stgroup.co.uk
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:c7:50:10:81:22:27:c0:0d:2e:54:fd:88:50:d9:e4:43:4a was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=stgroup.co.uk
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c7:50:10:81:22:27:c0:0d:2e:54:fd:88:50:d9:e4:43:4aSerial Number (int): 329159472748096922484093915778786431091530
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ce:3f:5e:49:8f:77:36:0e:93:f2:ec:5a:83:92:80:a9:ab:7c:5c:e6
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 24:8c:0b:60:1c:b2:b9:ef:6a:03:fa:e0:2a:ad:92:bc:3f:38:ca:0c
Fingerprint (sha256): 4c:f4:6e:f0:a0:5f:77:ed:a1:97:13:7d:44:24:e4:9a:80:51:9b:70:fb:38:ee:20:b0:b8:1b:86:8e:a3:16:b6
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate stgroup.co.uk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for stgroup.co.uk
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
stgroup.co.uk
www.stgroup.co.uk
www.stgroup.co.uk
Other certificates including the domain name stgroup.co.uk
(limited to 100 certificates)
Certificate
The complete raw certificate details for stgroup.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGZjCCBU6gAwIBAgISA8dQEIEiJ8ANLlT9iFDZ5ENKMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMTExMzIzNDRaFw0y MDAyMDkxMzIzNDRaMBgxFjAUBgNVBAMTDXN0Z3JvdXAuY28udWswggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQC6hfIHnRbpJ9VD9kwJyACZF0VYurrz4NcG 2+sN/Vx6e5zbmcAlTqIfhMVMiq1iOJ/90vgrT3hJNdj9w/T44B/CKCMFVKM1iTZD MvU3Q1LUmws1yutjBQNMdBx73rtiBGTP42ZNbVPQTK+OsHfZzAoawZQgYP30Ql+a 3FSgPIYPOavAFesMeu9+BaS8bUZocZ+TTgLlE42cDuMVGh3j4XbnWiO1Hw37Qfze 3MGflIeovgqrIG0Jw1OtweLX5NzihmxTRQDAYueLANySc9vSG7/APWjmrXDUePPA 7FWiCHoOBkhso7Je4sAkUlFPFb/TMXe4S2J5viVNmfJDk2elRUqEFMRv5ZG2lPh2 /845VICTlcupfKrqyj8WUprqyFjYAx6kRB9PRfUx9xpVatKb29Kja+ZccN5aG2Jm /jNdLtMcHl17ronUXeVjGHfHrC5aOqnUwvqc1QDMZAG/Gww8Q+ONMXcej8jKq1S0 SiPZ8G5tigWqrEX+zEWhLVmVcYmpCGS2HxGduM5HIlwbwXKUJoFCgzeAYWzTcZHi iBOfXIbhgLdejJZDlNBJ51k45G2CqPsqwyl2qbxYiyKV8VsM7FFMdXLOKzUu46VE k1+942/Y2MElaliycJtB466Y3+tnYwDtqTayCOLdB59ldAoovZ0dWDOJD6QdzUJy WD82EmCPTQIDAQABo4ICdjCCAnIwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTOP15J j3c2DpPy7FqDkoCpq3xc5jAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMCsGA1UdEQQkMCKCDXN0Z3JvdXAuY28udWuCEXd3 dy5zdGdyb3VwLmNvLnVrMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8T AQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIB BQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQAp Bo2yCJo32RMAAAFuWtlaDwAABAMARzBFAiEA3Jm4nb3klBbAaOO8a/nJzTgSVTSP FPGF3INKhn6IHtECIEzdULqt4ZDEtIFiJd9P2EiPrKQg+3O99U9ydbGO/WaLAHcA B7dcG+V9aP/xsMYdIxXHuuZXfFeUt2ruvGE6GmnTohwAAAFuWtlaEAAABAMASDBG AiEAlurlliKtPL/l71xvvfRJ0N2fWEY7FgSw4YI9xEjYvh0CIQDaFK3tT8DR3cHh LYIv+5ZSQVOyAR5BSamQamT2r90+uDANBgkqhkiG9w0BAQsFAAOCAQEABipTqpSw fqa7AKCfCYdkGQcMhCgcofsfkupd45mkraNhMK5em+8sMPHCOYdWdXhN2dSzdL1T KyUuedXsr96JqR/nFmTveGrWChuGWa1AA1UfeY6fUURAMS2UmYhYyZek/PPjv2ID X00iKJTGJYrpfEj1YjxwCmnwJbEE+OXitLZxsRSNoDZkIoheuuuyo3/55FTtCq3F K2qXPSvJXcCefnmTzQki2yXdDkz3fbQvhVe7fxnE6W85Hz19B3vCCJQKufkHvJsv 7hjCi/MPxVcMmExzLUdUppHEuLQEWHg0isdufvo/nw9dEQ1edw1BEwkFKpsM7F2Q Mxuq014lnC9hqA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuoXyB50W6SfVQ/ZMCcgA mRdFWLq68+DXBtvrDf1cenuc25nAJU6iH4TFTIqtYjif/dL4K094STXY/cP0+OAf wigjBVSjNYk2QzL1N0NS1JsLNcrrYwUDTHQce967YgRkz+NmTW1T0EyvjrB32cwK GsGUIGD99EJfmtxUoDyGDzmrwBXrDHrvfgWkvG1GaHGfk04C5RONnA7jFRod4+F2 51ojtR8N+0H83tzBn5SHqL4KqyBtCcNTrcHi1+Tc4oZsU0UAwGLniwDcknPb0hu/ wD1o5q1w1HjzwOxVogh6DgZIbKOyXuLAJFJRTxW/0zF3uEtieb4lTZnyQ5NnpUVK hBTEb+WRtpT4dv/OOVSAk5XLqXyq6so/FlKa6shY2AMepEQfT0X1MfcaVWrSm9vS o2vmXHDeWhtiZv4zXS7THB5de66J1F3lYxh3x6wuWjqp1ML6nNUAzGQBvxsMPEPj jTF3Ho/IyqtUtEoj2fBubYoFqqxF/sxFoS1ZlXGJqQhkth8RnbjORyJcG8FylCaB QoM3gGFs03GR4ogTn1yG4YC3XoyWQ5TQSedZOORtgqj7KsMpdqm8WIsilfFbDOxR THVyzis1LuOlRJNfveNv2NjBJWpYsnCbQeOumN/rZ2MA7ak2sgji3QefZXQKKL2d HVgziQ+kHc1Cclg/NhJgj00CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 329159472748096922484093915778786431091530 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-11 13:23:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-09 13:23:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'stgroup.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 760948365688976070420202493605678717594616814645365277257284904759518184664914183838328679202908098172962570332421592019030223405771054406990165209472038220872801015611490150910752351706688144843413553782510930474225854227717205967748547607697791563165893431197951527845969402350417914428253033236845936912945593173723346789468184408970481368244905870066984019454517072584688172278872344051760797077909371845937891209461727601685937562903147221984210136515107609620656740579659941986124165933206200411175572795097886512548021743750367763194322307884794392864062871382366374463260238976811923496363714950228141589585483681261982008760570796762889147838369280586679613801870515370336061466135404338529489237935858655556313825699077173650727227754088628901713343288924209248928054253689004775487087697286455297323541090503336587744534442578676992496034505527774470375659049003901615678418458503956457678842738628234361190321838511988394839222471353278473896972038431904436527002439239629277743108273794955402613884310099719515242008105745140539596763272766781002135282737608925215406740190837877280481488452023182418812242090301545332358075360009829053171561136498291174515446893716135839517673840149788679560326670872986416037719215949 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ce3f5e498f77360e93f2ec5a839280a9ab7c5ce6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stgroup.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.stgroup.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016e5ad95a0f0000040300473045022100dc99b89dbde49416c068e3bc6bf9c9cd381255348f14f185dc834a867e881ed102204cdd50baade190c4b4816225df4fd8488faca420fb73bdf54f7275b18efd668b00770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016e5ad95a10000004030048304602210096eae59622ad3cbfe5ef5c6fbdf449d0dd9f58463b1604b0e1823dc448d8be1d022100da14aded4fc0d1ddc1e12d822ffb96524153b2011e4149a9906a64f6afdd3eb8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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