demetria.ag
Issued by R3
About this certificate
This digital certificate with serial number 04:2d:63:27:51:25:19:b2:e8:15:36:5c:84:eb:16:96:6b:aa was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=demetria.ag
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:2d:63:27:51:25:19:b2:e8:15:36:5c:84:eb:16:96:6b:aaSerial Number (int): 363893647955457980290877277597511236086698
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a9:9c:4a:f8:33:fc:97:01:d1:f5:cc:aa:bf:a3:1f:75:be:52:3f:54
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 17:36:b8:75:19:62:cc:6c:ac:e1:62:70:a6:0f:e4:bb:b1:d4:47:bf
Fingerprint (sha256): 48:01:29:9b:eb:e8:43:d0:78:0b:dc:5d:02:94:58:a5:62:e2:29:f6:c8:a6:98:5e:e9:77:17:f4:22:c6:fb:5a
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate demetria.ag
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for demetria.ag
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
demetria.ag
Other certificates including the domain name demetria.ag
(limited to 100 certificates)
dlab-api.demetria.ag
wot.barneyb.com
panel.bitalium.com
demetria.ag
lab.demetria.ag
panel.bitalium.com
demetria.ag
demetria.ag
demetria.ag
demetria.ag
demetria.ag
pitacoin.app
demetria.ag
www.famapp.co
usercentred.services
onepotwonderwoman.com
dev-match-api.demetria.ag
docs.booking.sandbox.redeam.com
dlab.demetria.ag
demetria.ag
tls.automattic.com
redirect.herbitussin.pl
demetria.ag
app.testpecode.online
dlab-api.demetria.ag
pitacoin.app
demetria.ag
www.jamieson.app
docs.booking.sandbox.redeam.com
api.demetria.ag
www.egyconstructors.com
www.demetria.ag
uzatek.com
www.jamieson.app
wot.barneyb.com
panel.bitalium.com
demetria.ag
lab.demetria.ag
panel.bitalium.com
demetria.ag
demetria.ag
demetria.ag
demetria.ag
demetria.ag
pitacoin.app
demetria.ag
www.famapp.co
usercentred.services
onepotwonderwoman.com
dev-match-api.demetria.ag
docs.booking.sandbox.redeam.com
dlab.demetria.ag
demetria.ag
tls.automattic.com
redirect.herbitussin.pl
demetria.ag
app.testpecode.online
dlab-api.demetria.ag
pitacoin.app
demetria.ag
www.jamieson.app
docs.booking.sandbox.redeam.com
api.demetria.ag
www.egyconstructors.com
www.demetria.ag
uzatek.com
www.jamieson.app
Certificate
The complete raw certificate details for demetria.ag in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgISBC1jJ1ElGbLoFTZchOsWlmuqMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MTExMzAwNDJaFw0yNDA4MDkxMzAwNDFaMBYxFDASBgNVBAMT C2RlbWV0cmlhLmFnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsb0a vbEfv6mCF0KY1j0gkpQzbg+5aEp7+K2roJC3yIDQnt0J3fSVi417cv0WvWqWnxUl SPQmkN8cYqTnUT+5XDJfJAeB/LdnV8r9YcKSGZ+WBQUV9JD8subb9kn8VboP2yh+ gLMAigrqIGrUHlNKyIE4Lh+gj206KN6hGVvs23KawuTMZ7s2cLX/SpGgWstiy8O+ QcDeZRG69UDlsvK+rgYJ8SQU2oobFm16+cHHX/beEcYV50OYUSBPC3spWvd0wiFY I2Hw3YZQU3UJPLc8gBUZV4WgKJpBHgYC/8rEgJ3n3CpKFbjrjw1GK8LRwoPdMIuP fmVqFq664autdgpcZwIDAQABo4ICDDCCAggwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBSpnEr4M/yXAdH1zKq/ox91vlI/VDAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDm H6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5v LmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAW BgNVHREEDzANggtkZW1ldHJpYS5hZzATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMG CisGAQQB1nkCBAIEgfQEgfEA7wB2AD8XS0/XIkdYlB1lHIS+DRLtkDd/H4Vq68G/ KIXs+GRuAAABj2f0up0AAAQDAEcwRQIgXcyTwehwmKnnsmn6Mcujbk8SlsPrEK2L DXmmUEjYAMECIQDaoRKmb53eEtIkqGFxW4il1lDLUKET/26UZoIlbnHJ+QB1AHb/ iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABj2f0utoAAAQDAEYwRAIg CqG5yI/Dm9NZlqIPLzmwkXxC/Vez8g/JX+GRaO9X5oACIFqk98GseA+lWZOLWJGC kucHn8KtQmx/bO1gJFRpgP6KMA0GCSqGSIb3DQEBCwUAA4IBAQCzLfaLIiT5d2gK 6SytJjq4pUNHL8npi2fZE92OIWHZzTji7gsTazM9BooQtJn2DdPc8LDFd+bs9LwI /3pG+/V78y0OweUoS+jaWktNEKJAdqK2GbFu+nP3ky8l+8vF/SIyy4pXTUkvYS94 A9gjVZPgVAXNgvovoB9zcax/rZqcmdUBdRZci6ch97cx4dMQPClqARQdwiURhorO N3C9IDOQ9sWPdljvXxFn6A/h94CZJzNxTJqRPFmTrIlXkwyg18BlbpTUTVL6aRvI 0gQwvV4kHrIQGlm3dN9HCa6nQtKchLUMRcftaB7VOLXuMzGSptXnSEsqVt/kj/pu pZfVXK1v -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsb0avbEfv6mCF0KY1j0g kpQzbg+5aEp7+K2roJC3yIDQnt0J3fSVi417cv0WvWqWnxUlSPQmkN8cYqTnUT+5 XDJfJAeB/LdnV8r9YcKSGZ+WBQUV9JD8subb9kn8VboP2yh+gLMAigrqIGrUHlNK yIE4Lh+gj206KN6hGVvs23KawuTMZ7s2cLX/SpGgWstiy8O+QcDeZRG69UDlsvK+ rgYJ8SQU2oobFm16+cHHX/beEcYV50OYUSBPC3spWvd0wiFYI2Hw3YZQU3UJPLc8 gBUZV4WgKJpBHgYC/8rEgJ3n3CpKFbjrjw1GK8LRwoPdMIuPfmVqFq664autdgpc ZwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 363893647955457980290877277597511236086698 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-11 13:00:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-09 13:00:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'demetria.ag' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22437430862231580618921139650573745648287215001333511605409005699003121695748161606369635800127783344839795645809978797537688070715453669602540725418245821237961698145423681430027382432553918888072676731485716132844334555147811983017926628384105259924147690804882632710923984316300505445065598474595038394466896743391363638562858541302997949418072296338760037102542602143984017158370038518488878971861270885249711392624411501169731059512995153683020168665138903497618607687551726977784509903393229553970001361374538774826713032303406959818800489654072483289830875633476907337086712655531592636732681007942663148297319 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a99c4af833fc9701d1f5ccaabfa31f75be523f54 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demetria.ag' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f67f4ba9d000004030047304502205dcc93c1e87098a9e7b269fa31cba36e4f1296c3eb10ad8b0d79a65048d800c1022100daa112a66f9dde12d224a861715b88a5d650cb50a113ff6e946682256e71c9f900750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018f67f4bada000004030046304402200aa1b9c88fc39bd35996a20f2f39b0917c42fd57b3f20fc95fe19168ef57e68002205aa4f7c1ac780fa559938b58918292e7079fc2ad426c7f6ced6024546980fe8a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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