f02.chtah.com

Issued by R3

About this certificate

This digital certificate with serial number 04:18:e2:06:1a:03:a5:98:6c:cf:38:70:26:d7:ed:69:4f:10 was issued on by Let's Encrypt.

With 15 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=f02.chtah.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:18:e2:06:1a:03:a5:98:6c:cf:38:70:26:d7:ed:69:4f:10
Serial Number (int): 356916357741603635385528070528829647048464
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 9a:24:f4:64:43:ab:cc:7b:ce:e7:06:e7:c2:35:46:6f:06:3d:4a:fe
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 46:fe:e4:77:5e:8c:a7:60:7b:19:48:f6:3a:c5:8b:e1:b5:35:99:c7
Fingerprint (sha256): 3e:7c:42:05:8d:78:0d:8d:fd:02:6e:ba:e2:69:41:69:75:7f:2c:c4:56:db:69:61:04:87:1c:59:2c:9f:50:c6

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate f02.chtah.com

15

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for f02.chtah.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

f.comunicaciones-libertyseguros.es
f.e.bobbibrown.com.hk
f.e.clinique.com.my
f.e.jomalone.com.hk
f.e.maccosmetics.com.tw
f.ecrm.wynninsidermacau.com
f.email.account.sony.com
f.email.sonyentertainmentnetwork.com
f.news.classicspecs.com
f.northerntoolemail.com
f.northerntoolmail.com
f.smehk.dbs.com
f.status.rebatecard.com
f.update.wishfinmailer.com
f02.chtah.com

Other certificates including the domain name chtah.com

(limited to 100 certificates)
f06.chtah.com
f04.chtah.com
f05.chtah.com
f03.chtah.com
f01.chtah.com
f04.chtah.com
f01.chtah.com
f.chtah.com
f.chtah.com
wpm.ccmp.eu
f.chtah.com
wpm.ccmp.eu
f03.chtah.com
f01.chtah.com
f01.chtah.com
f05.chtah.com
f.chtah.com
f.chtah.com
f02.chtah.com
f.chtah.com
f.chtah.com
*.chtah.com
f.chtah.com
f.chtah.com
f06.chtah.com
f03.chtah.com
f.chtah.com
f03.chtah.com
f04.chtah.com
wpm.ccmp.eu
f01.chtah.com
f04.chtah.com
f06.chtah.com
p.chtah.com
f02.chtah.com
p.chtah.com
f04.chtah.com
f04.chtah.com
wpm.ccmp.eu
*.chtah.com
f02.chtah.com
f04.chtah.com
f01.chtah.com
f06.chtah.com
f01.chtah.com
f02.chtah.com
f02.chtah.com
f01.chtah.com
f01.chtah.com
f01.chtah.com
f06.chtah.com
*.chtah.com
f01.chtah.com
f01.chtah.com
f04.chtah.com
f05.chtah.com
f02.chtah.com
f06.chtah.com
f05.chtah.com
f.chtah.com
f06.chtah.com
wpm.ccmp.eu
f.chtah.com
f05.chtah.com
f.chtah.com
f02.chtah.com
f01.chtah.com
f01.chtah.com
f04.chtah.com
f02.chtah.com
f04.chtah.com
f03.chtah.com
f01.chtah.com
*.chtah.com
f05.chtah.com
f02.chtah.com
f.chtah.com
wpm.ccmp.eu
f03.chtah.com
f.chtah.com
f01.chtah.com
f04.chtah.com
f06.chtah.com
f05.chtah.com
f03.chtah.com
f05.chtah.com
f04.chtah.com
f02.chtah.com
wpm.ccmp.eu
f04.chtah.com
f02.chtah.com
f03.chtah.com
f01.chtah.com
f06.chtah.com
f.chtah.com
f.chtah.com
f03.chtah.com
f01.chtah.com
f01.chtah.com
f04.chtah.com

Certificate

The complete raw certificate details for f02.chtah.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAme/cHpFEU8Q7thESw/Gb
z9bZp6iHZgTxcdwKQqE8a8XYEkn1kFXL2JKFgVIJ+wDLFsDrjJSF+yq4IUEdtQTF
yb43bkOpW+QQOr9uQGMb+hkOcrhxdwEu5TDYyUX0yAVHlp4BglMAadcxGi2BGcOY
o2tN+4rx4Mmy+HW3JsyLl/d+HLnzWEx9eDHr2axeMkbCxJqGR6go5UCz7k9aaPaK
7mMG9VxJ2UWpNyqbX24e6OLV82EDebKsoD46xDAVVVvqFnYzWwkNMInLqdGweTI5
kQJnMNVDklPojAhQ21M2x+jc4JTbIJFqIqWHmJO4WlgpdM1LQy7IukUnzzBlgm23
cQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 356916357741603635385528070528829647048464
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-13 23:26:24 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-11 23:26:23 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'f02.chtah.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19432739955942019852992998089350794243183832993948812567071908306927289933936121725160527827061140398421392129088361710453716411266136933992599461966833455857441832139943741560039417489964742125431781861974358622764046663674496846233168813539384706008261423090728320403274683739116433450932015416456771724703999795152925752433725696968532820876360254145113835869847765490633871808032847461169855526093409426692422407816151396519227875646420717080262326438314148495874871481289523892794111153509613860622868468727190760712644374692780966883319732586818943007949952921880458014241502069795100620017019617344550312195953
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							9a24f46443abcc7bcee706e7c235466f063d4afe
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (382 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f.comunicaciones-libertyseguros.es'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f.e.bobbibrown.com.hk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f.e.clinique.com.my'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f.e.jomalone.com.hk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f.e.maccosmetics.com.tw'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f.ecrm.wynninsidermacau.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f.email.account.sony.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f.email.sonyentertainmentnetwork.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f.news.classicspecs.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f.northerntoolemail.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f.northerntoolmail.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f.smehk.dbs.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f.status.rebatecard.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f.update.wishfinmailer.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f02.chtah.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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