
XKMCxruMHXW1DUhTjPy5C5U+K0XoZEpz+WjzGJ9DqJcagf1WBZSycBurgPfyrxuq
5+8NWO6Gf0DkDkWAF6c+
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsU89TiHuHaWe0lhZBChY
QJOVJnKUOQicd+H27SQElDe1hqrllny30ezt4mnF8J/tTlGz9+I/O9OA4mMWPz3s
hkUWmT2a3tmNwk1MBX0yw6NH1QgeRNz43bs60H36/MhDsWH5Ue00/0BvaWwZ0Slf
CXLV67IYiU98WNKX7XSvMWwrWrOEpzJD8kc80zsXRn6gqRAG1P6bi7F8x/uaXZFC
/JfvP1UQydWhiyG/Y9oqxKNRnhM93EEHk5H1tjXWcqfebuSy8KG9ZoLx2Sq175pb
NiKeXWG3k9j7BbuCbpFgu3bshJX4WeFBX4lFST4dRL8CHzSlUlHJubXq6I0RIC6u
QQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 398096401335190380761480788318533855989660
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-25 21:24:02 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-23 21:24:01 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'blog.ami.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22383254419678834890279294536563198651195072401764361476082405035603512530448864549980121680503722671667067165625352033107363253941918040026751297009665436834661079042467305609791253930450384475529334469903526028143636818624504447741423825638842826610650566455576416409935080302497775693366829183482668863840808942877885085135632578027268375975789887229533360564572846963852275313895934345375057815677880785123468136382754993917301260671024785681982020851318677477775217809537624849232056941898842482922525278328807355465195694516618675193840808832790011513216159000477469198229091349658059736414674073962985615699521
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							fb2d40230e7ce8fee34f4dd4fd0f437d9cf4a792
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.ami.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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