astaxantina.com
Issued by R3
About this certificate
This digital certificate with serial number 04:e5:07:0f:58:a8:dc:d9:d5:6d:93:61:11:25:05:ba:f4:f0 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=astaxantina.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:e5:07:0f:58:a8:dc:d9:d5:6d:93:61:11:25:05:ba:f4:f0Serial Number (int): 426383190030589993623825471775112125150448
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: ed:dc:83:3e:b8:2c:26:f6:df:5a:19:cb:43:39:c2:ee:f8:ea:58:e8
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 84:3d:60:84:53:20:8f:e4:a2:67:05:a7:85:b3:e2:e1:18:da:b1:fc
Fingerprint (sha256): 53:0e:59:87:30:07:f9:7d:59:7e:43:29:98:9e:75:94:e6:6d:8e:e3:f4:25:e2:59:07:de:e0:38:0c:67:d0:d5
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate astaxantina.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for astaxantina.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
astaxantina.com
Other certificates including the domain name astaxantina.com
(limited to 100 certificates)
www.fluovore.com
corneo.click
videotelevision.org
juniorcbd.com
matthewhyde.com
www.charlottestemcellclinics.com
astaxantina.com
eyerelax.ch
milmedcase.com
mobilewebspace.com
www.lifipedia.com
bioreninc.com
www.floweringhemp.com
tulsaofficefurniture.com
www.guaranteedweed.com
reversemortgagechristian.com
7ikileaks.org
astaxantina.com
kidsorganicgardening.com
www.coseni.com
northdakotastemcellclinic.com
www.barefootlatina.com
crevite.com
corneo.click
videotelevision.org
juniorcbd.com
matthewhyde.com
www.charlottestemcellclinics.com
astaxantina.com
eyerelax.ch
milmedcase.com
mobilewebspace.com
www.lifipedia.com
bioreninc.com
www.floweringhemp.com
tulsaofficefurniture.com
www.guaranteedweed.com
reversemortgagechristian.com
7ikileaks.org
astaxantina.com
kidsorganicgardening.com
www.coseni.com
northdakotastemcellclinic.com
www.barefootlatina.com
crevite.com
Certificate
The complete raw certificate details for astaxantina.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF7DCCBNSgAwIBAgISBOUHD1io3NnVbZNhESUFuvTwMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMTcwNTM1MTJaFw0yNDA0MTYwNTM1MTFaMBoxGDAWBgNVBAMT D2FzdGF4YW50aW5hLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB APPO+tm6hS9g28co1bQte38AJAPCqmJgGf/AHfiUGwJLB3T0uqmnwIGJp6BomDd/ mePwTt3bRlZRJQJhlQQrovAcFbH02ptx+ycVAbUE3hIAo/4MvxCDaMonwL501K1a PvISvcM3t7bw1/WIQpLFNTIwRP0NmzdCunWiHmszzX4Z6vBYExiqvN4hNif11ll2 qnX/ByT3xWbw2ZmQ9C59SzT9DQPE0m7S2mv2ek7tIKkl1hdzp2V6FdJP0m3pJarq Wwy9FP5Vce7xM2ot+i9kiWRuSoRhDN4Uo09I6yBBkJx3vOjUwV2JMnneg4E3cxaT k1cS+766c2dYeE05PKReNYARCL42da6Fi4aD+8Nw8KYY/AWFeYFqDoB7Cm6ZvCHt KGdisxYbcitghxetHvg2dQmTO6Lh4hM/gYxZ2vfvAWKkX5QonlnJfRSl7Srylb0A oQERwCQ/MgkCVWumFFX0T5djx5sAjdNmtK49T7YYAsNCncgflp1JHt5NOiv1SLeL 7rfBMApjDNk0RfbVS0qAanlHAQYvMvuCHyMqqP+bYXw1b4++YPRdKN3g+gRVhiN2 QM0nL46prXG1PcNnm2JVrhatGXnjGGdTZbUA/QBetzJQPsTZAMIU8epZuRGvmAP9 j2Lb7jh8h3i2sZZwPUWTqrD8Rbme3kaSFplvEcgcwVPLAgMBAAGjggISMIICDjAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFO3cgz64LCb231oZy0M5wu746ljoMB8GA1Ud IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw Oi8vcjMuaS5sZW5jci5vcmcvMBoGA1UdEQQTMBGCD2FzdGF4YW50aW5hLmNvbTAT BgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2ADtT d3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjRYhiKIAAAQDAEcwRQIg ZRzCJfLXMuCEycPYUrba2UhRJ9B3YjBzYH8IEuq4ZKkCIQCjqL3HRHlDYAKvxiu4 IaQ+ywLJ1Bf0+Y0WHmrN+bkvvAB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7 v6s52IRzAAABjRYhiK4AAAQDAEgwRgIhAMziqJfMn+nvqyUOninAKePlSMszkHe/ w4H7AVwODyjsAiEA4QQl6dva9MeHXlOeQuZzAUwo57JYBkmzKRhknx9tXaUwDQYJ KoZIhvcNAQELBQADggEBAIKwkMwEeTTwfXcTJFr2a++P1YRp7l1MGKQkaEZBfBxz bRzxndOVAWqIRlSogs/83G2tZi+a+39aGiSDth8SMA2xv/qS7lJw2M0ZXkG0nP/g 1zXrd+OD7lWnonYnhGL+aVaOiQjBq6Inr553adgC+0ngLeYehAIyP8vVEVUgJyGZ s2QF9WB7IGrlGbqzFQ+pGb+jvG4tjymgl4BC9SthhZfIgh3zXGGQohIx1H9qGQu5 FsRLNVhEKkk3odZl1RiXhZP/6K9l4lmjmL0LNLQq12XilbLS3QNHOY85z8HcXe6W vfUAh3ty3i88WmQ5iS/e/sXpiuN7NGbuvPADJdXmfVs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA88762bqFL2DbxyjVtC17 fwAkA8KqYmAZ/8Ad+JQbAksHdPS6qafAgYmnoGiYN3+Z4/BO3dtGVlElAmGVBCui 8BwVsfTam3H7JxUBtQTeEgCj/gy/EINoyifAvnTUrVo+8hK9wze3tvDX9YhCksU1 MjBE/Q2bN0K6daIeazPNfhnq8FgTGKq83iE2J/XWWXaqdf8HJPfFZvDZmZD0Ln1L NP0NA8TSbtLaa/Z6Tu0gqSXWF3OnZXoV0k/SbeklqupbDL0U/lVx7vEzai36L2SJ ZG5KhGEM3hSjT0jrIEGQnHe86NTBXYkyed6DgTdzFpOTVxL7vrpzZ1h4TTk8pF41 gBEIvjZ1roWLhoP7w3Dwphj8BYV5gWoOgHsKbpm8Ie0oZ2KzFhtyK2CHF60e+DZ1 CZM7ouHiEz+BjFna9+8BYqRflCieWcl9FKXtKvKVvQChARHAJD8yCQJVa6YUVfRP l2PHmwCN02a0rj1PthgCw0KdyB+WnUke3k06K/VIt4vut8EwCmMM2TRF9tVLSoBq eUcBBi8y+4IfIyqo/5thfDVvj75g9F0o3eD6BFWGI3ZAzScvjqmtcbU9w2ebYlWu Fq0ZeeMYZ1NltQD9AF63MlA+xNkAwhTx6lm5Ea+YA/2PYtvuOHyHeLaxlnA9RZOq sPxFuZ7eRpIWmW8RyBzBU8sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 426383190030589993623825471775112125150448 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-17 05:35:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-16 05:35:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'astaxantina.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 994651962666080678158985165182608577276995588720182982857357493827185779506211292245799841637151672987027881005410850015285199911723798133539926750206651996152621540106550374541173895526572789207955686187588509189733148001211976200160156372867597070625259779149054619994224755868233416035271661500877459079256959803921886243450842932131711173152223417079872377116756240695192705177490149699351142788291418697592162589821172476637171650986494437103631255888477214733171367533107125524476019696844887008339712756518493149590658581299877216795772224460009326794433288046748086027960165738525806327031838345920926983299927660058853116143007157802235698730470483188455001736959642353343348772200612880391970982423696265269792988202414258457733239336277205141956104023503929557077633591716565591232389459390057307563228659915146299658294988292119010051372747587938753247303187384663186697489327965617622935531327845967578707774805811553344649845336958315403250577106966989548785313545555814919269423090348397556334318565658940746366417159862456573262777343803983387106502530884576299701994402687024877524483840110095581424866815851079075751221956260770598234163589303620405673908203687482121132828324628882485683342146891102220720908882891 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) eddc833eb82c26f6df5a19cb4339c2eef8ea58e8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'astaxantina.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d162188a200000403004730450220651cc225f2d732e084c9c3d852b6dad9485127d077623073607f0812eab864a9022100a3a8bdc74479436002afc62bb821a43ecb02c9d417f4f98d161e6acdf9b92fbc00770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d162188ae0000040300483046022100cce2a897cc9fe9efab250e9e29c029e3e548cb339077bfc381fb015c0e0f28ec022100e10425e9dbdaf4c7875e539e42e673014c28e7b2580649b32918649f1f6d5da5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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