ci.myascents.net
Issued by R3
About this certificate
This digital certificate with serial number 03:6f:d5:bf:fe:2a:4c:62:a0:77:df:f4:c5:2d:89:50:d2:32 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ci.myascents.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:6f:d5:bf:fe:2a:4c:62:a0:77:df:f4:c5:2d:89:50:d2:32Serial Number (int): 299392322970390338863701912025654543569458
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 23:34:15:1c:4c:dd:87:53:0a:21:d8:f8:db:4d:79:f0:76:52:2b:2b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 49:9b:6d:02:f9:e6:19:ca:1b:69:86:48:3c:ca:87:c6:3d:3e:ce:cd
Fingerprint (sha256): 26:33:af:8b:5e:a1:0b:a8:b2:b3:e8:28:a6:03:bf:16:33:b1:63:e1:23:c7:db:96:8c:17:f5:12:ae:87:03:5f
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate ci.myascents.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ci.myascents.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ci.myascents.net
Other certificates including the domain name myascents.net
(limited to 100 certificates)
dc.myascents.net
forms.baxtonmedia.me
qr.myascents.net
ispotsupport.myascents.net
01.cimb.dlt.myascents.net
testbh.myascents.net
ci.myascents.net
pm.myascents.net
01.cimb.dlt.myascents.net
testbh.myascents.net
4sq.myascents.net
boc.ecms.myascents.net
09.cimb.dlt.myascents.net
dc.myascents.net
am.myascents.net
07.itrust.dlt.myascents.net
01.cimb.dlt.myascents.net
demoitt.myascents.net
avatar.myascents.net
test.myascents.net
01.cimb.dlt.myascents.net
forms.baxtonmedia.me
forms.baxtonmedia.me
support.myascents.net
form.itcglobal.mx
forms.baxtonmedia.me
rma.myascents.net
stage.lms.myascents.net
transit.secure.myascents.net
01.cimb.dlt.myascents.net
sonar.myascents.net
forms.myascents.net
pm.myascents.net
stage.dashboard.myascents.net
09.cimb.dlt.myascents.net
09.cimb.dlt.myascents.net
bower.components.myascents.net
sit.imetal.myascents.net
stage.dashboard.myascents.net
09.cimb.dlt.myascents.net
forms.baxtonmedia.me
qr.myascents.net
ispotsupport.myascents.net
01.cimb.dlt.myascents.net
testbh.myascents.net
ci.myascents.net
pm.myascents.net
01.cimb.dlt.myascents.net
testbh.myascents.net
4sq.myascents.net
boc.ecms.myascents.net
09.cimb.dlt.myascents.net
dc.myascents.net
am.myascents.net
07.itrust.dlt.myascents.net
01.cimb.dlt.myascents.net
demoitt.myascents.net
avatar.myascents.net
test.myascents.net
01.cimb.dlt.myascents.net
forms.baxtonmedia.me
forms.baxtonmedia.me
support.myascents.net
form.itcglobal.mx
forms.baxtonmedia.me
rma.myascents.net
stage.lms.myascents.net
transit.secure.myascents.net
01.cimb.dlt.myascents.net
sonar.myascents.net
forms.myascents.net
pm.myascents.net
stage.dashboard.myascents.net
09.cimb.dlt.myascents.net
09.cimb.dlt.myascents.net
bower.components.myascents.net
sit.imetal.myascents.net
stage.dashboard.myascents.net
09.cimb.dlt.myascents.net
Certificate
The complete raw certificate details for ci.myascents.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIID+jCCAuKgAwIBAgISA2/Vv/4qTGKgd9/0xS2JUNIyMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDIxODMyNTlaFw0yNDA3MDExODMyNThaMBsxGTAXBgNVBAMT EGNpLm15YXNjZW50cy5uZXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCauP+IBC5PRdYlDrCrwwgbINzPHzwUHpRFMX8bUcEsWs20FVMZf2qGohTaNAo8 k9tPGZGM+mkMWmmZMqrvAM11jRGEaBWJYwvmr1c1GxcP40ZYhmwhReNFbAO956T8 n1jfDuTw/K3gKHNO/29VuZQr+R4W4rPjo86NLyGz2tv5Y0N4igrvkI4Kw90Kc+tV 5WK8x5XT2AN+Y0/du4K3eQHIBVqXtdrOyOXOvL5T/z2Fcud0NQe9+vDjewbhLcs6 yLRT2DUVWr7DMmwjvrBCfIy2OAbdtCrN+3tcBocwqoCedOfv5LFtcmrzaTDGyKaB b9mQsTIdmWHyv70WzWFmc88PAgMBAAGjggEfMIIBGzAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFCM0FRxM3YdTCiHY+NtNefB2UisrMB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMBsGA1UdEQQUMBKCEGNpLm15YXNjZW50cy5uZXQwEwYDVR0gBAwwCjAIBgZn gQwBAgEwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBADX5 yfPiTHk1rzvVGu2jOn+lmcpfgPhZmnVKNbOwSRMX/zRs3zsQo8I0sIijzMRqWn68 1l5xltvnC3PmNX96qMP1gIwcD6QAcLqrtiGME1aeP7mI2yqu028p4B7jKfKoEyQc ePYkn4PWNYakrNhD9QdFiCOqAittGK2uqouJcSrUZTCS5/GYPxeMbWOMKsWJ/Hlk I/Hc7uDn+dlmV8TIGt7SAlky5/dhjO8LBOIV5WxpOeQJlYIDwNN94ytyHcKqwZdk fAaLV9SO1w1/USQKXZYomoFpULQt6h44V/62zd/7pLXm3u9ag8PGYvJB9uzpzd+S LqrKsBAkUUzPENGf+bs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmrj/iAQuT0XWJQ6wq8MI GyDczx88FB6URTF/G1HBLFrNtBVTGX9qhqIU2jQKPJPbTxmRjPppDFppmTKq7wDN dY0RhGgViWML5q9XNRsXD+NGWIZsIUXjRWwDveek/J9Y3w7k8Pyt4ChzTv9vVbmU K/keFuKz46POjS8hs9rb+WNDeIoK75COCsPdCnPrVeVivMeV09gDfmNP3buCt3kB yAVal7Xazsjlzry+U/89hXLndDUHvfrw43sG4S3LOsi0U9g1FVq+wzJsI76wQnyM tjgG3bQqzft7XAaHMKqAnnTn7+SxbXJq82kwxsimgW/ZkLEyHZlh8r+9Fs1hZnPP DwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 299392322970390338863701912025654543569458 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-02 18:32:59 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-01 18:32:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ci.myascents.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19531924962042322721999596606392583172490190514667212961293129707092036812604946703449313292970863106978507227473635162372964513425305487335970028686116915332197936540447747086708900261623205842648784545759252902768205443835686481706392927173537509219970803979516308556536921071080984558392029046529866897192517720823783831807728546790037215828964376759429904628410416236331530125473098663333485508603994951169865024663169798077556574228338263082301032232904003082490370977784510420399756878734925141139211903719744188224839943438723952715501209127378389585315362113986679783583323096554563926261262189980126039756559 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2334151c4cdd87530a21d8f8db4d79f076522b2b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.myascents.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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