complicata.com
Issued by R3
About this certificate
This digital certificate with serial number 04:44:4d:e1:0b:77:79:fb:93:40:51:f1:c6:91:8b:81:69:d0 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=complicata.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:44:4d:e1:0b:77:79:fb:93:40:51:f1:c6:91:8b:81:69:d0Serial Number (int): 371691863732705819761744390004566722177488
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: be:84:9a:be:6d:c4:7d:da:55:20:30:02:7c:04:a7:c7:1c:a2:82:4b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): b1:c1:b9:c2:e3:58:b5:c3:3a:f8:b2:11:79:ad:fc:70:23:30:44:72
Fingerprint (sha256): 18:52:02:b3:5e:df:d2:c3:3a:ed:97:ac:8f:d3:ef:16:0b:d0:f9:23:8d:19:b3:38:73:e3:87:e4:ad:06:2c:ee
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate complicata.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for complicata.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
complicata.com
Other certificates including the domain name complicata.com
(limited to 100 certificates)
qh.org
al-karama.com
www.complicata.com
complicata.com
www.complicata.com
complicata.com
www.complicata.com
complicata.com
www.complicata.com
www.culturepeace.net
complicata.com
complicata.com
blockchainbrains.ca
www.complicata.com
complicata.com
www.complicata.com
monserrato.org
complicata.com
www.complicata.com
www.notvalid.com
al-karama.com
www.complicata.com
complicata.com
www.complicata.com
complicata.com
www.complicata.com
complicata.com
www.complicata.com
www.culturepeace.net
complicata.com
complicata.com
blockchainbrains.ca
www.complicata.com
complicata.com
www.complicata.com
monserrato.org
complicata.com
www.complicata.com
www.notvalid.com
Certificate
The complete raw certificate details for complicata.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6TCCBNGgAwIBAgISBERN4Qt3efuTQFHxxpGLgWnQMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjAwOTM0NDBaFw0yNDA2MTgwOTM0MzlaMBkxFzAVBgNVBAMT DmNvbXBsaWNhdGEuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA wL9eb0wi53W6nObB+JAyGY0n67nibV76WfUwSwP6nuvAXSYCS5kuRm0XRvei1lGe hpaf81gFJONWEGnHHfbkYw8OHiOtKnehDVd/VV71w3s8UeuIqq6M3wYN5GRlVOML XW6JjPZYLm9TCJQBFXNni7depsDtcgqspEkbyGETitsXxxGiF2V+8jtNrd1pp/Jy yczxu4ZKA57fA1fQoOP0CPFptFG9E/wLWnoA9TjD+1slCSYzGxpQ6biOiy5FFIVR 7YWJ7EOYV+/tt50i1n8AOMOfB3Kse0ldpkzSCdflJrEALYxNUqJniJaKpnKKQ7NL m/xih7EwVyzA9wWML36nS5dYSfEXbEOVHK8R4Y3ZI24o4S8SLOPbTb/sWuWJzlwA 4te3SzwBVjKLLb3uVQ+C3Vi4VvnR8mwIMI+hUiQlYye7VoJL6mGxxRFutdoyDpV3 ZjrLnVjs+czQmdE0ZcCirxqf5+MmM2XN5AhZ76cFk4QNiFCav/FGPoTXn0GCmQ76 nzS7BZwEFxH8x6mbwRPQT7iIVSQ1Mkh4Yjmc090oseGuRj1yG98jcI1sRiPcUpEO 8cXgPTUi2foRww6j4CQBDxH++4aqEIrkW3qTK312Y6MykgaSEaSR/Yzw7wa1cp2Z ncS20QCfDNTYT5ktGR/8WMF+A/m/GEfzpbtw/1PN5ZkCAwEAAaOCAhAwggIMMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYD VR0TAQH/BAIwADAdBgNVHQ4EFgQUvoSavm3EfdpVIDACfASnxxyigkswHwYDVR0j BBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsG AQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6 Ly9yMy5pLmxlbmNyLm9yZy8wGQYDVR0RBBIwEIIOY29tcGxpY2F0YS5jb20wEwYD VR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgBIsONr 2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY5bbWb5AAAEAwBHMEUCIATi QPkWurXbuqbqhbTX66L0jg3Ed8lzD/ZrEuQo5agjAiEA2QxETjqSvJpOuLDM0Fne srn94YCkyeH+Nheja7ugs9QAdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlG cR+1mwAAAY5bbWcKAAAEAwBHMEUCIAjw8ySx+eRmxfIBn3A7lxpYLp9s2lVTvSOh jFtBUc2aAiEAyzXevz8kydrhhx2kDCoxU5cns6/iWS9YieH/7UaF9+IwDQYJKoZI hvcNAQELBQADggEBACx6fZwM6//6q5FuV4dMPZ3Y7PwyglTYcKjYj1O1QMW6fxfo F5YjDyV0xD2L3v/p9J4Fjnyx/rFBhmR9FbZmvoSZ1yKTRrL2MpBtptBZYGH82BsY UebD4DOEY8OLCcFFp8L7fBDg7SH5iSkUUK93Sx+EElLOryfWRaM4n1fWZjuGmefg L+vE0zjZMQTdhdknFAopFvNo2XtYQuxhYP44mMqbgdCVZPKC6dYkkm6Wni7YiRJk fRCbQJIMR0lxG0mVKhi5yF7t8YYJqM2f/ILn1xdqgA8hMBLpuk5D+eln07kYLoLG er9Dly/7+3zfLpdbpECst5JTy2r/zRUIbWHjK0U= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwL9eb0wi53W6nObB+JAy GY0n67nibV76WfUwSwP6nuvAXSYCS5kuRm0XRvei1lGehpaf81gFJONWEGnHHfbk Yw8OHiOtKnehDVd/VV71w3s8UeuIqq6M3wYN5GRlVOMLXW6JjPZYLm9TCJQBFXNn i7depsDtcgqspEkbyGETitsXxxGiF2V+8jtNrd1pp/Jyyczxu4ZKA57fA1fQoOP0 CPFptFG9E/wLWnoA9TjD+1slCSYzGxpQ6biOiy5FFIVR7YWJ7EOYV+/tt50i1n8A OMOfB3Kse0ldpkzSCdflJrEALYxNUqJniJaKpnKKQ7NLm/xih7EwVyzA9wWML36n S5dYSfEXbEOVHK8R4Y3ZI24o4S8SLOPbTb/sWuWJzlwA4te3SzwBVjKLLb3uVQ+C 3Vi4VvnR8mwIMI+hUiQlYye7VoJL6mGxxRFutdoyDpV3ZjrLnVjs+czQmdE0ZcCi rxqf5+MmM2XN5AhZ76cFk4QNiFCav/FGPoTXn0GCmQ76nzS7BZwEFxH8x6mbwRPQ T7iIVSQ1Mkh4Yjmc090oseGuRj1yG98jcI1sRiPcUpEO8cXgPTUi2foRww6j4CQB DxH++4aqEIrkW3qTK312Y6MykgaSEaSR/Yzw7wa1cp2ZncS20QCfDNTYT5ktGR/8 WMF+A/m/GEfzpbtw/1PN5ZkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 371691863732705819761744390004566722177488 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-20 09:34:40 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-18 09:34:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'complicata.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 786341336605213442813482192528263339724786438786144225303405049617287408115426746575812875827687510493606104056085118361068395552391391415558338862380414838618371382137777660855808834612448260649472131907757564104339024116491046249216308265498958593053314836047789044711457530734944707127119242134486735508700723016298199323813230099234649734442341037331664395906924646491324485475367269228724582994729018642325157431940135751440454826178627775890611565796652032795766778587299049283915385170108015381903759819493396846328542182102688165750149136201020862659307448735777230587606337872628711754327191820902386443947007243779538741506244895591703314494905295424377988362185844789050191487570270102629025315741637219579300542816030094748592477359574350955203772343110615007946528012705127283797952452881860286825782371730127033706279573178325250333917818066768326549516057912978320216325561535091255982460558387327162897119480978574034588489760281468384444024935172599526396327994186975636195648616562505042116639153504464189879268143376798248363617583311333897106304209942199657534772530939810691062763352491516078078452707010548227916237638548139273320467337751746840998194313739271282865087488146929141646887646128318295844401833369 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) be849abe6dc47dda552030027c04a7c71ca2824b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'complicata.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e5b6d66f90000040300473045022004e240f916bab5dbbaa6ea85b4d7eba2f48e0dc477c9730ff66b12e428e5a823022100d90c444e3a92bc9a4eb8b0ccd059deb2b9fde180a4c9e1fe3617a36bbba0b3d4007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e5b6d670a0000040300473045022008f0f324b1f9e466c5f2019f703b971a582e9f6cda5553bd23a18c5b4151cd9a022100cb35debf3f24c9dae1871da40c2a31539727b3afe2592f5889e1ffed4685f7e2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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