armazemdamadeira.com.br

Issued by R3

About this certificate

This digital certificate with serial number 03:ac:05:9f:10:29:bb:55:d5:58:34:3f:40:28:d1:4e:1d:51 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=armazemdamadeira.com.br

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:ac:05:9f:10:29:bb:55:d5:58:34:3f:40:28:d1:4e:1d:51
Serial Number (int): 319872896948686473057063548893981003619665
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 98:6d:4f:ea:62:5e:9d:5d:0b:66:14:d9:ee:03:38:11:f6:19:45:25
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): cf:19:75:19:47:43:c9:88:03:45:a6:96:cf:1a:ad:e3:ee:39:d9:fd
Fingerprint (sha256): 19:9a:87:85:29:96:0a:f2:f9:73:a7:14:6d:f7:98:3c:18:d3:11:52:90:81:a7:70:43:fe:22:fc:14:7b:93:aa

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate armazemdamadeira.com.br

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for armazemdamadeira.com.br

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

armazemdamadeira.com.br

Other certificates including the domain name armazemdamadeira.com.br

(limited to 100 certificates)
www.armazemdamadeira.com.br
armazemdamadeira.com.br
armazemdamadeira.com.br
armazemdamadeira.com.br
loja.armazemdamadeira.com.br
armazemdamadeira.jv202.net
armazemdamadeira.com.br
loja.armazemdamadeira.com.br
loja.armazemdamadeira.com.br
armazemdamadeira.com.br
www.armazemdamadeira.com.br
armazemdamadeira.com.br
www.armazemdamadeira.com.br
armazemdamadeira.com.br
www.armazemdamadeira.com.br
armazemdamadeira.com.br
armazemdamadeira.com.br
armazemdamadeira.jv202.net
www.armazemdamadeira.com.br
loja.armazemdamadeira.com.br
armazemdamadeira.com.br
armazemdamadeira.com.br
armazemdamadeira.com.br
armazemdamadeira.com.br
www.armazemdamadeira.com.br
armazemdamadeira.com.br
armazemdamadeira.com.br
armazemdamadeira.com.br
armazemdamadeira.com.br
armazemdamadeira.com.br
armazemdamadeira.com.br
loja.armazemdamadeira.com.br
armazemdamadeira.com.br
www.armazemdamadeira.com.br
armazemdamadeira.com.br
armazemdamadeira.com.br
www.armazemdamadeira.com.br
armazemdamadeira.com.br
www.armazemdamadeira.com.br
loja.armazemdamadeira.com.br

Certificate

The complete raw certificate details for armazemdamadeira.com.br in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 319872896948686473057063548893981003619665
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-16 20:52:29 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-16 20:52:28 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'armazemdamadeira.com.br'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 999322153371444627790852387594461290301373832580998965569412621242341263231122129733528773319680567016989713711428140866421770428780473149873028337637172547281528283171036415544497701539067005679697848458823643098603462299780211072364055701127109965869825983188771971397164533780518324743203116313289470002505208186024126693093913718295823732588264254949975669103138197768299625009621316747556652250377257706588742283521333189917596685128394657661045434512363524525648898862939703146470986513765501111301150734878761450425661189914902693239890444609499362129947377064663682706008539645835896167328894441980626565550033926500760200250721602777127629005769071756975435780837582461075391276389636381470707958557203959488168031321339707540100226993537695285215041914141409980352143323780814556459114725213179027921588902797292934931221582018828406912158595783574904972531225702716960221170931643477114073304024359229563534836798863967873533387038795301342456153304383864862077676641857804037434998566005384722257827218899498382083451855951034226795096909810815311307376722645784894136218339062612547169537241482707675118815751072098096697857757526271851500432413766010925038553038048976652102328438146798778506901302132136530959786438879
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							986d4fea625e9d5d0b6614d9ee033811f6194525
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'armazemdamadeira.com.br'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018db3e81b4f00000403004630440220710147fb0f16d7f46e1d3b276363e97a4193e86619b3ad6d13c67464d0bc577e02207a97cd58e1f9bd0c0c7522d84f0902fe9d1b50352cc17e066df9df5d643b281700770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018db3e81d3a0000040300483046022100d6cbbdf88fb6155d466ba1b305f8fa700b2b2db727a589e1d784b3349d5613c0022100b6cebb065cceeb1723466ff866622a390e75435945600bae9e1372ef0d0e1d29
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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