aguasalud.com
Issued by R3
About this certificate
This digital certificate with serial number 03:8d:4b:53:a1:5f:60:0d:fa:8a:f0:e5:c1:13:d3:a1:3c:24 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=aguasalud.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:8d:4b:53:a1:5f:60:0d:fa:8a:f0:e5:c1:13:d3:a1:3c:24Serial Number (int): 309416797864480539456275656052077527907364
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a5:3e:ae:08:1f:dc:bc:81:e9:63:f8:d7:5b:04:27:68:9d:26:c0:fc
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 4d:a8:fb:bd:3f:fa:94:3b:1b:8e:3d:9f:8c:df:84:13:96:a4:8c:38
Fingerprint (sha256): 63:41:9b:41:47:ad:8a:ae:47:46:e1:a1:6e:0b:18:b7:f2:b4:57:0c:6e:d2:e7:2e:03:55:a3:a0:c5:90:6c:1a
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate aguasalud.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for aguasalud.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aguasalud.com
Other certificates including the domain name aguasalud.com
(limited to 100 certificates)
www.ultravioletta.com
aguasalud.com
dcregenerativemedicine.com
www.mcw.life
mensbookclub.com
aguasalud.com
aguasalud.com
www.wongaexchange.com
www.goodmorninggrancanaria.com
aguasalud.com
www.elpasosportsmed.com
www.zimpactadvisors.org
aguasalud.com
arborsculpture.com
hollywoodsportsdoctor.com
mensbookclub.com
www.krayzee.com
potty-time.com
arborsculpture.com
moreinc.com
net.cleaning
www.thecatscradle.com
orinoquia.com
www.shelterfinance.com
www.tangle-inside.com
aguasalud.com
dcregenerativemedicine.com
www.mcw.life
mensbookclub.com
aguasalud.com
aguasalud.com
www.wongaexchange.com
www.goodmorninggrancanaria.com
aguasalud.com
www.elpasosportsmed.com
www.zimpactadvisors.org
aguasalud.com
arborsculpture.com
hollywoodsportsdoctor.com
mensbookclub.com
www.krayzee.com
potty-time.com
arborsculpture.com
moreinc.com
net.cleaning
www.thecatscradle.com
orinoquia.com
www.shelterfinance.com
www.tangle-inside.com
Certificate
The complete raw certificate details for aguasalud.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6TCCBNGgAwIBAgISA41LU6FfYA36ivDlwRPToTwkMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMjIyMTQ3MThaFw0yNDAyMjAyMTQ3MTdaMBgxFjAUBgNVBAMT DWFndWFzYWx1ZC5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC/ Tl6T90bpZc87qxx3JGE4TzC1mMOzHyHlqvTb9i8VKQXAg0RilVmM2Pxu0bxlmzv0 YLGDtER71KZRULPOO0WCySitGwdvpWvY/3KFydF5zuPJvtIRXVgE2/e/j0ay4QMZ 4d03Icj9saribpcdtenFc+qwkGMbvY1crSKoq+VwvobtKrRa36RrFilWa0/K8D2q hiyUEddo1WdCHSJQ2PlPag+LxlQJ488L5PoNdea2fU8gTDOVvD8U5NxI+KE3tlj7 9gb7VtXRgkdaZ/kt4rTMJkzowO7L5GXVu8HusNpKwpxKNItoeQmovz7NHj/2Z5Z9 4t470vDDv3WeJbV3w2w3S4x3d06NyRyELq9OvibBM76pY/DVBytgrPMal3REk6l2 wjKWp9K3199E+VfQulUPtyUxNC/iGGr21dfw52gm+OUqjYBKytEJfDdBgUCbFkVb EXqkTQjVQx8NC2Nf2HZJJP7B1p6LGbQDmSA6RCP1BpxAutoe7gqo26qhdw35DeyI CFJp+G1HmIkxHTqNtJtfhLazI7h05e8UZ4xuyuvM0xp6LswKmMEptuQhmmswN3sV hq18JZ6n85c0Czp0FaGHYAi3bPARJ1O/QnSM4xsuVirmkrjZ/c3QtaYJ2WdLe3uC wbuceP30KBfvG7GINdFuH1s6PgeukvAz9MRYbICWLwIDAQABo4ICETCCAg0wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNV HRMBAf8EAjAAMB0GA1UdDgQWBBSlPq4IH9y8gelj+NdbBCdonSbA/DAfBgNVHSME GDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYB BQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDov L3IzLmkubGVuY3Iub3JnLzAYBgNVHREEETAPgg1hZ3Vhc2FsdWQuY29tMBMGA1Ud IAQMMAowCAYGZ4EMAQIBMIIBBgYKKwYBBAHWeQIEAgSB9wSB9ADyAHcAO1N3dT4t uYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL+TdhSwAABAMASDBGAiEAob+L bjrYCJ1Ycop8X3zfOV5Bt/gal848A+LMXM+p6d4CIQCqTja+9gZugMVf5CXySdhD giagYeVyAiDtWr0hv4pDBwB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s5 2IRzAAABi/k3YUYAAAQDAEgwRgIhAOOYGzXvuL8wGhQtyv/O1TqwthhUudnjy+0e DGBxVcRNAiEAuRVoQYtJnF632X19/eTeMFqX/QgjUXs9zlMAjuMnXDAwDQYJKoZI hvcNAQELBQADggEBAAEPokRiV6l0Cf0O8uPrQdZiXBiHC4DJPPLfjIks5BKWaGk/ K/Dw2g9NxpsKakX+yuD0wz+fGpVRkJ+TbsskxCGBnCGIoDJF091QR5PkZa3cgcQ3 VJ8mvXMpUFNUwe1Br77AJPWhUnYvVn8c9oqPoXj6M6/RWVMm7Hrx/1i7i88fNj/M Bt7jFU1APdXqg/EsvV06qkpofY7RJm4m0Ose8CkKEyaZT6fxurdApbofo1VHBM/T WYwe3XJrI8XSDj/II2v7F1OSYxM8JCVeQiAJzwSQgfODI0rr9kOwEayBbkUgnr6U geo2h2RClu3mDBqTeB6OBY+Imgn8HNeJjqySe3w= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAv05ek/dG6WXPO6scdyRh OE8wtZjDsx8h5ar02/YvFSkFwINEYpVZjNj8btG8ZZs79GCxg7REe9SmUVCzzjtF gskorRsHb6Vr2P9yhcnRec7jyb7SEV1YBNv3v49GsuEDGeHdNyHI/bGq4m6XHbXp xXPqsJBjG72NXK0iqKvlcL6G7Sq0Wt+kaxYpVmtPyvA9qoYslBHXaNVnQh0iUNj5 T2oPi8ZUCePPC+T6DXXmtn1PIEwzlbw/FOTcSPihN7ZY+/YG+1bV0YJHWmf5LeK0 zCZM6MDuy+Rl1bvB7rDaSsKcSjSLaHkJqL8+zR4/9meWfeLeO9Lww791niW1d8Ns N0uMd3dOjckchC6vTr4mwTO+qWPw1QcrYKzzGpd0RJOpdsIylqfSt9ffRPlX0LpV D7clMTQv4hhq9tXX8OdoJvjlKo2ASsrRCXw3QYFAmxZFWxF6pE0I1UMfDQtjX9h2 SST+wdaeixm0A5kgOkQj9QacQLraHu4KqNuqoXcN+Q3siAhSafhtR5iJMR06jbSb X4S2syO4dOXvFGeMbsrrzNMaei7MCpjBKbbkIZprMDd7FYatfCWep/OXNAs6dBWh h2AIt2zwESdTv0J0jOMbLlYq5pK42f3N0LWmCdlnS3t7gsG7nHj99CgX7xuxiDXR bh9bOj4HrpLwM/TEWGyAli8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 309416797864480539456275656052077527907364 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-22 21:47:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-20 21:47:17 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'aguasalud.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 780460921064320999485644403350311734283271120947069376713500386226015361407713250875791933576075405807246393400233465810753242544142067289598373011338649862642307764046942170487334864858967899333275302350684793413601066706656307268547222372836807564819063646216262918721921047734698124299364971646232507768341509287783574086354975044178685986981155544530007695872509117658385985487186754601484030026444375076849264888993231975257462038209273975922947601241440526546232599214801763814051782727579023328227066270403789968885773854652479145958682983364362527948309311100618820947103445464018804295481792937188073458402286318101457737176898406671231649679915194925043502843828392802641038381652943906949290364214408097937774253531544622528527236621061359107447353695746685877912098088543724774678625061486999450090720004688016070614812797142493795694125286498090882602216263334100864861809242683683102381796009168792730328450018075255116462315594833468534031406820022324785257027281649027797981430717166195512628852760537407879467635150109465441328508473034366644651536640924027954918068610260775994000706515507953535442124934086498881467247396745233494713880615678322744371290428009569063120338501980499904060884452686598373239374779951 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a53eae081fdcbc81e963f8d75b0427689d26c0fc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aguasalud.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018bf937614b0000040300483046022100a1bf8b6e3ad8089d58728a7c5f7cdf395e41b7f81a97ce3c03e2cc5ccfa9e9de022100aa4e36bef6066e80c55fe425f249d8438226a061e5720220ed5abd21bf8a430700770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018bf93761460000040300483046022100e3981b35efb8bf301a142dcaffced53ab0b61854b9d9e3cbed1e0c607155c44d022100b91568418b499c5eb7d97d7dfde4de305a97fd0823517b3dce53008ee3275c30 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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