xbone.co.za

Issued by R3

About this certificate

This digital certificate with serial number 04:47:46:6a:f2:fb:13:d1:96:a7:90:24:f3:df:58:38:97:e3 was issued on by Let's Encrypt.

With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=xbone.co.za

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:47:46:6a:f2:fb:13:d1:96:a7:90:24:f3:df:58:38:97:e3
Serial Number (int): 372702793049835092762140547595171823917027
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: f9:74:5b:77:5e:26:16:67:46:a4:34:67:75:07:36:42:48:35:5f:fd
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): ac:82:c9:a9:54:3e:34:3a:83:ae:a0:7f:dc:13:3e:5a:6e:49:f3:a6
Fingerprint (sha256): 53:54:3e:63:8a:db:2c:48:e9:50:a8:bf:59:54:b2:84:56:a7:2b:ab:89:06:43:3b:90:9e:e4:2c:96:48:4c:fa

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate xbone.co.za

4

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for xbone.co.za

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

kodiakpinedesigns.com
storiesincest.com
xbone.co.za
xn--central-b0a.com

Other certificates including the domain name xbone.co.za

(limited to 100 certificates)
xbone.co.za
xbone.co.za
xbone.co.za
xbone.co.za
sanb.co.za
xbone.co.za
xbone.co.za
symigreekisland.com.realestatereferrals.net.reverb256.ca
xbone.co.za
valueventures.properties.xbone.co.za

Certificate

The complete raw certificate details for xbone.co.za in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFIjCCBAqgAwIBAgISBEdGavL7E9GWp5Ak899YOJfjMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yNDAzMDExNTE2MzBaFw0yNDA1MzAxNTE2MjlaMBYxFDASBgNVBAMT
C3hib25lLmNvLnphMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnuDl
qOBlEz6r41dvn3aGqybLUEb9APH4fvRhVA4oEW5AhpKbiSk9gGgDx5p2JmunwzoC
KGi7TJRT6wX3lha4CyZqHNhYGXlLsA/TPzGztSurIsEh0JSi6RjygS1YxDKJ98Ve
TVi2WXbASuGmZVJqKzDFLjbvjhIBiphfzXXst7tgw4MGk2ExhOXhV2sE11/ece1w
k6CHTSVJI5Fk9J0/HB9q9a8quHaJ3hFrNU10/QfLIcRVaZheo0TqTbkfQN2Uq8/2
HZecC8KUepVD0q146UlAsd3gtB3Ht9azNeICiZzQfYraaQaFI+TGoS3LPUplN/Ut
8Go7jU7McJFhc/m3IwIDAQABo4ICTDCCAkgwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud
JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW
BBT5dFt3XiYWZ0akNGd1BzZCSDVf/TAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDm
H6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5v
LmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzBV
BgNVHREETjBMghVrb2RpYWtwaW5lZGVzaWducy5jb22CEXN0b3JpZXNpbmNlc3Qu
Y29tggt4Ym9uZS5jby56YYITeG4tLWNlbnRyYWwtYjBhLmNvbTATBgNVHSAEDDAK
MAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2AEiw42vapkc0D+Vq
AvqdMOscUgHLVt0sgdm7v6s52IRzAAABjfrNi7UAAAQDAEcwRQIgXHO3h76cnhTq
xK6rnn2nIk5TMWC+mKPZvvwIuVslb6ICIQDc2YbMZFoYJILyKpX7TqFzr01PuWJo
HdAVtuiRQJ9yIAB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAAB
jfrNi7wAAAQDAEcwRQIgHOVw2/Buoha4E6IdqWOWYB3u0N47kTrQi4BzGyN8zyUC
IQDWUshM6zHNENUJ4kfDyYyLRtQEbwvVtt24WpDJrmqCUTANBgkqhkiG9w0BAQsF
AAOCAQEABb6lY5n4lvP37SiEkP4rMzKeBklb33n/UBsYt8+Ei4CwPKRN0cRhrI2D
2Te7W6kHegupiUqJHAk0D/ltjjhTuyGwPNRzC+xaAAT2iefCVQtoJ+q8vI4N7xsI
QiFg9Ewg9znHQe6MT37+16Wgs046TN6h1Nwn+GKFi0VvYzi7sYaIz/NCrguxAnFP
jYTvp5nh5Vq1BpWhYS+C4fOf4ECafb7QfeJ1KuDNFoo4UPJgo0oJf9J3WTVhyW6y
zBSkgudedn25ovUsRWWhvh2Dtr0n8V+D3T1LHAprRoK3N4FIfMyKkOnxgUZCVdy7
tTQg5E8dibspDsi3Ecujk/oNGM49JQ==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnuDlqOBlEz6r41dvn3aG
qybLUEb9APH4fvRhVA4oEW5AhpKbiSk9gGgDx5p2JmunwzoCKGi7TJRT6wX3lha4
CyZqHNhYGXlLsA/TPzGztSurIsEh0JSi6RjygS1YxDKJ98VeTVi2WXbASuGmZVJq
KzDFLjbvjhIBiphfzXXst7tgw4MGk2ExhOXhV2sE11/ece1wk6CHTSVJI5Fk9J0/
HB9q9a8quHaJ3hFrNU10/QfLIcRVaZheo0TqTbkfQN2Uq8/2HZecC8KUepVD0q14
6UlAsd3gtB3Ht9azNeICiZzQfYraaQaFI+TGoS3LPUplN/Ut8Go7jU7McJFhc/m3
IwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 372702793049835092762140547595171823917027
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-01 15:16:30 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-30 15:16:29 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'xbone.co.za'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20056553081975177928621731239589271872444046627366640815333920282006022486614556739666784461944699175917094436198837982133413613532795758228406100965000514369883926687359676921812003752914246921669440744651779301956797385142571736099238535548531465158067655878787214939280805400323001324140528759178977786604317962220846189209508421073159796090242171417463106958343400628124768135098252716500614508944234598271754468500670597737754261270123588141902305565190694196853942428307021980308325864056883619057841290716976417915996006166375881429202287039974063729406740833815934599323265279884151517121170549949190846920483
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							f9745b775e26166746a434677507364248355ffd
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (78 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kodiakpinedesigns.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'storiesincest.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xbone.co.za'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xn--central-b0a.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018dfacd8bb5000004030047304502205c73b787be9c9e14eac4aeab9e7da7224e533160be98a3d9befc08b95b256fa2022100dcd986cc645a182482f22a95fb4ea173af4d4fb962681dd015b6e891409f7220007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018dfacd8bbc000004030047304502201ce570dbf06ea216b813a21da96396601deed0de3b913ad08b80731b237ccf25022100d652c84ceb31cd10d509e247c3c98c8b46d4046f0bd5b6ddb85a90c9ae6a8251
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0005bea56399f896f3f7ed288490fe2b33329e06495bdf79ff501b18b7cf848b80b03ca44dd1c461ac8d83d937bb5ba9077a0ba9894a891c09340ff96d8e3853bb21b03cd4730bec5a0004f689e7c2550b6827eabcbc8e0def1b08422160f44c20f739c741ee8c4f7efed7a5a0b34e3a4cdea1d4dc27f862858b456f6338bbb18688cff342ae0bb102714f8d84efa799e1e55ab50695a1612f82e1f39fe0409a7dbed07de2752ae0cd168a3850f260a34a097fd277593561c96eb2cc14a482e75e767db9a2f52c4565a1be1d83b6bd27f15f83dd3d4b1c0a6b4682b73781487ccc8a90e9f181464255dcbbb53420e44f1d89bb290ec8b711cba393fa0d18ce3d25