hello.redwood.com

Issued by R3

About this certificate

This digital certificate with serial number 04:7a:6f:50:3d:8a:4d:d3:e5:6b:4e:37:e2:54:1d:be:cc:cd was issued on by Let's Encrypt.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=hello.redwood.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 04:7a:6f:50:3d:8a:4d:d3:e5:6b:4e:37:e2:54:1d:be:cc:cd
Serial Number (int): 390111553430860846339355824261288148520141
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 24:bc:d8:a6:3f:06:70:21:0a:85:b1:46:64:3a:ab:ec:12:0a:31:0e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): fe:02:eb:8b:54:fa:ad:37:1e:8b:65:13:9d:be:ad:0d:51:72:13:5b
Fingerprint (sha256): 3c:ac:92:24:2e:bb:69:09:05:1e:8b:08:6b:7b:01:a6:6a:0e:0a:4a:d1:26:f7:85:28:c9:2e:90:07:45:33:84

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate hello.redwood.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for hello.redwood.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

hello.redwood.com

Other certificates including the domain name redwood.com

(limited to 100 certificates)
www.redwood.com
webmail.redwood.com
files.redwood.com
uptime.redwood.com
docker-registry.usw2.cs.redwood.com
euw1.intelligence.redwood.com
euw1.intelligence.redwood.com
go.redwood.com
support.us.redwood.com
support.us.redwood.com
clientvpn.redwood.com
uptime.redwood.com
status.vleo.net
uptime.redwood.com
runmyjobs.redwood.com
unms-test.redwood.com
*.redwood.com
redwood.com
support.eu.redwood.com
status.eurabo.be
docs.cs.redwood.com
*.redwood.com
cdn.redwood.com
get.redwood.com
unms-test.redwood.com
*.redwood.com
rwx.redwood.com
uptime.redwood.com
go.redwood.com
documentation.redwood.com
clientvpn.redwood.com
uptime.redwood.com
dev.marketing.redwood.com
uptime.redwood.com
rmj.redwood.com
docker-registry.euc1.cs.redwood.com
cgit.it.redwood.com
static.marketing.redwood.com
hello.redwood.com
uptime.redwood.com
go.redwood.com
r2w.redwood.com
wallis.status.app.vista.co
docker-registry.use2.cs.redwood.com
get.redwood.com
docker-registry.euw1.redwood.com
euw1.intelligence.redwood.com
cdn.redwood.com
status.tbft.org.uk
www2.redwood.com
uptime.redwood.com
www.redwood.com
status.cs.redwood.com
docker-registry.euw3.cs-test.redwood.com
support.eu.redwood.com
www2.redwood.com
seftp.redwood.com
staging.marketing.redwood.com
uptime.redwood.com
euw1.intelligence.redwood.com
*.redwood.com
docker-registry.euw1.cs-test.redwood.com
hello.redwood.com
*.euw1.cs.redwood.com
redwood.com
www.redwood.com
go.redwood.com
sap-support.redwood.com
status.eurabo.be
hello.redwood.com
get.redwood.com
euw1.intelligence.redwood.com
euw1.intelligence.redwood.com
status.hotel-spider.com
docker-registry.euc2.cs.redwood.com
status.cs.redwood.com
*.redwood.com
intelligence.redwood.com
wp.marketing.redwood.com
uptime.redwood.com
oauth.cs.redwood.com
webmail.redwood.com
*.euw1.redwood.com
clientvpn.redwood.com
support.us.redwood.com
euw1.intelligence.redwood.com
uptime.redwood.com
support.eu.redwood.com
status.absis-ciborg.com
support.us.redwood.com
status.cs.redwood.com
uptime.redwood.com
unms-test.redwood.com
support.eu.redwood.com
cdn.redwood.com
support.us.redwood.com
enroll.redwood.com
uptime.redwood.com
armory.redwood.com
university.redwood.com

Certificate

The complete raw certificate details for hello.redwood.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoksqsCRz6D9eOpVV4amp
MisQMl7L1SC3yLQUJYeTdHpISjwrX8n9KNs7tUOSlFBvaq5CpLxXjpin2lVcwYfR
f0t0UIcIXDy2BetScHBqhpN77y3mLrkDTnaC/fUzICN3M73ksFZ0d3hSermJrXvN
04jaJeRcohLpTPIj+TGmbbF6LAM2m0rf+JVDKSgXE4r54tqGyO0pHJbKRdvCwGMa
AxjrcfYx8QZizGbRhsPVZFrTKMta7ydfrzUA7qBCUCmb4+vky5zNgrxQ4OcHtlT4
MNK1rL4jLDKJYnC2KSaaiAuWllsrJuYSMa2lIk6jsgdjrsPL1s2Crk4UH9aD8v/M
HQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 390111553430860846339355824261288148520141
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-29 05:03:27 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-27 05:03:26 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hello.redwood.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20487671510507485381941503920365425421587600382112486267371152324059447540003359909213454287595941205930115717584821965181514241403112284959630080965580595044861415695791005088626140571242757453585821100420179964551670134014666968537538754812325517458449743415731994570670116863747226000414860090642396273941018589022348035649854262203880448400901130661518407760795052127364191103244542575379030624781149538418232567588282278051992455794977545581745498991070294003198162483843508645966003345121012175330325144941812659471386860164214397809180230575485640408012317366946992426123163122999568792850137263601872277589021
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							24bcd8a63f0670210a85b146643aabec120a310e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hello.redwood.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018fc2f242eb000004030046304402203cd2f02e19d3edf1d05f839aca909c8f4c6d076ed51740933e222d832c53b1640220138e414046db1c3b4c76c66e4464771f03ae73bb604b7ada858b73efcd86b0be007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018fc2f242e50000040300483046022100ed6f4e481f2e862ef90f0ce54d8afbd9aded16e5ca3b2939f0bcfb8a4af9a43302210083c55c8fab10c1277b2d8787989c313ae3df896e6d09e097b48ee56b425a1062
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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