neis1.com
Issued by R3
About this certificate
This digital certificate with serial number 03:b5:61:0e:d3:2c:8a:9b:f6:c1:9b:08:82:10:ac:d3:16:b8 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=neis1.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:b5:61:0e:d3:2c:8a:9b:f6:c1:9b:08:82:10:ac:d3:16:b8Serial Number (int): 323056978298835121155261995072578378733240
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: aa:78:db:0d:45:43:89:4d:d7:f8:98:77:45:2e:80:46:d9:26:1c:19
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ac:71:a9:1e:fd:09:e2:1b:f6:15:ac:a7:fc:e1:cd:3d:ea:2f:65:43
Fingerprint (sha256): 85:4b:80:15:89:ef:cb:8d:2d:e8:45:30:a9:65:4f:52:83:19:83:cf:6e:0c:1a:3a:98:a9:54:0e:f5:e1:93:71
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate neis1.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for neis1.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
neis1.com
www.neis1.com
www.neis1.com
Other certificates including the domain name neis1.com
(limited to 100 certificates)
*.neis1.com
careers.interscripts.com
neis1.com
careers.digitalzomads.com
jobs.providerconnects.com
mail.neis1.com
mail.neis1.com
jobs.providerconnects.com
mail.neis1.com
neis1.com
careers.allthings-hr.com
careers.digitalzomads.com
neis1.com
careers.digitalzomads.com
neis1.com
neis1.com
careers.allthings-hr.com
vpn.neis1.com
mail.neis1.com
*.neis1.com
*.neis1.com
*.neis1.com
neis1.com
careers.digitalzomads.com
neis1.com
neis1.com
neis1.com
apply.danby.ny.gov
*.neis1.com
careers.goalkeep.co.uk
neis1.com
recruit.synergyconsultingifa.com
jobs.ydts.ca
mail.neis1.com
neis1.com
mail.neis1.com
careers.neis1.com
mail.neis1.com
careers.allthings-hr.com
vpn.neis1.com
careers.neis1.com
mail.neis1.com
jobs.sizanid.com
careers.allthings-hr.com
mail.neis1.com
careers.interscripts.com
neis1.com
careers.digitalzomads.com
jobs.providerconnects.com
mail.neis1.com
mail.neis1.com
jobs.providerconnects.com
mail.neis1.com
neis1.com
careers.allthings-hr.com
careers.digitalzomads.com
neis1.com
careers.digitalzomads.com
neis1.com
neis1.com
careers.allthings-hr.com
vpn.neis1.com
mail.neis1.com
*.neis1.com
*.neis1.com
*.neis1.com
neis1.com
careers.digitalzomads.com
neis1.com
neis1.com
neis1.com
apply.danby.ny.gov
*.neis1.com
careers.goalkeep.co.uk
neis1.com
recruit.synergyconsultingifa.com
jobs.ydts.ca
mail.neis1.com
neis1.com
mail.neis1.com
careers.neis1.com
mail.neis1.com
careers.allthings-hr.com
vpn.neis1.com
careers.neis1.com
mail.neis1.com
jobs.sizanid.com
careers.allthings-hr.com
mail.neis1.com
Certificate
The complete raw certificate details for neis1.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgISA7VhDtMsipv2wZsIghCs0xa4MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MjQwNTA0NDdaFw0yMzEyMjMwNTA0NDZaMBQxEjAQBgNVBAMT CW5laXMxLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALqtQEf5 MIgPmTQcYFdsKyOWzV6mDzl1PhTvzAf0XufI22u4CxaPJ8YFodC/G/kAyNVMWq8j AlBPrz4Pj4qBTnktslccK/B2gKvXvwJN6/7rEvDDtG1MiDK2W/aWu4YZU3aSo8Wa oGDduzgnno7kLjS0SquMmWt9R11S81wMkZhlyr3h+sNNuD8jo2hAJcKA1yl8QD/+ LrmI5rX4I0LcDepWOoIUC1A9Iu5iMxVvcT+zF0Zp2GYixPdmo5cEfblaoGljk6R4 VX9rWGnH24oUoao5ibV2Bv8fDMvXrs3toluP8BY0BKZaKhQiHN8kvQwy3QyiV5lD A56ktrFejwOxgD8CAwEAAaOCAhowggIWMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU qnjbDUVDiU3X+Jh3RS6ARtkmHBkwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+v nYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5s ZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wIwYD VR0RBBwwGoIJbmVpczEuY29tgg13d3cubmVpczEuY29tMBMGA1UdIAQMMAowCAYG Z4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAtz77JN+cTbp18jnFulj0 bF38Qs96nzXEnh0JgSXttJkAAAGKxcpY7gAABAMARzBFAiEAvkU9Ryj8GDNtwBnH j7P5Dzd5L/AQlo/OK46CqRAHEY0CIB+4lLf326SZbR8Vm30rkPqzY/tiJS7DgmFh gQD2DPe3AHYA6D7Q2j71BjUy51covIlryQPTy9ERa+zraeF3fW0GvW4AAAGKxcpY /QAABAMARzBFAiEArlKVJ+Y2jFdFZLa+O5zrrcG0BXeBqt1cftPU2iv7ObcCIFf0 fYUDPssV+HkfSlR/FaV9vFUQEJ6IWdBZTsoiKRZyMA0GCSqGSIb3DQEBCwUAA4IB AQB8kLdsAi4ecGTU6YHlx4Dtx5IP5q8fbJ7hSP1A4gpZsIkWhXrL1gKPra9YNxEg PPsSaDpBxhu83XeAl4J7orlbE9/A2wLAjaXMlE4wHOeFQJOKosfANHRNdxByQdBI PFKUZz4oeSy3cmLV6SpyZ/IlIPMKrMeCiQkGFedLif3ybXPXtidrIimN06Y24TmK ulSvnNx8RWyfmuXk9aPMrFPfqoB8T7YJJvpvz00qrKKMZRhqGIQPEsZLseb465/e 82bFtinP0oXnR2r8iqPML33fHG7YwFW7xmarEYZKI1hNbr46vmHqSvNgMToD6L53 ksyOobQUGYyTLyYUpImOfUcJ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuq1AR/kwiA+ZNBxgV2wr I5bNXqYPOXU+FO/MB/Re58jba7gLFo8nxgWh0L8b+QDI1UxaryMCUE+vPg+PioFO eS2yVxwr8HaAq9e/Ak3r/usS8MO0bUyIMrZb9pa7hhlTdpKjxZqgYN27OCeejuQu NLRKq4yZa31HXVLzXAyRmGXKveH6w024PyOjaEAlwoDXKXxAP/4uuYjmtfgjQtwN 6lY6ghQLUD0i7mIzFW9xP7MXRmnYZiLE92ajlwR9uVqgaWOTpHhVf2tYacfbihSh qjmJtXYG/x8My9euze2iW4/wFjQEploqFCIc3yS9DDLdDKJXmUMDnqS2sV6PA7GA PwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 323056978298835121155261995072578378733240 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-24 05:04:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-23 05:04:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'neis1.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23565758024365299857946725637725527221113170293269827624903221443439113778334889363664681407281081805906951274877338260766036959858566010597658169487866990947012364693351830685739706565054327412346866585930171535274662723635763682084549320676485363725554410370346269827700789643108047689475189080255693615771284749509682138579423619591362284921855680637348379994891121332509007486885402443782992294161373922596399791357347250856190343898415866922397150635170408484131852018751203639193415726283474468861426820943029978444595190609288441805672309770673744000895843478675968066808649442020459930961424530645894671990847 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) aa78db0d4543894dd7f89877452e8046d9261c19 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'neis1.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.neis1.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018ac5ca58ee0000040300473045022100be453d4728fc18336dc019c78fb3f90f37792ff010968fce2b8e82a91007118d02201fb894b7f7dba4996d1f159b7d2b90fab363fb62252ec38261618100f60cf7b7007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018ac5ca58fd0000040300473045022100ae529527e6368c574564b6be3b9cebadc1b4057781aadd5c7ed3d4da2bfb39b7022057f47d85033ecb15f8791f4a547f15a57dbc5510109e8859d0594eca22291672 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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