segmenti.com
Issued by R3
About this certificate
This digital certificate with serial number 04:f7:c9:c3:3f:1e:25:c6:17:3f:19:dd:29:68:f9:5a:86:54 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=segmenti.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:f7:c9:c3:3f:1e:25:c6:17:3f:19:dd:29:68:f9:5a:86:54Serial Number (int): 432767076961733309771727632686277681907284
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 91:73:7d:bb:1e:f2:14:42:fc:08:b4:56:1b:80:e0:d2:d0:af:10:70
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 50:28:81:bf:8c:d6:dd:81:c2:b8:46:20:ee:8d:bf:0f:b0:ed:28:6f
Fingerprint (sha256): 75:56:9f:56:b8:05:26:2b:29:2d:d8:3a:94:40:1e:da:82:90:8f:08:6e:6c:3a:5e:91:5e:5f:db:18:01:9f:96
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate segmenti.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for segmenti.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
segmenti.com
Other certificates including the domain name segmenti.com
(limited to 100 certificates)
hasantrove.com
www.localaikido.co
bertlink.com
dressedtowin.com
www.nevadadebtconsolidation.com
realstorm.com
www.inksofmarch.com
www.cooltenerife.com
segmenti.com
opticount.com
www.enviroserv.international
segmenti.com
www.velocityaviation.com
finalgreenmile.com
h8.org
www.fastestcupofcoffee.com
neoexam.com
www.dizayn.co
kaiane.org
lklco.com
www.gorillamedia.net
www.hawaiinursinghomelawyer.com
huuzz.com
www.localaikido.co
bertlink.com
dressedtowin.com
www.nevadadebtconsolidation.com
realstorm.com
www.inksofmarch.com
www.cooltenerife.com
segmenti.com
opticount.com
www.enviroserv.international
segmenti.com
www.velocityaviation.com
finalgreenmile.com
h8.org
www.fastestcupofcoffee.com
neoexam.com
www.dizayn.co
kaiane.org
lklco.com
www.gorillamedia.net
www.hawaiinursinghomelawyer.com
huuzz.com
Certificate
The complete raw certificate details for segmenti.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4zCCBMugAwIBAgISBPfJwz8eJcYXPxndKWj5WoZUMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTQwNDUxNThaFw0yNDA3MTMwNDUxNTdaMBcxFTATBgNVBAMT DHNlZ21lbnRpLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALiZ 7eMmjJj+Wq8rqw/nZ5JleMgOmoU9DC+ZnU1IqmPxLkV6WLv0sPkoZ6ATDohbI++8 Lqew4onFW3mLuDx3ACWNDBElvr0WKiAPrXx87e1zFtoiPVpeAIcx5huX6s/LFrmU CEdgencEeVarYUFGWoppRBloJOSUqTA2PyMTi8eFkRBE55lWps6h8HsTt0XsPFkv PrruwUBnazxocezqgk5BRBAcmzM6z62DmBox1UupWnpGp4De+HsurenlOgVoZ/Rg y6kIGEJByJnnrTlloLSC/cdY3ov8YLCcr6K7pWSpO31La2dBfwO80ICBTbCjyzg3 eNPzrrCnK5toJiJbv57kOs21WHu2aTUgiSuA5ZFIhPdkQ83oLlY/aD7NkhvQPlr1 Wv5ZUtiBWs4a2IHg45rKbstJo1Pg4h/0F9v1YvvFoKKzgAhTCvr9o+CZnmzJe7pA JtWgASan+ZpSsZTOz4coM5bUX3FUFLgWlvHqfdGouBX4HOTXSiKHWBtqMmjxOOUE 1uK6h9Uo+o77ouPPeMaJJsEs+ji9x3F7N/aTQJWZvD7ynodIogm2zls5WYJbSTKV 6CxDaDAbkIl8m2rxaJoV3q6xccqcMpexMPl3an5pQisK2JGsFerPWbdmWK4uQ1OQ qblAV1jB0U7fKOHY9naMDV5FZS0sr4MPPSPJCfNJAgMBAAGjggIMMIICCDAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFJFzfbse8hRC/Ai0VhuA4NLQrxBwMB8GA1UdIwQY MBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEF BQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8v cjMuaS5sZW5jci5vcmcvMBcGA1UdEQQQMA6CDHNlZ21lbnRpLmNvbTATBgNVHSAE DDAKMAgGBmeBDAECATCCAQIGCisGAQQB1nkCBAIEgfMEgfAA7gB1AO7N0GTV2xrO xVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjtspkWAAAAQDAEYwRAIgd4OXnPPd CJTcoeDZB8njopnZU4GoTKX4IKuD6n+KnBECIAgRwsq9lAMm0Is6vgY9ZfWnPuad MAbhcr2nhxnawKPaAHUA3+FW66oFr7WcD4ZxjajAMk6uVtlup/WlagHRwTu+UlwA AAGO2ymSHgAABAMARjBEAiAue+33EN5sSBTumRiANOfZC0ZJ0qOCpwx0KsL3BxXk JQIgI68UBxeOG8ewA1U4oypII6omj+bqhqhl7FVI5I/8G8IwDQYJKoZIhvcNAQEL BQADggEBADJv10Ek3nK3L/HbYHU/zrl5WzLpDND3cduN8vg9ksgq5mONp3OMB1Cy aTGjMtkSMt5QArzYH+a1grutF21pJ/ARtYMfEgLhfwoB0bYY/5yscGErkIQBVF1D WyD9sF+Xf+VxIoJ/50LyfRREw/RQDBUdW0WXZW7eZ/TLdsBPVQdmr2BRkqGJiXxg 1s43pYY9hUZPNOAc+KomwZWO/4PLaZPE/8/nDS10MWWyeAai6A5CooyjNUgpFaoV q9me1c83btEjnifwpUktpo21WzbX52PMmyXeI1fDn/4OlyBXkglLckIeU8nJyKTU FfqYtUcX+v5+F+LsJ7hu2OfTjUYXVug= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuJnt4yaMmP5aryurD+dn kmV4yA6ahT0ML5mdTUiqY/EuRXpYu/Sw+ShnoBMOiFsj77wup7DiicVbeYu4PHcA JY0MESW+vRYqIA+tfHzt7XMW2iI9Wl4AhzHmG5fqz8sWuZQIR2B6dwR5VqthQUZa imlEGWgk5JSpMDY/IxOLx4WREETnmVamzqHwexO3Rew8WS8+uu7BQGdrPGhx7OqC TkFEEBybMzrPrYOYGjHVS6laekangN74ey6t6eU6BWhn9GDLqQgYQkHImeetOWWg tIL9x1jei/xgsJyvorulZKk7fUtrZ0F/A7zQgIFNsKPLODd40/OusKcrm2gmIlu/ nuQ6zbVYe7ZpNSCJK4DlkUiE92RDzeguVj9oPs2SG9A+WvVa/llS2IFazhrYgeDj mspuy0mjU+DiH/QX2/Vi+8WgorOACFMK+v2j4JmebMl7ukAm1aABJqf5mlKxlM7P hygzltRfcVQUuBaW8ep90ai4Ffgc5NdKIodYG2oyaPE45QTW4rqH1Sj6jvui4894 xokmwSz6OL3HcXs39pNAlZm8PvKeh0iiCbbOWzlZgltJMpXoLENoMBuQiXybavFo mhXerrFxypwyl7Ew+XdqfmlCKwrYkawV6s9Zt2ZYri5DU5CpuUBXWMHRTt8o4dj2 dowNXkVlLSyvgw89I8kJ80kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 432767076961733309771727632686277681907284 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-14 04:51:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-13 04:51:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'segmenti.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 753107541877472870173997464648623696418462674861367761625476814096943594447023625345198654674963318027934595297935879384036783002337269542801172828997211648879263626112316130883319669998261974350528979712023456809055213606071131610635398318958265503650550988171260227377178954071754486033780109767163157732745925087503654641813534875142069964008990091997772425856213456599849787540035565216873566186052062442347701257354625028994925292327930959619664214865843696181356656464011512093961549668618577119248812925271760178528852072918474461770313187269113964275902486553708074448656434734280033904414841628904039751663873683952479464281870402202482622759717217904765402380711844150918228011320301443430314547958027754225336722522070405678903894553141756216672675358972387779136729327613503144055704684155395040418018297954001334945594834048612152496701736792689419339425591559960575163072640139573912792608837938247327320999060831198848987629802330856099574396790290673167712867466268866465279644339930261654916204050781794473540087049316227030035156648901999514866688756436653736401804652118694065276711609931457089514989263932493392654639722324610708947473979055103786853093404713562913494985576395319055471886696711503716259067458377 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 91737dbb1ef21442fc08b4561b80e0d2d0af1070 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'segmenti.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018edb299160000004030046304402207783979cf3dd0894dca1e0d907c9e3a299d95381a84ca5f820ab83ea7f8a9c1102200811c2cabd940326d08b3abe063d65f5a73ee69d3006e172bda78719dac0a3da007500dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018edb29921e000004030046304402202e7bedf710de6c4814ee99188034e7d90b4649d2a382a70c742ac2f70715e425022023af1407178e1bc7b0035538a32a4823aa268fe6ea86a865ec5548e48ffc1bc2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00326fd74124de72b72ff1db60753fceb9795b32e90cd0f771db8df2f83d92c82ae6638da7738c0750b26931a332d91232de5002bcd81fe6b582bbad176d6927f011b5831f1202e17f0a01d1b618ff9cac70612b908401545d435b20fdb05f977fe57122827fe742f27d1444c3f4500c151d5b4597656ede67f4cb76c04f550766af605192a189897c60d6ce37a5863d85464f34e01cf8aa26c1958eff83cb6993c4ffcfe70d2d743165b27806a2e80e42a28ca335482915aa15abd99ed5cf376ed1239e27f0a5492da68db55b36d7e763cc9b25de2357c39ffe0e97205792094b72421e53c9c9c8a4d415fa98b54717fafe7e17e2ec27b86ed8e7d38d461756e8