inagesp.org.br
Issued by R3
About this certificate
This digital certificate with serial number 04:33:fe:7d:08:b6:d4:c9:d9:57:37:57:8b:7f:53:cf:b0:1d was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=inagesp.org.br
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:33:fe:7d:08:b6:d4:c9:d9:57:37:57:8b:7f:53:cf:b0:1dSerial Number (int): 366141817564790190957642558149639751577629
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 39:bd:f4:75:51:0e:07:28:65:1d:87:50:d8:a7:75:22:8c:5e:70:85
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 18:78:c5:b7:2e:ce:c4:90:fb:6b:04:e9:e4:80:19:8d:a7:44:70:75
Fingerprint (sha256): 85:29:2c:2b:b8:ed:1b:84:07:29:7b:2b:d0:fd:b0:ae:59:95:76:58:db:68:4e:62:3a:d6:ab:b5:4e:51:6e:fa
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate inagesp.org.br
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for inagesp.org.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.inagesp.org.br
inagesp.org.br
inagesp.org.br
Other certificates including the domain name inagesp.org.br
(limited to 100 certificates)
Certificate
The complete raw certificate details for inagesp.org.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFNjCCBB6gAwIBAgISBDP+fQi21MnZVzdXi39Tz7AdMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA0MTEwMzE2MDdaFw0yMzA3MTAwMzE2MDZaMBkxFzAVBgNVBAMT DmluYWdlc3Aub3JnLmJyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA 0wdeDMyrP7WKuRHpqs63xaUyNsO0b/rnpaWXTf/h9So4huDsGFe1OqIxeFpBH+c6 ObAVFRBYGiQ8g9khEWk8nUEM0mlw3TVNTLx6P9BqhxcU3CQfprXNGhpHNzZoql2Z /JaI/5cjRFEsqFoZzEY4/aQ9qMPHimCkXLBi/XQUggXWUI42uKEZ6wyyRgNp6Alu ofEoloBmfb1YgD2ywmaRfiSp3X7A+LLUtyEuxphR9A+V30zNyrl3/IYYK87viGD8 yrvEDaUb9IidwnSVEr1YTUAKLpdSm4ZjXs7jYbur4MXFrn89yi3BHOxdvc9cI0K/ P5cSMGPqo22I9KtS5IJD1wIDAQABo4ICXTCCAlkwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBQ5vfR1UQ4HKGUdh1DYp3UijF5whTAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzArBgNVHREEJDAighAqLmluYWdlc3Aub3JnLmJygg5pbmFnZXNwLm9yZy5icjBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQYGCisGAQQB1nkCBAIEgfcE gfQA8gB3ALc++yTfnE26dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAABh26HN+sA AAQDAEgwRgIhANEfsIWwW8q9UHDLvPTvtTt69c1x+f/X751eCKUGy9pvAiEAojEI CDivpgER2sCUCst1x1eHXmmxM6wgnBB6OmDTwXAAdwCt9776fP8QyIudPZwePhhq tGcpXc+xDCTKhYY069yCigAAAYduhzgZAAAEAwBIMEYCIQC0MFHZlKK0APVIf1SM v0wEgSR+MgX5Z4inlapXFPdh4QIhAOr7r95UPp4jlhWOMupZiCzzJrv4dR22UpcU xrafIeX1MA0GCSqGSIb3DQEBCwUAA4IBAQAqrbPCC1LCcSi4bvPYvTI3vdfrRiN3 yJHnoBJE1q9TvD6+XFRreB3hA10dR8QXOqkgRwuKDc0cVJkyCqTPjMARFym5Uob8 nJeoSUnIP1d5nvZsM+i+7TzNtAFQKaT8M5XS2MI4LXYFUukAzpt9zifwUlDFsBKz ejMCbEBV/E3L2KH6AHdHYsdQT2RXPAbFYzvWKlsqPfypTO2ZymdLlFzdYTiNSjKK 4Ef/y63zdKAPH9m9btofhgcZcvvCnKqCwHZMiBaQUYLlX/zqVuF8WykxrUYg5nW7 KPja+t7dKM9/2UqBzIbczw3/obkhNIngvcZYURqAa+VclQCkmktvGUdT -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0wdeDMyrP7WKuRHpqs63 xaUyNsO0b/rnpaWXTf/h9So4huDsGFe1OqIxeFpBH+c6ObAVFRBYGiQ8g9khEWk8 nUEM0mlw3TVNTLx6P9BqhxcU3CQfprXNGhpHNzZoql2Z/JaI/5cjRFEsqFoZzEY4 /aQ9qMPHimCkXLBi/XQUggXWUI42uKEZ6wyyRgNp6AluofEoloBmfb1YgD2ywmaR fiSp3X7A+LLUtyEuxphR9A+V30zNyrl3/IYYK87viGD8yrvEDaUb9IidwnSVEr1Y TUAKLpdSm4ZjXs7jYbur4MXFrn89yi3BHOxdvc9cI0K/P5cSMGPqo22I9KtS5IJD 1wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 366141817564790190957642558149639751577629 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-11 03:16:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-10 03:16:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'inagesp.org.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26639915339702822165059523445891123375578083255756033490635849309683764955716846194697819119144212173953702766065816524799908359772349113085921233284851629687057837614832288984729120987639304692630441657489365571244915947508743340255036075374084916295962837470554433415554404098330047480593440098622696663262745658867235796802699570026984351092365369510791569045864525361538775393413488100701025101819412362588088536838235688896130940613874688690736894083658034829773559912581599454055754148498783726316140302010555625059516439558127430290125098837797757555172846796442608061888613636045270105886336974720003205120983 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 39bdf475510e0728651d8750d8a775228c5e7085 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.inagesp.org.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'inagesp.org.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb499000001876e8737eb0000040300483046022100d11fb085b05bcabd5070cbbcf4efb53b7af5cd71f9ffd7ef9d5e08a506cbda6f022100a231080838afa60111dac0940acb75c757875e69b133ac209c107a3a60d3c170007700adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a000001876e8738190000040300483046022100b43051d994a2b400f5487f548cbf4c0481247e3205f96788a795aa5714f761e1022100eafbafde543e9e2396158e32ea59882cf326bbf8751db6529714c6b69f21e5f5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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