ingenieriasustentable.mx
Issued by R3
About this certificate
This digital certificate with serial number 04:a7:eb:41:54:b2:22:e8:b3:6d:3d:76:e8:04:96:40:20:04 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ingenieriasustentable.mx
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:a7:eb:41:54:b2:22:e8:b3:6d:3d:76:e8:04:96:40:20:04Serial Number (int): 405589006798978793421529575142279123836932
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 93:75:70:43:93:a6:84:99:d5:81:c0:4c:cc:ed:f6:90:e1:cc:ee:87
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 78:fa:d0:17:6b:82:bc:71:cd:0f:62:7b:34:25:bc:73:d8:37:f2:4a
Fingerprint (sha256): 26:43:8e:ae:3e:f5:bb:a6:31:94:71:12:19:69:22:8a:a8:ee:f6:93:b0:10:48:ae:13:a9:6b:76:f6:8b:56:5b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate ingenieriasustentable.mx
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ingenieriasustentable.mx
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ingenieriasustentable.mx
www.ingenieriasustentable.mx
www.ingenieriasustentable.mx
Other certificates including the domain name ingenieriasustentable.mx
(limited to 100 certificates)
*.ecomateriales.com.mx
*.jeeb.us
ingenieriasustentable.mx
ingenieriasustentable.mx
*.wernerfamilyfoundation.org
*.ingenieriasustentable.mx
*.airandapres.com
*.plusey.com
*.forthegoodofthecause.com
*.tsostaff.net
*.travelswithmk.com
*.telfordshropshirecarpetcleaners.co.uk
*.memeticadigital.com.mx
*.tsostaff.net
*.greentechsolar.com.mx
*.mild-nine.com
*.travelswithmk.com
*.jeeb.us
ingenieriasustentable.mx
ingenieriasustentable.mx
*.wernerfamilyfoundation.org
*.ingenieriasustentable.mx
*.airandapres.com
*.plusey.com
*.forthegoodofthecause.com
*.tsostaff.net
*.travelswithmk.com
*.telfordshropshirecarpetcleaners.co.uk
*.memeticadigital.com.mx
*.tsostaff.net
*.greentechsolar.com.mx
*.mild-nine.com
*.travelswithmk.com
Certificate
The complete raw certificate details for ingenieriasustentable.mx in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGGjCCBQKgAwIBAgISBKfrQVSyIuizbT126ASWQCAEMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjcwMDI2NTNaFw0yNDA2MjUwMDI2NTJaMCMxITAfBgNVBAMT GGluZ2VuaWVyaWFzdXN0ZW50YWJsZS5teDCCAiIwDQYJKoZIhvcNAQEBBQADggIP ADCCAgoCggIBALpcvV/cg0wD/qARDt4zZrEYiOcFEI0tKqUZaijT8m8Vwb2+j4x8 LsWCIwi3ZNno/0ZdpO9pBxKX5ihbBr1eM8LQaRoDtvoAYR1z2KiWkQnW/Um7O/la gdUYtlWlo1d3yyEO/z400oe4YobFaHYnXgb4BbU+AD17dJQ74Xz5J545dXduOe+M eO8rQYdZf0RXLgMHgAs0DZpQp/EFd7qoRB00EnkyE4zIcIvBgzQWy9y4wp/RbALS 6tKMxRD2J309EfJiNfn61spaGdI2KXWzBIvv7M3nPZ7wdRzQVpNFF2U+ZyZ0SQOM rHGupzcftzOJnDal8KOAoGrFiWlRI4NIC5qcQE+arrW+OCWFF/FV5czFghC1z4FK TenGo0SHtIDYjbdie9qc3UtsbbYAhRGdgljDFiP39J8tzuOqaJNPXbR4Z+86flGe C59zpBUzzsX4LMFvJHsxXbNY4TWTJ+W92dMCUOAd7Q7rOlsyhgzFjXJZGbzK69SP awbL8l/Y5oDU7Z/dBedQTDDkZXqRog8hskV6S77x7PtSMzRDWVfgU1fJdquIhS+A rZdVBpZ3ICpPJh7GsonpoyuTxTcqAqnc0YKIr5MbwUUObKVDHXst0MHjfVb+cxP4 RXnbeQtrPAqO1ZL0+g678fc0dZjIQZkB+RxFTUe5nHIOuWwkHN2MFRD7AgMBAAGj ggI3MIICMzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJN1cEOTpoSZ1YHATMzt9pDh zO6HMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEB BEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUF BzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMEEGA1UdEQQ6MDiCGGluZ2VuaWVy aWFzdXN0ZW50YWJsZS5teIIcd3d3LmluZ2VuaWVyaWFzdXN0ZW50YWJsZS5teDAT BgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2AD8X S0/XIkdYlB1lHIS+DRLtkDd/H4Vq68G/KIXs+GRuAAABjn2EaJkAAAQDAEcwRQIh AL+dmFWDzKxXXw93qu60YMhK+sHXVdcBlfvRY8zhAhszAiAgIVIwO9fN8O/tLskw uQzfsNJEmK0Ed7nK3woCXzNaiAB1AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK +Jpt9RfYAAABjn2EaKwAAAQDAEYwRAIgI+/YODlnQTe2UL5xzR4w6qDAY/iYcbyW cjSEoiei6E4CIC5jLrZeqK4qu7NPYiSyAWUaJy7lzXpAYPShO673uCMUMA0GCSqG SIb3DQEBCwUAA4IBAQA0LpGRT8r5YPej2S87Ja9bo1KfmMijXIQaYHTLnlJCzLvN dzZFUhOcLVucW13wxdasGMcHjNPg7wP7ESOUI5dYT+nTz1S79Qh25lMEDdssv7zq QDQN122geraQl59O1glGas8oh7zjIXVpX8GRNBKPIk66T5IJXHND6cYRIsGW/r2O TkiO6opcQZ8MQGasbe4RSxOAxWuH6u7TilGwbj0QM0tw/WJdqYPjA5v/d3pbS3Ie WOCpXfDnIEcI1menBvkyjcS6zX60D1twIg8gtlikiao8W6oXawPIkJ2gTvoM7jDc WFmNiYpNy079b0ec9LVRApWJofsqumrDp8fW0Zhx -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuly9X9yDTAP+oBEO3jNm sRiI5wUQjS0qpRlqKNPybxXBvb6PjHwuxYIjCLdk2ej/Rl2k72kHEpfmKFsGvV4z wtBpGgO2+gBhHXPYqJaRCdb9Sbs7+VqB1Ri2VaWjV3fLIQ7/PjTSh7hihsVodide BvgFtT4APXt0lDvhfPknnjl1d24574x47ytBh1l/RFcuAweACzQNmlCn8QV3uqhE HTQSeTITjMhwi8GDNBbL3LjCn9FsAtLq0ozFEPYnfT0R8mI1+frWyloZ0jYpdbME i+/szec9nvB1HNBWk0UXZT5nJnRJA4ysca6nNx+3M4mcNqXwo4CgasWJaVEjg0gL mpxAT5qutb44JYUX8VXlzMWCELXPgUpN6cajRIe0gNiNt2J72pzdS2xttgCFEZ2C WMMWI/f0ny3O46pok09dtHhn7zp+UZ4Ln3OkFTPOxfgswW8kezFds1jhNZMn5b3Z 0wJQ4B3tDus6WzKGDMWNclkZvMrr1I9rBsvyX9jmgNTtn90F51BMMORlepGiDyGy RXpLvvHs+1IzNENZV+BTV8l2q4iFL4Ctl1UGlncgKk8mHsayiemjK5PFNyoCqdzR goivkxvBRQ5spUMdey3QweN9Vv5zE/hFedt5C2s8Co7VkvT6Drvx9zR1mMhBmQH5 HEVNR7mccg65bCQc3YwVEPsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 405589006798978793421529575142279123836932 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-27 00:26:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-25 00:26:52 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ingenieriasustentable.mx' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 760291707379836618020184289547025403441108313747612905272346495174310456890313549715354002357153337973403592530405260893508899671933537550426211682993983314263259548741150088304336305475434656799940429207317905548532249458557432853343976775632958501923491036492879533483711475104747287496364128470738566330377180430104776422279245704423597124708016419546198874167153646991009108366487577495475003987930486886158338478243983176655274432296874062252449824311366888561904648106040269259329735525080066135755383461856574477750152561128405386902695707447354581935653365576666888257837200207913983253249632539625706093665342576871151208562088806248793591721340663307413404172408324255344247818332296032644275678347799136268023858176424066509976176129958024410479976182636446311435921411772993183326695951735025651189377063945178705673998984809514401458369433542429723304252307377802727274430868059682453282498979060778753051920790364503612657104158730051074043561877931692525988482577421966250143607642164500973599026962987914368573709365340811743753023220725501487058007105977026697158810522836854324679815969167497815317797700325786059046259433111591944745681729244854459201152200387733712395121033339150504994083532096519870031804567803 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9375704393a68499d581c04cccedf690e1ccee87 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ingenieriasustentable.mx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ingenieriasustentable.mx' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018e7d8468990000040300473045022100bf9d985583ccac575f0f77aaeeb460c84afac1d755d70195fbd163cce1021b330220202152303bd7cdf0efed2ec930b90cdfb0d24498ad0477b9cadf0a025f335a88007500a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e7d8468ac0000040300463044022023efd83839674137b650be71cd1e30eaa0c063f89871bc96723484a227a2e84e02202e632eb65ea8ae2abbb34f6224b201651a272ee5cd7a4060f4a13baef7b82314 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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