cert-00001-cdnedge-bluemix.akamaized.net
Issued by R3
About this certificate
This digital certificate with serial number 04:b9:42:d6:51:a7:50:12:5b:5a:97:b5:af:ce:6e:63:9a:2d was issued on by Let's Encrypt.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=cert-00001-cdnedge-bluemix.akamaized.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:b9:42:d6:51:a7:50:12:5b:5a:97:b5:af:ce:6e:63:9a:2dSerial Number (int): 411490223462795195256468455308616280545837
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: aa:1a:80:08:3f:e0:88:74:be:7f:1b:ae:67:91:ce:16:1b:3c:21:94
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 8e:be:dc:2c:2e:4c:36:73:61:b5:1c:8f:bd:f2:03:68:9a:89:bc:b0
Fingerprint (sha256): 4f:b0:54:f6:91:05:24:34:c5:77:a7:ef:74:9d:a7:18:53:95:f8:cf:53:a0:22:bc:f6:22:aa:22:30:da:a4:35
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate cert-00001-cdnedge-bluemix.akamaized.net
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cert-00001-cdnedge-bluemix.akamaized.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
3pa.dexit.co
cdnakamai.comet.it
cert-00001-cdnedge-bluemix.akamaized.net
ibm-fantasy-widget.espnsb.com
origin-cdt.ibmwatsonfantasyfootball.com
web.zxrfid.com
cdnakamai.comet.it
cert-00001-cdnedge-bluemix.akamaized.net
ibm-fantasy-widget.espnsb.com
origin-cdt.ibmwatsonfantasyfootball.com
web.zxrfid.com
Other certificates including the domain name cert-00001-cdnedge-bluemix.akamaized.net
(limited to 100 certificates)
Certificate
The complete raw certificate details for cert-00001-cdnedge-bluemix.akamaized.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgISBLlC1lGnUBJbWpe1r85uY5otMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMDYyMTU1MjFaFw0yNDA2MDQyMTU1MjBaMDMxMTAvBgNVBAMT KGNlcnQtMDAwMDEtY2RuZWRnZS1ibHVlbWl4LmFrYW1haXplZC5uZXQwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUnqUknvO3FdPNugLw7oC9PNW62jty UrzHHSD7BIprF8ineoBJXddCFPIlhzj8I++gqfTyi6vy9XTSzTsgZwx6rL512+Cu kSz2Rp0lRoR4JMJxk4igdVQhvZARIiTQjctZm1kEnVoPRxnpO2JWbtlHUepXk8RV Fa2KirYfbFkZ8Va9bwOXmNcTjhksDG40fjiZAu+JM/gVLKOMGetc5aOzNtSmkCEw cJWj0BUVAYV6xzKydSv3/dJnsQXEdkkjx7bYWDxzcmDZltoNeMUlot0O/t3lFtcD IGej4GyeHmst1PUktC1OBaP28L6zuPPA8KIOlHdE8aFNb248N2YwAMKHAgMBAAGj ggKmMIICojAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFKoagAg/4Ih0vn8brmeRzhYb PCGUMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEB BEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUF BzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMIGvBgNVHREEgacwgaSCDDNwYS5k ZXhpdC5jb4ISY2RuYWthbWFpLmNvbWV0Lml0gihjZXJ0LTAwMDAxLWNkbmVkZ2Ut Ymx1ZW1peC5ha2FtYWl6ZWQubmV0gh1pYm0tZmFudGFzeS13aWRnZXQuZXNwbnNi LmNvbYInb3JpZ2luLWNkdC5pYm13YXRzb25mYW50YXN5Zm9vdGJhbGwuY29tgg53 ZWIuenhyZmlkLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkC BAIEgfQEgfEA7wB2ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAAB jhX6gGAAAAQDAEcwRQIhAOZuzEIsNaXu6pLUOVDjJH7QBFt1fwjcsopuAfGY66tW AiAudSB1vidrS561/oAVLr9xpLnaEjEokTyMdqTjEemJZQB1AEiw42vapkc0D+Vq AvqdMOscUgHLVt0sgdm7v6s52IRzAAABjhX6gIkAAAQDAEYwRAIgB/XFWcVYuJEw jQAk4EdrybU6jl6wpUI1P5GTrAHUkAACIHBHhm7QZjijwznmH5Nu2wrofIJRd/jF 9lJuVTghseZWMA0GCSqGSIb3DQEBCwUAA4IBAQC6USSKxLBmaogbbM0jez7SnMGj EtkP7L5/OLDDrMX3TIbv8+Bex0dj5ObCI8TsA5+XQvHYOBwjiO0UN6/mXIu1Lvzw s9LlPQqNVFOzQptAPnWDQXG+084NHjBCSlyEtDOwdba9gR7vGeM73eQ3jvqfP+ET xQ3BN0HsguIwQ0htWEPfEPFKR7LGFR821iER8kUnHO1y36s0KCcvwf4q9ekrTFhE blyj6IippyB4Q06ygK7C6u+fcisAXOabH3YHjHzSBdkNK+VtEjHSIwYFgmcvWBnc EpTRvpO8thQw9sozeISGQvFVCsH/23hwOU6D9klP5A6RyOPYvDjEzsnkNtjM -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1J6lJJ7ztxXTzboC8O6A vTzVuto7clK8xx0g+wSKaxfIp3qASV3XQhTyJYc4/CPvoKn08our8vV00s07IGcM eqy+ddvgrpEs9kadJUaEeCTCcZOIoHVUIb2QESIk0I3LWZtZBJ1aD0cZ6TtiVm7Z R1HqV5PEVRWtioq2H2xZGfFWvW8Dl5jXE44ZLAxuNH44mQLviTP4FSyjjBnrXOWj szbUppAhMHCVo9AVFQGFescysnUr9/3SZ7EFxHZJI8e22Fg8c3Jg2ZbaDXjFJaLd Dv7d5RbXAyBno+Bsnh5rLdT1JLQtTgWj9vC+s7jzwPCiDpR3RPGhTW9uPDdmMADC hwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 411490223462795195256468455308616280545837 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-06 21:55:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-04 21:55:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cert-00001-cdnedge-bluemix.akamaized.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26840751462405692599129695819060507945681437159440707223537306629940067145092645000385205700443041625115982423457022346426383412855884813855962388644728761358627617941958714272967159247063192894095237856472937591261364314881840495564076949803321773671000487169392972452226372429695697225935968458753614157177547794457097707209613628671823960362432198063475272415748058961053869598013141272357456097807912488351550784165286783939873182053856911976162439856003997567616572604597985555185307414208044672745887022575564987673217322014657865667652603412633292879726460283076981317816964436205010016700717745576727030055559 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) aa1a80083fe08874be7f1bae6791ce161b3c2194 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (167 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '3pa.dexit.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cdnakamai.comet.it' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cert-00001-cdnedge-bluemix.akamaized.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ibm-fantasy-widget.espnsb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin-cdt.ibmwatsonfantasyfootball.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'web.zxrfid.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e15fa80600000040300473045022100e66ecc422c35a5eeea92d43950e3247ed0045b757f08dcb28a6e01f198ebab5602202e752075be276b4b9eb5fe80152ebf71a4b9da123128913c8c76a4e311e9896500750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e15fa80890000040300463044022007f5c559c558b891308d0024e0476bc9b53a8e5eb0a542353f9193ac01d4900002207047866ed06638a3c339e61f936edb0ae87c825177f8c5f6526e553821b1e656 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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