saho.co.za
Issued by R3
About this certificate
This digital certificate with serial number 03:ed:97:76:eb:15:0f:ca:43:90:3a:e7:dc:b1:4b:17:ca:fe was issued on by Let's Encrypt.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=saho.co.za
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:ed:97:76:eb:15:0f:ca:43:90:3a:e7:dc:b1:4b:17:ca:feSerial Number (int): 342185109641970920255324235084497121954558
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 5a:03:f9:2b:39:21:2e:32:f2:bb:46:82:26:37:4e:5e:4f:90:98:5a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 1a:76:7a:75:2f:18:0c:d2:7d:dd:fb:87:c2:06:74:9b:d3:ca:d6:46
Fingerprint (sha256): 58:0a:eb:b8:6b:88:54:4b:16:0c:4e:cf:81:28:96:ec:b3:e8:dd:9e:5b:be:c0:30:68:99:e3:1b:6a:50:b1:3e
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate saho.co.za
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for saho.co.za
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aiemilia.com.leedey.com
fredgoad.com.nationalclassroom.com
mouthmoistifier.com
newtriertour.com
ofa.realbrilliance.net
officeforvip.com.normancounty.com
saho.co.za
fredgoad.com.nationalclassroom.com
mouthmoistifier.com
newtriertour.com
ofa.realbrilliance.net
officeforvip.com.normancounty.com
saho.co.za
Other certificates including the domain name saho.co.za
(limited to 100 certificates)
Certificate
The complete raw certificate details for saho.co.za in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgISA+2XdusVD8pDkDrn3LFLF8r+MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMDgyMTIzNTBaFw0yNDA0MDcyMTIzNDlaMBUxEzARBgNVBAMT CnNhaG8uY28uemEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKhPsT 7qzcYMDuPlFHvvB2fa2eIcy+JkiUTksKVUztXlu/ltRxFaU+90/GLpXVVv3d74Dh /d8l2eUHwemrbEcovT2BT/rFTCWLKLccqXUuagZIIVm+ZpmtGrlc9GfUhqR6u4Gu UljS2ZqpaCUlWBoy2JwjSbtifgWTR5RUZvFYvt3FGfZhBqDc413jnJjjeCp4IPpk VdIpiKHa9mCIUbowKh2qKMi8N9nMaAp0N/3mSIpog64Li4OrxkpGi+J6KOc4si/6 296xLnLDBWbnxeDH0pB0H2OYF4MWFI38frCeg17Uj5LUlfzdKPbMgdwk5ZI+vsdw 4SgvjIu9GxDeIlIPAgMBAAGjggKuMIICqjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FFoD+Ss5IS4y8rtGgiY3Tl5PkJhaMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMIG2 BgNVHREEga4wgauCF2FpZW1pbGlhLmNvbS5sZWVkZXkuY29tgiJmcmVkZ29hZC5j b20ubmF0aW9uYWxjbGFzc3Jvb20uY29tghNtb3V0aG1vaXN0aWZpZXIuY29tghBu ZXd0cmllcnRvdXIuY29tghZvZmEucmVhbGJyaWxsaWFuY2UubmV0giFvZmZpY2Vm b3J2aXAuY29tLm5vcm1hbmNvdW50eS5jb22CCnNhaG8uY28uemEwEwYDVR0gBAww CjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgBIsONr2qZHNA/l agL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYzrLMzkAAAEAwBHMEUCIQC6WvsGqU5W qLfA1PLJ4qbbnmsp2na2Q8ttbqbsoc51cQIgc6GZFniT1m89JnzECH9Ad8shzP+z poUknJitECYHTRAAdgAp0DobtnSqcRzTA1tlV8FPiqeLT+g4lEnspFP5RL0kaAAA AYzrLM2rAAAEAwBHMEUCIQCYEqNtWKm/p10lsEntIJdwHDiACMKiKEbav6VpsQOS 1gIgAvGxjcfpALGHeJICSqtHfIobbhTPMcDA90uZPXWSqO0wDQYJKoZIhvcNAQEL BQADggEBAI3hKW2r1GWFJuholk9TAH7DCli3QuVyvbRsq1G5JISGULp4RzTVy631 4oQafbvDuZ1AXGt3US95QJZnqjRu3Az/QjJ8+XDhMdyveI1eh+2qfalBF58q/PGk 0QXXM4Le6SDjhnSy1QtnFTLS7tdu0sAdvGsTWOnW+s+9PwjMJlun1p7sucgJi68D IG44xAlAkHAqFye/eiSXj94FiBNnFbz+KNmCuqfyuMRjZqryPx6uAF4NHcYL4rwh i0aWbM1q+4/Y8tIWLJmRzzVBSSdc/g604+GD7iks7c9VbCTJhoy8xLiRufLYNCFk dq+eepWgZ9T+pdEuj4N2wo75aCiRMVE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyoT7E+6s3GDA7j5RR77w dn2tniHMviZIlE5LClVM7V5bv5bUcRWlPvdPxi6V1Vb93e+A4f3fJdnlB8Hpq2xH KL09gU/6xUwliyi3HKl1LmoGSCFZvmaZrRq5XPRn1IakeruBrlJY0tmaqWglJVga MticI0m7Yn4Fk0eUVGbxWL7dxRn2YQag3ONd45yY43gqeCD6ZFXSKYih2vZgiFG6 MCodqijIvDfZzGgKdDf95kiKaIOuC4uDq8ZKRovieijnOLIv+tvesS5ywwVm58Xg x9KQdB9jmBeDFhSN/H6wnoNe1I+S1JX83Sj2zIHcJOWSPr7HcOEoL4yLvRsQ3iJS DwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 342185109641970920255324235084497121954558 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-08 21:23:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-07 21:23:49 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'saho.co.za' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25565712866280978470195587314773325329173277516464124508262939461708703417844936253096162390860309808993941341544745048301892880722750201887024335619238073268342650374960694700100896823640116218922119997246185547380823427812949409674229073491838485591665059805926553902878823222033517597507103305334462827275690936223109386433385208973038509416577604922066522011316511963891455716327539583795921340770489839505213096121871335153261819847282177661991178624309422891986931425123532771429823040610141932423646017691195491382135547999241540169073204989543613754880308494545482382599483341366357960700865130581328436285967 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5a03f92b39212e32f2bb468226374e5e4f90985a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (174 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aiemilia.com.leedey.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fredgoad.com.nationalclassroom.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mouthmoistifier.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'newtriertour.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ofa.realbrilliance.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'officeforvip.com.normancounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saho.co.za' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ceb2ccce40000040300473045022100ba5afb06a94e56a8b7c0d4f2c9e2a6db9e6b29da76b643cb6d6ea6eca1ce7571022073a199167893d66f3d267cc4087f4077cb21ccffb3a685249c98ad1026074d1000760029d03a1bb674aa711cd3035b6557c14f8aa78b4fe8389449eca453f944bd24680000018ceb2ccdab00000403004730450221009812a36d58a9bfa75d25b049ed2097701c388008c2a22846dabfa569b10392d6022002f1b18dc7e900b1877892024aab477c8a1b6e14cf31c0c0f74b993d7592a8ed . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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