tucsonazcpa.com

Issued by R3

About this certificate

This digital certificate with serial number 03:82:74:b6:c1:05:57:97:71:b5:3e:c4:2a:4e:8b:4f:db:d6 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=tucsonazcpa.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:82:74:b6:c1:05:57:97:71:b5:3e:c4:2a:4e:8b:4f:db:d6
Serial Number (int): 305728704855470346367963360010877904346070
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: d3:7c:cf:f4:15:76:cf:66:cc:4d:22:a4:ce:60:7b:0f:11:23:fc:c3
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): f3:69:65:42:e1:82:d7:c2:72:50:7e:a5:2e:f0:46:ef:05:22:1a:74
Fingerprint (sha256): 40:5f:f9:e6:2e:b9:1a:db:11:a7:84:a7:e6:cd:dc:55:cb:e3:6e:67:32:11:a9:da:11:51:95:a4:fc:16:d1:5d

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate tucsonazcpa.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for tucsonazcpa.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.tucsonazcpa.com
tucsonazcpa.com

Other certificates including the domain name tucsonazcpa.com

(limited to 100 certificates)
mpfmlaw.com
hmpmlaw.tucsonazcpa.com
tucsonazcpa.com
mpfmlaw.tucsonazcpa.com
amphifoundation.tucsonazcpa.com
rion.tucsonazcpa.com
hmpfmlaw.tucsonazcpa.com
suprodent.tucsonazcpa.com
mpfmlaw.tucsonazcpa.com
paseodelrioaz.tucsonazcpa.com
mpfmlaw.com
tucsonazcpa.com
hmpfmlaw.com
amphifoundation.tucsonazcpa.com
mpfmlaw.com
tucsonazcpa.com
suprodent.tucsonazcpa.com
www.mpfmlaw.com
tucsonreptileshow.com
*.incognitoarizona.com
*.com.tucsonazcpa.com
suprodent.tucsonazcpa.com
www.paseodelrioaz.org
tucsonazcpa.com
rnce.tucsonazcpa.com
incognitos.mx
suprodent.com
paseodelrioaz.org
www.paseodelrioaz.org
hmpfmlaw.tucsonazcpa.com
rnce.tucsonazcpa.com
amphifoundation.tucsonazcpa.com
tucsonreptileshow.com
amphifoundation.tucsonazcpa.com
hmpfmlaw.com
rnce.tucsonazcpa.com
tucsonreptileshow.tucsonazcpa.com
rion.tucsonazcpa.com
rnce.tucsonazcpa.com
tucsonazcpa.com
rion.tucsonazcpa.com
rion.tucsonazcpa.com
tucsonazcpa.com
hmpmlaw.com
hmpmlaw.tucsonazcpa.com
hmpfmlaw.tucsonazcpa.com
rion.tucsonazcpa.com
suprodent.com
tucsonreptileshow.com
pvb.tucsonazcpa.com
hmpmlaw.com
pvb.tucsonazcpa.com
suprodent.com
tucsonreptileshow.com
hmpfmlaw.com
tucsonazcpa.com
www.paseodelrioaz.org
tucsonazcpa.com
hmpmlaw.tucsonazcpa.com
suprodent.tucsonazcpa.com
dsc.tucsonazcpa.com
www.mpfmlaw.com
paseodelrioaz.org
mpfmlaw.com
suprodent.com
rion.tucsonazcpa.com
itsecurityarizona.com
hmpfmlaw.com
hmpmlaw.com
amphifoundation.tucsonazcpa.com
mpfmlaw.com
tucsonreptileshow.com
dsc.tucsonazcpa.com
hmpmlaw.com
pvb.tucsonazcpa.com
suprodent.tucsonazcpa.com
pvb.tucsonazcpa.com
suprodent.tucsonazcpa.com
hmpfmlaw.com
tucsonazcpa.com
suprodent.tucsonazcpa.com
hmpfmlaw.com
rnce.tucsonazcpa.com
hmpmlaw.com
hmpmlaw.com
amphifoundation.tucsonazcpa.com
hmpfmlaw.com
mpfmlaw.tucsonazcpa.com
pvb.tucsonazcpa.com
www.paseodelrioaz.org
*.tucsonazcpa.com
hmpfmlaw.tucsonazcpa.com
paseodelrioaz.org
dsc.tucsonazcpa.com
dsc.tucsonazcpa.com
tucsonreptileshow.com
*.tucsonazcpa.com
hmpmlaw.com
tucsonreptileshow.com
tucsonreptileshow.tucsonazcpa.com

Certificate

The complete raw certificate details for tucsonazcpa.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoMi2VKUVXLgwFVDiFVPg
4uSfDr2T7ncu/AT9LUCr50iahVe/AXRQxqqMt10IBY08q9uSPVfsDK7472DwRhGX
sTI8+aZehR1oxY1u9hdcJM1aoN2bd8ERBHLjaj5r//MVN1Bk9ZeL0t15a0Q7Oczo
Yq9CoB5okONSWhpgEhd0l41OHLV/yjh6SsVi7+MpDzJU9tY4/l80DsIKCzLOM8Nl
mxX127csapt2u6GuwCWbq4ysOlxISNeLDWAvMvgLzOnwfeGkph3+MbP4t7ap9/M2
0eJdUe6XnxvojwCVCCNxkStCPokapt+vVTVduHDtdIsctcRjn+aIbU5EDZfaPEVt
4QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 305728704855470346367963360010877904346070
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-10 04:01:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-09 04:00:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tucsonazcpa.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20297103683572382242187896329091295892875473137063957733148510169959701466827237142469619699960939547556232654213211316075283660551096248421453047090203271936913986774756016164697603719478668973401414950276840410097707677036264063577699331229697416625906049541720771378691279820231248042240249795906099739704419849312425261385487443814181218052210837413645603704150440923233439938709433460644617638983615165347717571658245195596331728240795044752564655141624836495040604683433188108653362137392999602049303820047106599832021178857443387891173535657558908293993030418413907906781940874812484391414666750590392492977633
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d37ccff41576cf66cc4d22a4ce607b0f1123fcc3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tucsonazcpa.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tucsonazcpa.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018cf1bec381000004030046304402201aabfa953902b65a48ac9a1764618cf2fc26a1877b161f33992f98be2c326b0502200538a3b7dd9284c1ada9a0777b4c48a9f94f380ed0d56f556ded280f0d5a77570077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018cf1bec3850000040300483046022100e3218ea95aa2e0e7e55762b31aad76a2fc897529ff499b6257523ad9609d621802210086912dd3e173666ee9ce9c26fc2a8562dc36a1c71cbfb2f89145f6ed6edc4fb1
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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