*.charlespence.com
Issued by Encryption Everywhere DV TLS CA - G2
About this certificate
This digital certificate with serial number 0d:46:9c:08:fb:6c:a4:c7:1e:81:47:af:13:7e:f8:9f was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.charlespence.com
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0d:46:9c:08:fb:6c:a4:c7:1e:81:47:af:13:7e:f8:9fSerial Number (int): 17646589492836893651326833447451687071
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 2a:0e:97:ff:a5:f0:33:eb:fa:41:62:ba:2a:b0:6f:f6:4d:91:82:b1
AuthorityKeyId: 78:df:91:90:5f:ee:de:ac:f6:c5:75:eb:d5:4c:55:53:ef:24:4a:b6
Fingerprint (sha1): b5:e7:bf:bb:ea:46:56:bc:53:c0:27:21:4d:88:23:b7:ce:81:de:f4
Fingerprint (sha256): 31:21:eb:fb:57:51:d9:b0:04:44:ed:3b:5e:ee:c0:e0:12:90:4e:63:1e:dc:11:ca:31:0a:17:d2:d0:7d:aa:e6
Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCheck the revocation status for certificate *.charlespence.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.charlespence.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.charlespence.com
charlespence.com
charlespence.com
Other certificates including the domain name charlespence.com
(limited to 100 certificates)
www.charlespence.com
coreexm.awavideo.co
open.hangerboy.com
yoshibeta.order.place
bridge.arianee.org
pantriapp.sndvll.dev
charlespence.com
*.charlespence.com
checkin.halozen.com
charlespence.com
bridge.arianee.org
*.charlespence.com
pantriapp.sndvll.dev
www.sovex.xyz
www.pspk.com.au
avpro.lu
www.georgejose.com
www.charlespence.com
charlespence.com
legarage360.com
gdg.bambooapp.ie
coreexm.awavideo.co
open.hangerboy.com
yoshibeta.order.place
bridge.arianee.org
pantriapp.sndvll.dev
charlespence.com
*.charlespence.com
checkin.halozen.com
charlespence.com
bridge.arianee.org
*.charlespence.com
pantriapp.sndvll.dev
www.sovex.xyz
www.pspk.com.au
avpro.lu
www.georgejose.com
www.charlespence.com
charlespence.com
legarage360.com
gdg.bambooapp.ie
Certificate
The complete raw certificate details for *.charlespence.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGDTCCBPWgAwIBAgIQDUacCPtspMcegUevE374nzANBgkqhkiG9w0BAQsFADBu MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg RFYgVExTIENBIC0gRzIwHhcNMjQwMjIzMDAwMDAwWhcNMjUwMzA3MjM1OTU5WjAd MRswGQYDVQQDDBIqLmNoYXJsZXNwZW5jZS5jb20wggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqAmGojzhNX6aa1u5ASgtDMFJ/HZ8dAbHFU6+Z4QFtZzRT ERtwaueMK6hN7BiQHGjm5ycE0TFVDiAu8o6UpPA+joOMJTp3uXK2OxKvnohSGrc0 yZUByXt/6c+dqXWSEQCZ6Zt5MC63CYj715DrlP6g48EY/JwKwXprACrWbp+iO36c POvZvuuMy87Rvt4yX2PVf16Hg4p0KyKAUb6eXVoq+CF3XHsQkzSSqER6OPGvyvJ1 A4LneTMNBm4dFIVUuM50WugoEoJkhXBZeDElFhcgKj+gj1XIF5t0R19CeUtjLReP cxvQP6IDFF10WXnJlNfTVLpXMH/qh4TIAwrFK0D1AgMBAAGjggL2MIIC8jAfBgNV HSMEGDAWgBR435GQX+7erPbFdevVTFVT7yRKtjAdBgNVHQ4EFgQUKg6X/6XwM+v6 QWK6KrBv9k2RgrEwLwYDVR0RBCgwJoISKi5jaGFybGVzcGVuY2UuY29tghBjaGFy bGVzcGVuY2UuY29tMD4GA1UdIAQ3MDUwMwYGZ4EMAQIBMCkwJwYIKwYBBQUHAgEW G2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMIGABggrBgEFBQcBAQR0MHIwJAYI KwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBKBggrBgEFBQcwAoY+ aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0VuY3J5cHRpb25FdmVyeXdoZXJl RFZUTFNDQS1HMi5jcnQwDAYDVR0TAQH/BAIwADCCAX0GCisGAQQB1nkCBAIEggFt BIIBaQFnAHYAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGN1gjo lgAABAMARzBFAiAWD7qgDnPXjbfHR2GvUV+Klsebe8ScUZUdbk0txdYJUwIhALij EYnmk+3UbXgDgyiqHAGXhwiaiOgRcFOuxoZmBJZPAHUAfVkeEuF4KnscYWd8Xv34 0IdcFKBOlZ65Ay/ZDowuebgAAAGN1gjonwAABAMARjBEAh8407erafLg5V59P+z2 2ADf2G+iHNT4qjWZ6iA6zx+BAiEA5SzAx/Nz+o0/kJk8HQolkEjpknirw7lr3tKX /geBQqgAdgDm0jFjQHeMwRBBBtdxuc7B0kD2loSG+7qHMh39HjeOUAAAAY3WCOjI AAAEAwBHMEUCIEieSbYs9puOoxJzy5riMrEsVlQPuLdsE13V29LidM7SAiEA+FBl TyzFoA5dEsDYSEpLpYINHsumimt2PPSAJuiph4IwDQYJKoZIhvcNAQELBQADggEB AF+ePe1DKnoAEMu7Fqkd7bF8D8UAGP/3Qpau4pY3ISSMAaHxc0Q2hiUNpParnZO0 d0cwi0qqGNPSouuT7IoFV4C7lVwd6Sh0AViAkfvzjxIjFnITO4ioMf/WJxG4ptrU wfKQaQrfKKGBI2Gux0gWn7BgOegcyQ2pjS7qAV71VfdKYjZGJVUZjAXdhx30VTKy h1mYfPui+4dtUt68CUr+nElvF45BltbCuukQLxowIg2oAP7caK9vSfLAg2gVplyB B2N2TeWJ//6Uq7mhTNIiwABF/8CFmd0atGMXtX5Y8ctNXCdfkXZAyc9qsTe2Bayf l3a74GM/B/dhvG7DXfn3nts= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6gJhqI84TV+mmtbuQEoL QzBSfx2fHQGxxVOvmeEBbWc0UxEbcGrnjCuoTewYkBxo5ucnBNExVQ4gLvKOlKTw Po6DjCU6d7lytjsSr56IUhq3NMmVAcl7f+nPnal1khEAmembeTAutwmI+9eQ65T+ oOPBGPycCsF6awAq1m6fojt+nDzr2b7rjMvO0b7eMl9j1X9eh4OKdCsigFG+nl1a Kvghd1x7EJM0kqhEejjxr8rydQOC53kzDQZuHRSFVLjOdFroKBKCZIVwWXgxJRYX ICo/oI9VyBebdEdfQnlLYy0Xj3Mb0D+iAxRddFl5yZTX01S6VzB/6oeEyAMKxStA 9QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17646589492836893651326833447451687071 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-23 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.charlespence.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29540937712757919760000951062766944433047682451150132876119122168410440883696929379550006218250506885205079499421095642117876104391755907266178474907797228497340965838072876428605418825976581725068752232473995463516800633785340172320614206887368290648724989471846039654169951444713969352963874630134641647408195655684462945341374004599781702053750466307228637951643328362257465463452450787527102335068216407763063933700292519279597719405904642387820485722374519180097135474873577650856590557465137616342647823805706187681540908669783618556609071232234229326582156457970597282482715110225571353458623923594661003477237 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 78df91905feedeacf6c575ebd54c5553ef244ab6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2a0e97ffa5f033ebfa4162ba2ab06ff64d9182b1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.charlespence.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'charlespence.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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