invest.luno.com
Issued by E1
About this certificate
This digital certificate with serial number 03:55:b8:2a:11:13:87:ab:3e:aa:20:53:52:7c:a3:4e:51:70 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=invest.luno.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:55:b8:2a:11:13:87:ab:3e:aa:20:53:52:7c:a3:4e:51:70Serial Number (int): 290505655357601278166048691953059199078768
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 25:1b:72:4e:bd:09:b5:38:31:cb:11:4c:7e:d1:27:e9:db:15:fc:5a
AuthorityKeyId: 5a:f3:ed:2b:fc:36:c2:37:79:b9:52:30:ea:54:6f:cf:55:cb:2e:ac
Fingerprint (sha1): cb:43:45:8d:5d:54:5a:00:3b:78:d1:c6:34:f7:19:ff:5c:3a:f0:54
Fingerprint (sha256): 13:d0:5b:61:5e:3f:8f:70:2e:ee:fe:43:8f:0a:77:c1:32:36:b0:ab:b7:07:d0:81:26:74:e1:15:78:db:17:97
Issuing Certificate URL: http://e1.i.lencr.org/
Revocation information
OCSP Server: http://e1.o.lencr.orgCheck the revocation status for certificate invest.luno.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for invest.luno.com
Public Key Algorithm
ECDSA
Key Size
256
Signature Algorithm
ECDSA with SHA384
Key Usage
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
invest.luno.com
Other certificates including the domain name luno.com
(limited to 100 certificates)
nebula.corp.luno.com
trade.luno.com
app-status.cloudsign.jp
*.corp.luno.com
app-status.cloudsign.jp
ssl425545.cloudflaressl.com
try.luno.com
*.corp.luno.com
confluence-staging.corp.luno.com
one.luno.com
lunobase.corp.luno.com
corp.luno.com
*.corp.luno.com
unifi-controller.corp.luno.com
discover.luno.com
ssl425545.cloudflaressl.com
discover.luno.com
ajax-geo.staging.luno.com
apollo.corp.luno.com
luno.com
wordpress.prod.luno.com
app-status.cloudsign.jp
staging.luno.com
*.corp.luno.com
app-status.cloudsign.jp
app-status.cloudsign.jp
nebula.corp.luno.com
careers.luno.com
luno.com
try.luno.com
app-status.cloudsign.jp
staging.luno.com
corp.luno.com
one.luno.com
ajax-geo.staging.luno.com
one.luno.com
discover.luno.com
staging.luno.com
staging.luno.com
sandbox.luno.com
api-geo.staging.luno.com
*.staging.luno.com
try.luno.com
any-quote.blueur.com
trade.staging.luno.com
sni.cloudflaressl.com
app-status.cloudsign.jp
try.luno.com
ajax-geo.staging.luno.com
trade.luno.com
luno.com
ajax-geo.staging.luno.com
sni189482.cloudflaressl.com
staging.luno.com
app-status.cloudsign.jp
invest.luno.com
staging.luno.com
app-status.cloudsign.jp
papercut.corp.luno.com
app-status.cloudsign.jp
luno.com
ssl425544.cloudflaressl.com
ajax-geo.staging.luno.com
ajax-geo.staging.luno.com
app-status.cloudsign.jp
ajax-geo.staging.luno.com
uob-jwt.luno.com
*.corp.luno.com
*.staging.luno.com
crypto.luno.com
app-status.cloudsign.jp
sni189482.cloudflaressl.com
voyager.corp.luno.com
sni.cloudflaressl.com
corp.luno.com
api-geo.staging.luno.com
luno.com
*.luno.com
one.luno.com
sandbox.luno.com
new2-www.luno.com
*.staging.luno.com
sw.luno.com
uob-jwt.luno.com
discover.luno.com
ssl425545.cloudflaressl.com
dev.v3.playbook.vc
app-status.cloudsign.jp
luno.com
ajax-geo.staging.luno.com
app-status.cloudsign.jp
ajax-geo.staging.luno.com
staging.luno.com
staging.luno.com
invest.luno.com
staging.luno.com
ap-southeast-3.prod.luno.com
app-status.cloudsign.jp
ssl425544.cloudflaressl.com
staging.luno.com
trade.luno.com
app-status.cloudsign.jp
*.corp.luno.com
app-status.cloudsign.jp
ssl425545.cloudflaressl.com
try.luno.com
*.corp.luno.com
confluence-staging.corp.luno.com
one.luno.com
lunobase.corp.luno.com
corp.luno.com
*.corp.luno.com
unifi-controller.corp.luno.com
discover.luno.com
ssl425545.cloudflaressl.com
discover.luno.com
ajax-geo.staging.luno.com
apollo.corp.luno.com
luno.com
wordpress.prod.luno.com
app-status.cloudsign.jp
staging.luno.com
*.corp.luno.com
app-status.cloudsign.jp
app-status.cloudsign.jp
nebula.corp.luno.com
careers.luno.com
luno.com
try.luno.com
app-status.cloudsign.jp
staging.luno.com
corp.luno.com
one.luno.com
ajax-geo.staging.luno.com
one.luno.com
discover.luno.com
staging.luno.com
staging.luno.com
sandbox.luno.com
api-geo.staging.luno.com
*.staging.luno.com
try.luno.com
any-quote.blueur.com
trade.staging.luno.com
sni.cloudflaressl.com
app-status.cloudsign.jp
try.luno.com
ajax-geo.staging.luno.com
trade.luno.com
luno.com
ajax-geo.staging.luno.com
sni189482.cloudflaressl.com
staging.luno.com
app-status.cloudsign.jp
invest.luno.com
staging.luno.com
app-status.cloudsign.jp
papercut.corp.luno.com
app-status.cloudsign.jp
luno.com
ssl425544.cloudflaressl.com
ajax-geo.staging.luno.com
ajax-geo.staging.luno.com
app-status.cloudsign.jp
ajax-geo.staging.luno.com
uob-jwt.luno.com
*.corp.luno.com
*.staging.luno.com
crypto.luno.com
app-status.cloudsign.jp
sni189482.cloudflaressl.com
voyager.corp.luno.com
sni.cloudflaressl.com
corp.luno.com
api-geo.staging.luno.com
luno.com
*.luno.com
one.luno.com
sandbox.luno.com
new2-www.luno.com
*.staging.luno.com
sw.luno.com
uob-jwt.luno.com
discover.luno.com
ssl425545.cloudflaressl.com
dev.v3.playbook.vc
app-status.cloudsign.jp
luno.com
ajax-geo.staging.luno.com
app-status.cloudsign.jp
ajax-geo.staging.luno.com
staging.luno.com
staging.luno.com
invest.luno.com
staging.luno.com
ap-southeast-3.prod.luno.com
app-status.cloudsign.jp
ssl425544.cloudflaressl.com
staging.luno.com
Certificate
The complete raw certificate details for invest.luno.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIICjTCCAhKgAwIBAgISA1W4KhETh6s+qiBTUnyjTlFwMAoGCCqGSM49BAMDMDIx CzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJF MTAeFw0yMzExMDQxODI1NDFaFw0yNDAyMDIxODI1NDBaMBoxGDAWBgNVBAMTD2lu dmVzdC5sdW5vLmNvbTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBtuaGUQ/c8m RAdb463xnVD1aPnHs05nHD0b+FfGDw1TZ62IsKAPhMoVtm4K55LOPchnkbuv/sNd wYZNwWjxz+ejggEeMIIBGjAOBgNVHQ8BAf8EBAMCB4AwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFCUbck69CbU4 McsRTH7RJ+nbFfxaMB8GA1UdIwQYMBaAFFrz7Sv8NsI3eblSMOpUb89Vyy6sMFUG CCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL2UxLm8ubGVuY3Iub3Jn MCIGCCsGAQUFBzAChhZodHRwOi8vZTEuaS5sZW5jci5vcmcvMBoGA1UdEQQTMBGC D2ludmVzdC5sdW5vLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATATBgorBgEEAdZ5 AgQDAQH/BAIFADAKBggqhkjOPQQDAwNpADBmAjEAvQCPBrLr6pob4JZK5NvgfGTF wTGTPVerq9uxg2QDVeBSPmLgBFx9aIf4/iM4dbqeAjEAyJTsszGT0n6cja43wmOI +cX7Io78kcWwi3GkFTiE6Wa4ZlUR4Blg4CIC0jPm3lI6 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEG25oZRD9zyZEB1vjrfGdUPVo+cez TmccPRv4V8YPDVNnrYiwoA+EyhW2bgrnks49yGeRu6/+w13Bhk3BaPHP5w== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 290505655357601278166048691953059199078768 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.4.3.3 (ecdsaWithSHA384) . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'E1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-04 18:25:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-02 18:25:40 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'invest.luno.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.2.1 (ecPublicKey) . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.3.1.7 (prime256v1) . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (520 bits) 00041b6e686510fdcf2644075be3adf19d50f568f9c7b34e671c3d1bf857c60f0d5367ad88b0a00f84ca15b66e0ae792ce3dc86791bbaffec35dc1864dc168f1cfe7 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1 bits) 0780 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 251b724ebd09b53831cb114c7ed127e9db15fc5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5af3ed2bfc36c23779b95230ea546fcf55cb2eac . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://e1.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://e1.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'invest.luno.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.4.3.3 (ecdsaWithSHA384) . . . . [c:0|t:3|false] BIT STRING (832 bits) . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29090098290226982607818815531439842238603718796004643382377462693742747764945222493340181863674493802282113832434334 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30872354822280518185254070494952756107463664752000473395184561069011232909417320137603941956748123789597607697732154