www.liftoffagent.com
Issued by R3
About this certificate
This digital certificate with serial number 03:c5:9c:47:de:41:8d:a7:bf:dc:9e:3d:d4:d5:7c:31:93:9f was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.liftoffagent.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c5:9c:47:de:41:8d:a7:bf:dc:9e:3d:d4:d5:7c:31:93:9fSerial Number (int): 328580216807013622848227501524095230645151
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 73:eb:c8:dd:aa:cc:2b:15:74:ad:8a:5f:cd:dd:49:aa:18:b9:92:8c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 85:c9:ce:b1:b0:a4:fd:0e:87:f5:89:1a:7a:c1:4e:1a:cb:55:16:3e
Fingerprint (sha256): 42:f9:28:96:73:79:57:76:41:97:95:d2:66:15:d9:5c:fa:6f:a0:d9:55:74:2b:f4:99:76:22:d3:73:ef:04:a1
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.liftoffagent.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.liftoffagent.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
liftoffagent.com
www.liftoffagent.com
www.liftoffagent.com
Other certificates including the domain name liftoffagent.com
(limited to 100 certificates)
www.liftoffagent.com
subscriptions.zuloomi.com
subscriptions.zuloomi.com
support.liftoffagent.com
liftoffagent.com
www.liftoffagent.com
app.liftoffagent.com
subscription.ronati.com
www.liftoffagent.com
billing.docnowmd.com
liftoffagent.com
abonnement.amisgest.ca
www.liftoffagent.com
payments.nicenetworkingagency.com
subscriptions.zuloomi.com
subscription.247bookingapp.com
app.liftoffagent.com
www.liftoffagent.com
liftoffagent.com
account.rmgprotection.com
internal.liftoffagent.com
subscriptions.zuloomi.com
www.liftoffagent.com
liftoffagent.com
billing.liftoffagent.com
www.liftoffagent.com
subscriptions.houstonsmallbusinessnetwork.com
www.liftoffagent.com
liftoffagent.com
payments.nicenetworkingagency.com
subscriptions.zuloomi.com
subscriptions.zuloomi.com
support.liftoffagent.com
liftoffagent.com
www.liftoffagent.com
app.liftoffagent.com
subscription.ronati.com
www.liftoffagent.com
billing.docnowmd.com
liftoffagent.com
abonnement.amisgest.ca
www.liftoffagent.com
payments.nicenetworkingagency.com
subscriptions.zuloomi.com
subscription.247bookingapp.com
app.liftoffagent.com
www.liftoffagent.com
liftoffagent.com
account.rmgprotection.com
internal.liftoffagent.com
subscriptions.zuloomi.com
www.liftoffagent.com
liftoffagent.com
billing.liftoffagent.com
www.liftoffagent.com
subscriptions.houstonsmallbusinessnetwork.com
www.liftoffagent.com
liftoffagent.com
payments.nicenetworkingagency.com
Certificate
The complete raw certificate details for www.liftoffagent.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGCDCCBPCgAwIBAgISA8WcR95Bjae/3J491NV8MZOfMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMjIxMzMzMzJaFw0yNDAyMjAxMzMzMzFaMB8xHTAbBgNVBAMT FHd3dy5saWZ0b2ZmYWdlbnQuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC CgKCAgEAtu+Wp3vD56BtBJXuix77p3ew+ODnbIr55HW2zI7V3NMON/ZTksaLcIT4 DkZoeyc+JnpIPBoO6irSL1Dqrwhu1D8gnUOepQe48hQse6JWuhpJObfPqEVlwNIC ccxyYr68Vdcw90OXR4YkGRurYMCCKfOr7hU7xoeee7WPNqLnU44ZziEa49iNvgFz 7yL7hOL80A55k1PF3eE++Q6bSBRP7VrKYAMkNMzbeeSXv4mIFhs6zkXlqPqKQ16v 84Fi/JvVtB38vMgoMrvDdqCK+oJR3RErzCfo5NIPuY2iES8LE2UIljGN3u0cGfd5 h309VmeAKo5lxIgKW5fxGhq4k0PAZ/ug1M2fIm3xRJGjFWlosZFKQym157ZOQ+Np o+YD9GRYry0kZ2W2qh3gpNkKytPpAo39Q6JAtBJuxtiY90Dz3i2tMSusaZBD+UW5 0RO3qnpvGnR248GfBEuKHOPTqonXwkwzR5hRN+pqlsH4bKOlYurCAmOGy2e6+V+x TLGP9PVoFUbO5VFFXUEsSvV7s0/QHmrf8iBzxXHe9xH5NMqkySP3fe3M+gP37Jcl QDfm9NC6ArROUpkcIHw704gOlS3HyoySBBPxyiRXIRX3U1j+bQbFFfJ6YThEOT5s aaLt6/GIvQCVeKtYx2nU2fPPesuVJNpAUK1zn3tan6bMvf8YiFkCAwEAAaOCAikw ggIlMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUc+vI3arMKxV0rYpfzd1Jqhi5koww HwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBH MCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKG Fmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wMQYDVR0RBCowKIIQbGlmdG9mZmFnZW50 LmNvbYIUd3d3LmxpZnRvZmZhZ2VudC5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEw ggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bd LIHZu7+rOdiEcwAAAYv3c1VRAAAEAwBIMEYCIQCS9Tng+sK9afNgNvPgkF04I9Pw xMSLLA6Gd7i3s5q6WwIhANp8/QmKJFWcZLKG9Hp9mrFAFUmdDgZOR2J24pvC6eX2 AHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGL93NVWQAABAMA RzBFAiEA9yvY4XyhIbuKbCBdBnPrgneJRKhWe+usLAZcUszbCIACIF8WeIdIqVMQ XPj7Z7fW1GYSRqSQ9JFCtj30tauyGTbCMA0GCSqGSIb3DQEBCwUAA4IBAQCoYb1q J3/4/kWauLFi/TCS0PWIckcj3l8+6MRRpfxIVfQM0lqhorc+/2LSBsoCPn1oImIH wj/89PPbxjyR6HulFk5CUFGM8KZm3E9Z6Qxy5Y09LORLXIblK6qhzluKeXr9Vqby kk+dOvMokD5jVQmovyl6X1xDfKHCB/dNep2L/N9BvtNXy2MB1K4dbDEdzPGWiPXZ cxsBmSEcmy5Z9mNxe/hbhNjVX9+LFU4R041iAUwXNrM1dVf3lBd82Pf//Rnl9baZ gHJNCCZtFv/WPDeGv+VADK4zBidI/34GKw2o/YZyv7GyT1KBaznKqDtrsZw/vyAS V5Iaz7SMb9QO6Lk2 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtu+Wp3vD56BtBJXuix77 p3ew+ODnbIr55HW2zI7V3NMON/ZTksaLcIT4DkZoeyc+JnpIPBoO6irSL1Dqrwhu 1D8gnUOepQe48hQse6JWuhpJObfPqEVlwNICccxyYr68Vdcw90OXR4YkGRurYMCC KfOr7hU7xoeee7WPNqLnU44ZziEa49iNvgFz7yL7hOL80A55k1PF3eE++Q6bSBRP 7VrKYAMkNMzbeeSXv4mIFhs6zkXlqPqKQ16v84Fi/JvVtB38vMgoMrvDdqCK+oJR 3RErzCfo5NIPuY2iES8LE2UIljGN3u0cGfd5h309VmeAKo5lxIgKW5fxGhq4k0PA Z/ug1M2fIm3xRJGjFWlosZFKQym157ZOQ+Npo+YD9GRYry0kZ2W2qh3gpNkKytPp Ao39Q6JAtBJuxtiY90Dz3i2tMSusaZBD+UW50RO3qnpvGnR248GfBEuKHOPTqonX wkwzR5hRN+pqlsH4bKOlYurCAmOGy2e6+V+xTLGP9PVoFUbO5VFFXUEsSvV7s0/Q Hmrf8iBzxXHe9xH5NMqkySP3fe3M+gP37JclQDfm9NC6ArROUpkcIHw704gOlS3H yoySBBPxyiRXIRX3U1j+bQbFFfJ6YThEOT5saaLt6/GIvQCVeKtYx2nU2fPPesuV JNpAUK1zn3tan6bMvf8YiFkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 328580216807013622848227501524095230645151 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-22 13:33:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-20 13:33:31 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.liftoffagent.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 746313328874272126298712149345537572292968558786716080223024926842694187356666560069527747750410567829802797744837274659186660973042693311782790358330569368605325766795456391604796080773004775447370226783279864667067772876867181101146296642476990385875301590235089181053262407779803479688186888051639577991702492754512506542801076831966901853210299904603805617318219837255608729609393258902064016322834215696614422478756755309590556213634682843956705883399638159064175578287573790168304731219190022551287034933754129817546797101694079895792638345004359388809984254908941793645335049995932800035018316286512036085836891836600485782463638201386019993653605236519778258568738468030392839431876151156346173893338518641742047034231461244858563673154373478260070471743198930112407127083414345197068716648528136295336895848263044576659622494766417668698077912012009152226631607684085406513280776080305035733346168198158354744867414458935977231741656195008246307751985775797809862415445124925360679578194001688237491428520118163512983497853424623442165628927322155913152031742302390256848107260380803559850759984233490994477535289087655559812722180447748751109758062302745551386188005909594218256474317824991745455215591052829069383680165977 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 73ebc8ddaacc2b1574ad8a5fcddd49aa18b9928c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'liftoffagent.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.liftoffagent.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018bf7735551000004030048304602210092f539e0fac2bd69f36036f3e0905d3823d3f0c4c48b2c0e8677b8b7b39aba5b022100da7cfd098a24559c64b286f47a7d9ab14015499d0e064e476276e29bc2e9e5f6007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018bf77355590000040300473045022100f72bd8e17ca121bb8a6c205d0673eb82778944a8567bebac2c065c52ccdb088002205f16788748a953105cf8fb67b7d6d4661246a490f49142b63df4b5abb21936c2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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