agrositio.com
Issued by R3
About this certificate
This digital certificate with serial number 04:40:13:72:e1:94:8e:ba:b3:0c:16:62:dd:09:1e:0d:38:8c was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=agrositio.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:40:13:72:e1:94:8e:ba:b3:0c:16:62:dd:09:1e:0d:38:8cSerial Number (int): 370253067039054936070947018826450918520972
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: c0:cb:0c:ac:4b:15:89:70:91:8d:bb:f4:4b:9f:5e:56:93:c2:6e:94
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 92:b4:92:49:fc:8b:75:0b:5a:14:8a:88:7c:16:d0:0c:58:1f:81:15
Fingerprint (sha256): 6e:b6:2f:42:a8:80:9e:52:93:d2:8a:b6:60:b5:37:12:8e:79:e4:6b:d3:c3:4c:cf:49:92:c7:07:44:7c:80:91
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate agrositio.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for agrositio.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
agrositio.com
www.agrositio.com
www.agrositio.com
Other certificates including the domain name agrositio.com
(limited to 100 certificates)
agrolinux3.agrositio.com
agrositio.com
agrositio.com
adserver.agrositio.com
aka-agrotv.agrositio.com
agrolinux3.agrositio.com
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
mail.agrositio.com
zone100.cepi2.edge-cdn.com.ar
www.agrositio.com
agrositio.com
www.agrositio.com
agrolinux3.agrositio.com
zone100.cepi2.edge-cdn.com.ar
agrositio.com
agrotv.agrositio.com
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
agrotv.agrositio.com
zone100.cepi2.edge-cdn.com.ar
agrotv.agrositio.com
zone100.cepi2.edge-cdn.com.ar
agrositio.com
agrositio.com
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
agrotv.agrositio.com
www.agrositio.com
statics.avstreaming.net
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
www.agrositio.com
zone100.cepi2.edge-cdn.com.ar
agrotv.agrositio.com
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
agrositio.com
zone100.cepi2.edge-cdn.com.ar
adserver.agrositio.com
zone100.cepi2.edge-cdn.com.ar
www.agrositio.com
agrositio.com
agrositio.com
adserver.agrositio.com
aka-agrotv.agrositio.com
agrolinux3.agrositio.com
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
mail.agrositio.com
zone100.cepi2.edge-cdn.com.ar
www.agrositio.com
agrositio.com
www.agrositio.com
agrolinux3.agrositio.com
zone100.cepi2.edge-cdn.com.ar
agrositio.com
agrotv.agrositio.com
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
agrotv.agrositio.com
zone100.cepi2.edge-cdn.com.ar
agrotv.agrositio.com
zone100.cepi2.edge-cdn.com.ar
agrositio.com
agrositio.com
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
agrotv.agrositio.com
www.agrositio.com
statics.avstreaming.net
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
www.agrositio.com
zone100.cepi2.edge-cdn.com.ar
agrotv.agrositio.com
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
zone100.cepi2.edge-cdn.com.ar
agrositio.com
zone100.cepi2.edge-cdn.com.ar
adserver.agrositio.com
zone100.cepi2.edge-cdn.com.ar
www.agrositio.com
Certificate
The complete raw certificate details for agrositio.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgISBEATcuGUjrqzDBZi3QkeDTiMMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMTkwNDQ1MzdaFw0yNDA1MTkwNDQ1MzZaMBgxFjAUBgNVBAMT DWFncm9zaXRpby5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG 22psQyHZr8ajBD3txLDNjfE0ix24XzbmQGf1B4X4VmpSjp2H7D34shh4+e3IgQKv jLFikEsHzDdPH+SoGnpyajw5dNkKaSFJfvloD+365oQoxpXuBbq17HS/z15871nd 2SjI3ySUrnbQ89PB9a3EuHGXVqHzGykFgwGARJVSlL4buHhqnOFncfKVaNSnwsHp 88w14wYuSCbIVZOl1ZCk1/I73OMj7/jhdD3JRg8dOirLDtSG8dWEwzALOVu3GuNu ZDkKpnzMU8UfblDM1Am9lVVonem95+q3y4oqs4ge+TyEiYvbFe8iMQVbD2TYEhDA vz+Af7+1gpGj6PEyLQVBAgMBAAGjggIiMIICHjAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFMDLDKxLFYlwkY279EufXlaTwm6UMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MCsGA1UdEQQkMCKCDWFncm9zaXRpby5jb22CEXd3dy5hZ3Jvc2l0aW8uY29tMBMG A1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAO1N3 dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGNv+X/jQAABAMARzBFAiEA 4W+Dw01bwm6XJznqpZ2WMVOlnW2jWylYjXbpaJcLFeYCIAi4AVP8jkiDCNr981QB d0tm3jHWiq9jQnIkOXe44UGlAHYAouK/1h7eLy8HoNZObTen3GVDsMa1LqLat4r4 mm31F9gAAAGNv+X/lAAABAMARzBFAiBtQEdip0rVX1PP8vcajp0nRi85Om6skksf Nt5lkgfnyAIhANYmPnWGkNYJl5QrO3Pbk+uGS897ht5BNgP5Lf/av2oGMA0GCSqG SIb3DQEBCwUAA4IBAQA9nHTp9krH+bMbBs7gkCVKNK7GKPmqPBF9L+8N1Kby11ru 35epHWZ8mFmDRCRby+MdxRuTOu+d8JdfnDMkmlEBOE4cnMgyHsj5sQ+EiShVXlBz FTpnqki1VvnKS6yZ6rfEECn7VuBLOTftne8CkXdoaHpJI4iPtJmPHrl5nE7Xw89n /lu2ECvEZbuOcEmXJYPPOSTvwHnJtWm8o4Wr6N8ySGcM7imSZ/ApWP0N0ZcMc+J+ kJ179IS5OuVV18M+2OB+hlJfsvCCzJntkyNLSG2YJTs2k9sDnEBT3qUOT/8tO6K7 9Ye/AegZ8IlqVq/WRMJDK9qIDYH+h7EtEnRC1KJe -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxttqbEMh2a/GowQ97cSw zY3xNIsduF825kBn9QeF+FZqUo6dh+w9+LIYePntyIECr4yxYpBLB8w3Tx/kqBp6 cmo8OXTZCmkhSX75aA/t+uaEKMaV7gW6tex0v89efO9Z3dkoyN8klK520PPTwfWt xLhxl1ah8xspBYMBgESVUpS+G7h4apzhZ3HylWjUp8LB6fPMNeMGLkgmyFWTpdWQ pNfyO9zjI+/44XQ9yUYPHToqyw7UhvHVhMMwCzlbtxrjbmQ5CqZ8zFPFH25QzNQJ vZVVaJ3pvefqt8uKKrOIHvk8hImL2xXvIjEFWw9k2BIQwL8/gH+/tYKRo+jxMi0F QQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 370253067039054936070947018826450918520972 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-19 04:45:37 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-19 04:45:36 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'agrositio.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25103382304666958423566077941229978013136936272918233415569803863414804376601895642842643772840345250557552423295120114756302810842363805814156773153784466672524538939872361196575543566185423134276316174672645428296895641232873840599419790488376495135981402106740828470791881310355008292705907545479994145939868454557025061715656660928324011669022035852899489677861303682211122260805406428477669302258166768914909919879055362255252017337853572075861761623028890284997943563161656697524434146478198666728476963584478406627270936491537299165552197841503196147971636817077648996393005272994653914308388028625607191233857 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c0cb0cac4b158970918dbbf44b9f5e5693c26e94 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'agrositio.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.agrositio.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018dbfe5ff8d0000040300473045022100e16f83c34d5bc26e972739eaa59d963153a59d6da35b29588d76e968970b15e6022008b80153fc8e488308dafdf35401774b66de31d68aaf634272243977b8e141a5007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018dbfe5ff94000004030047304502206d404762a74ad55f53cff2f71a8e9d27462f393a6eac924b1f36de659207e7c8022100d6263e758690d60997942b3b73db93eb864bcf7b86de413603f92dffdabf6a06 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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