portallgpd.tppf.com.br
Issued by R3
About this certificate
This digital certificate with serial number 04:14:c5:95:cb:5d:58:3f:f1:dd:15:73:d3:81:72:fe:b2:de was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=portallgpd.tppf.com.br
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:14:c5:95:cb:5d:58:3f:f1:dd:15:73:d3:81:72:fe:b2:deSerial Number (int): 355517426757585986612516983362296039256798
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 0a:58:35:69:6d:be:ad:5f:fd:da:b0:c5:5d:9a:21:ef:c4:0a:fb:4c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 15:56:78:cf:a4:e1:59:9a:82:1f:e8:66:68:e8:b5:9a:df:92:ab:6f
Fingerprint (sha256): 6a:fb:7c:ac:71:75:35:1a:05:f2:71:d3:16:cc:70:e7:09:e5:be:76:dd:35:83:6c:0f:75:b2:d2:f5:f4:bb:e1
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate portallgpd.tppf.com.br
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for portallgpd.tppf.com.br
Public Key Algorithm
RSA
Key Size
3072
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lgpdtppf.nuvemx.com.br
portallgpd.tppf.com.br
portallgpd.tppf.com.br
Other certificates including the domain name tppf.com.br
(limited to 100 certificates)
Certificate
The complete raw certificate details for portallgpd.tppf.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgISBBTFlctdWD/x3RVz04Fy/rLeMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTExMjUyMDhaFw0yNDA3MTAxMjUyMDdaMCExHzAdBgNVBAMT FnBvcnRhbGxncGQudHBwZi5jb20uYnIwggGiMA0GCSqGSIb3DQEBAQUAA4IBjwAw ggGKAoIBgQCuwHTKs7qBPQ+y9wCfYPTBl4AhMDVDlzBltS6QlmQNQs2vP2BPc5n/ vKEP+8rT3I22kc49PUqmDzkdy5QH7ZTRgRNRr91g7Jr4pitvyNtIK3LZ1DQq1BtO WvWlIzoggKr7syD45h4+qd0WIGr/gvIIhHav9Nx0GAGxvEHACyvlhsHwm4ZcMQzq O0JRekgPDbfzHWjJYn3KV/w3VzX5FV9KsqDAKgIu712o0Y2lSlvvuhlPhIYTptpe k8U4xJeqT+OsRRgS02dSP0cR8DcMDF1iIEfq/WUWIC28IYOnWTSh7N0mc6/N+uj3 Ecgrs4sXbjc+xUzBATX0FoUJAD3FHBbJvZ62mIitkZtMyuF4Mtq5ugnQhOZt/MtN bekr+/1B87yg9HW93OciE3juMpJrwk7hV1/MuuVzfr6wQw8/vi+tWBUaBPz2TEmq 8nwXefpyOqzE9uXc/mM6RpTEYNaQHcU5x7jkCh43yiPJkMa5LiZWNmB3ocJ9Hra2 71tEOrPS5SMCAwEAAaOCAjAwggIsMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUClg1 aW2+rV/92rDFXZoh78QK+0wwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsU wsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5j ci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wOQYDVR0R BDIwMIIWbGdwZHRwcGYubnV2ZW14LmNvbS5icoIWcG9ydGFsbGdwZC50cHBmLmNv bS5icjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA 8AB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjs1uGCcAAAQD AEcwRQIhANB7wU/z8UuzC4yakoMUolA/uXg4qhlc0WoEjbiFruUyAiBDOaof+Cy2 YgCb/qQGf9flpv0373r2qe2nVXW3Wya9vQB2ABmYEHEJ8NZSLjCA0p4/ZLuDbijM +Q9Sju7fzko/FrTKAAABjs1uGG8AAAQDAEcwRQIgLTAnu4IhI0VMM876W/Pulwlw cAqOPc2TXCafTsvlIpwCIQDK97r9ycdz8/zH4oZ9OiN5EKzZ3Hh6rRCajOXEIglS cTANBgkqhkiG9w0BAQsFAAOCAQEAXUHmsJo3imRlXu6YowDKXFLHQQC1XN4DMVa4 XBY46Wahy6hj6dD4u6H8nWEh0PA/Jz7MvyeCE7qjvRSMi9RUA1vaX6CoIekAX8Bp Wtonru59ZzmpHfSwk1EJGC57MYGCKBHOFmYHCFZ43cic0JUQwCETZjLOsqZrPUgW 1WZbvpdgjvHv4DPDmpgexWGnPkRcz6Xr+RPp5rTqkqmEDsNm997Ju9xdAvsV8N0C tR1b6AwqbuYSPy4k6b6WomTGgolHxwdM6LBLs6beqHJ166DQeAcqHpekS4hxyhCi X2dIlm/Hzdv4p74bq/caH18G2fkxq47kVkSOvhhcBLB5NW2F8w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEArsB0yrO6gT0PsvcAn2D0 wZeAITA1Q5cwZbUukJZkDULNrz9gT3OZ/7yhD/vK09yNtpHOPT1Kpg85HcuUB+2U 0YETUa/dYOya+KYrb8jbSCty2dQ0KtQbTlr1pSM6IICq+7Mg+OYePqndFiBq/4Ly CIR2r/TcdBgBsbxBwAsr5YbB8JuGXDEM6jtCUXpIDw238x1oyWJ9ylf8N1c1+RVf SrKgwCoCLu9dqNGNpUpb77oZT4SGE6baXpPFOMSXqk/jrEUYEtNnUj9HEfA3DAxd YiBH6v1lFiAtvCGDp1k0oezdJnOvzfro9xHIK7OLF243PsVMwQE19BaFCQA9xRwW yb2etpiIrZGbTMrheDLauboJ0ITmbfzLTW3pK/v9QfO8oPR1vdznIhN47jKSa8JO 4VdfzLrlc36+sEMPP74vrVgVGgT89kxJqvJ8F3n6cjqsxPbl3P5jOkaUxGDWkB3F Oce45AoeN8ojyZDGuS4mVjZgd6HCfR62tu9bRDqz0uUjAgMBAAE= -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 355517426757585986612516983362296039256798 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-11 12:52:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-10 12:52:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'portallgpd.tppf.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 3965777347650588867701052025758378715845244212809380030847502034638144681192219079608988461474948236976567545737808485004443076445223109339342525784847394685284176245196182764245051683687976598799641209231630039164022421951889570637055457014962723132023577466172473930393299295484928008000823288436319328172624393870370048819530826100498267776693920863800238009281658015090008025109150541850628523280287453416433456359682437268275054973074261557792673957773759592067164397686633454809825137228994460358360470640907014628762498177397292839943736664358088547818438227121590922222652166847345932260475957713625427722278132251148878200841457347355963400497550284642983499103006160907600103830768470066568714133183924883141943820680159360251755207656191040265149936271455887252530875366262808588874640797132327512578043298391552193884550873216507127403642128248012091350889715216394018383845161226054202422573293573572493571188003 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0a5835696dbead5ffddab0c55d9a21efc40afb4c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lgpdtppf.nuvemx.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portallgpd.tppf.com.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ecd6e18270000040300473045022100d07bc14ff3f14bb30b8c9a928314a2503fb97838aa195cd16a048db885aee53202204339aa1ff82cb662009bfea4067fd7e5a6fd37ef7af6a9eda75575b75b26bdbd0076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018ecd6e186f000004030047304502202d3027bb822123454c33cefa5bf3ee970970700a8e3dcd935c269f4ecbe5229c022100caf7bafdc9c773f3fcc7e2867d3a237910acd9dc787aad109a8ce5c422095271 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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