ci.myascents.net

Issued by R3

About this certificate

This digital certificate with serial number 03:6f:d5:bf:fe:2a:4c:62:a0:77:df:f4:c5:2d:89:50:d2:32 was issued on by Let's Encrypt.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=ci.myascents.net

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 03:6f:d5:bf:fe:2a:4c:62:a0:77:df:f4:c5:2d:89:50:d2:32
Serial Number (int): 299392322970390338863701912025654543569458
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 23:34:15:1c:4c:dd:87:53:0a:21:d8:f8:db:4d:79:f0:76:52:2b:2b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 49:9b:6d:02:f9:e6:19:ca:1b:69:86:48:3c:ca:87:c6:3d:3e:ce:cd
Fingerprint (sha256): 26:33:af:8b:5e:a1:0b:a8:b2:b3:e8:28:a6:03:bf:16:33:b1:63:e1:23:c7:db:96:8c:17:f5:12:ae:87:03:5f

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate ci.myascents.net

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ci.myascents.net

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ci.myascents.net

Other certificates including the domain name myascents.net

(limited to 100 certificates)
dc.myascents.net
forms.baxtonmedia.me
qr.myascents.net
ispotsupport.myascents.net
01.cimb.dlt.myascents.net
testbh.myascents.net
ci.myascents.net
pm.myascents.net
01.cimb.dlt.myascents.net
testbh.myascents.net
4sq.myascents.net
boc.ecms.myascents.net
09.cimb.dlt.myascents.net
dc.myascents.net
am.myascents.net
07.itrust.dlt.myascents.net
01.cimb.dlt.myascents.net
demoitt.myascents.net
avatar.myascents.net
test.myascents.net
01.cimb.dlt.myascents.net
forms.baxtonmedia.me
forms.baxtonmedia.me
support.myascents.net
form.itcglobal.mx
forms.baxtonmedia.me
rma.myascents.net
stage.lms.myascents.net
transit.secure.myascents.net
01.cimb.dlt.myascents.net
sonar.myascents.net
forms.myascents.net
pm.myascents.net
stage.dashboard.myascents.net
09.cimb.dlt.myascents.net
09.cimb.dlt.myascents.net
bower.components.myascents.net
sit.imetal.myascents.net
stage.dashboard.myascents.net
09.cimb.dlt.myascents.net

Certificate

The complete raw certificate details for ci.myascents.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIID+jCCAuKgAwIBAgISA2/Vv/4qTGKgd9/0xS2JUNIyMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yNDA0MDIxODMyNTlaFw0yNDA3MDExODMyNThaMBsxGTAXBgNVBAMT
EGNpLm15YXNjZW50cy5uZXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCauP+IBC5PRdYlDrCrwwgbINzPHzwUHpRFMX8bUcEsWs20FVMZf2qGohTaNAo8
k9tPGZGM+mkMWmmZMqrvAM11jRGEaBWJYwvmr1c1GxcP40ZYhmwhReNFbAO956T8
n1jfDuTw/K3gKHNO/29VuZQr+R4W4rPjo86NLyGz2tv5Y0N4igrvkI4Kw90Kc+tV
5WK8x5XT2AN+Y0/du4K3eQHIBVqXtdrOyOXOvL5T/z2Fcud0NQe9+vDjewbhLcs6
yLRT2DUVWr7DMmwjvrBCfIy2OAbdtCrN+3tcBocwqoCedOfv5LFtcmrzaTDGyKaB
b9mQsTIdmWHyv70WzWFmc88PAgMBAAGjggEfMIIBGzAOBgNVHQ8BAf8EBAMCBaAw
HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD
VR0OBBYEFCM0FRxM3YdTCiHY+NtNefB2UisrMB8GA1UdIwQYMBaAFBQusxe3WFbL
rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov
L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v
cmcvMBsGA1UdEQQUMBKCEGNpLm15YXNjZW50cy5uZXQwEwYDVR0gBAwwCjAIBgZn
gQwBAgEwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBADX5
yfPiTHk1rzvVGu2jOn+lmcpfgPhZmnVKNbOwSRMX/zRs3zsQo8I0sIijzMRqWn68
1l5xltvnC3PmNX96qMP1gIwcD6QAcLqrtiGME1aeP7mI2yqu028p4B7jKfKoEyQc
ePYkn4PWNYakrNhD9QdFiCOqAittGK2uqouJcSrUZTCS5/GYPxeMbWOMKsWJ/Hlk
I/Hc7uDn+dlmV8TIGt7SAlky5/dhjO8LBOIV5WxpOeQJlYIDwNN94ytyHcKqwZdk
fAaLV9SO1w1/USQKXZYomoFpULQt6h44V/62zd/7pLXm3u9ag8PGYvJB9uzpzd+S
LqrKsBAkUUzPENGf+bs=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmrj/iAQuT0XWJQ6wq8MI
GyDczx88FB6URTF/G1HBLFrNtBVTGX9qhqIU2jQKPJPbTxmRjPppDFppmTKq7wDN
dY0RhGgViWML5q9XNRsXD+NGWIZsIUXjRWwDveek/J9Y3w7k8Pyt4ChzTv9vVbmU
K/keFuKz46POjS8hs9rb+WNDeIoK75COCsPdCnPrVeVivMeV09gDfmNP3buCt3kB
yAVal7Xazsjlzry+U/89hXLndDUHvfrw43sG4S3LOsi0U9g1FVq+wzJsI76wQnyM
tjgG3bQqzft7XAaHMKqAnnTn7+SxbXJq82kwxsimgW/ZkLEyHZlh8r+9Fs1hZnPP
DwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 299392322970390338863701912025654543569458
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-02 18:32:59 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-01 18:32:58 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ci.myascents.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19531924962042322721999596606392583172490190514667212961293129707092036812604946703449313292970863106978507227473635162372964513425305487335970028686116915332197936540447747086708900261623205842648784545759252902768205443835686481706392927173537509219970803979516308556536921071080984558392029046529866897192517720823783831807728546790037215828964376759429904628410416236331530125473098663333485508603994951169865024663169798077556574228338263082301032232904003082490370977784510420399756878734925141139211903719744188224839943438723952715501209127378389585315362113986679783583323096554563926261262189980126039756559
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							2334151c4cdd87530a21d8f8db4d79f076522b2b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.myascents.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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