nestoria.com.br
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:0e:c9:3c:96:f0:e5:24:93:01:9f:3b:18:02:1e:1d:ca:4e was issued on by Let's Encrypt.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=nestoria.com.br
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:0e:c9:3c:96:f0:e5:24:93:01:9f:3b:18:02:1e:1d:ca:4eSerial Number (int): 266368300358585274442440712339249935796814
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: c6:5e:ed:ae:91:9a:40:0c:a5:90:b6:73:d5:44:0d:50:9a:cf:c1:69
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 2b:93:80:6c:45:88:d8:f0:01:6d:fa:c3:26:bc:b9:78:4a:2a:82:25
Fingerprint (sha256): 87:35:3c:76:85:9e:58:01:39:58:76:69:18:15:0d:d1:1a:f4:41:21:b7:88:22:ec:8a:22:b1:55:3c:1d:58:79
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate nestoria.com.br
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nestoria.com.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api.nestoria.com.br
nestoria.com.br
rss.nestoria.com.br
s.nestoria.com.br
share.nestoria.com.br
www.nestoria.com.br
nestoria.com.br
rss.nestoria.com.br
s.nestoria.com.br
share.nestoria.com.br
www.nestoria.com.br
Other certificates including the domain name nestoria.com.br
(limited to 100 certificates)
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
www.nestoria.cl
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
www.nestoria.cl
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
nestoria.com.br
nestoria.com.br
nestoria.com.br
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
amp.nestoria.ae
amp.nestoria.ae
nestoria.com.br
Certificate
The complete raw certificate details for nestoria.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgISAw7JPJbw5SSTAZ87GAIeHcpOMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMTkxODQ0NTFaFw0x OTA2MTcxODQ0NTFaMBoxGDAWBgNVBAMTD25lc3RvcmlhLmNvbS5icjCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAKQc+AA/BVFMNSN1izAqkHu9+LBA/XwS 7MoPm5UgvOravGHP+ej6mqLFH/vRPOd/HRHtTAyu1tvbIRKxZAP7DwhDHq5TGSac PSCQQgKdUo62W7d77JTD1fDvx7ryfBL6aNOPbiukAwEjndnW+pC6HIXE8LA/SWJU rQKV9S0PnIdb5ooWtKqBIBSUoFi1Uj/gLnR/IeHYJNEEmDvMgTwj7UmiiKhDFckp 8UZfqLBzZHoqrrqwIQW9UMlSD6Sh0yFWlkhg8SBuOj9D1/7hdEy1QXaXsN+KaXai vqhuoIMk/AktV7RWKB2oCpd/84twNydH3wyw/C5zPukURLP+2Owt8pECAwEAAaOC As4wggLKMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUxl7trpGaQAylkLZz1UQNUJrP wWkwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEE YzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQu b3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQu b3JnLzCBgwYDVR0RBHwweoITYXBpLm5lc3RvcmlhLmNvbS5icoIPbmVzdG9yaWEu Y29tLmJyghNyc3MubmVzdG9yaWEuY29tLmJyghFzLm5lc3RvcmlhLmNvbS5icoIV c2hhcmUubmVzdG9yaWEuY29tLmJyghN3d3cubmVzdG9yaWEuY29tLmJyMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHcA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4AAAFpl3wueQAABAMA SDBGAiEAq7Jh9vY8AeB4lCP46ky7G8TCXwuJ4OfkeCkqL7qfh0UCIQDVfR8ivFU3 I3Bl65VtH09kbye/46a4e3IsoI7VsfsAgwB1ACk8UZZUyDlluqpQ/FgH1Ldvv1h6 KXLcpMMM9OVFR/R4AAABaZd8Ls4AAAQDAEYwRAIgPPp0N8KUQLed7ipm58Xdz8QD SAUzC08eVDUg6cGZmNACID9ViygHtnrDXxP0br+TJNnqCTHSlYfDAJLulhHGVSZk MA0GCSqGSIb3DQEBCwUAA4IBAQACsa/dL2PSangMjD4TzM/d183bv2WUsjCcuBX/ wwrJWzJlUhlqDdmSirnnWe/hmyrZ1A+hIrPdcWHQPh66PUng8E0rtJdzrIDzI/Gx OIOchQ/bsekBIngrZZRPlu5g54rqW0UfAveT0/BMfycW41u4NqTRr4jAqSQwpy6K d6ENG+iq794juafvDfQXh1Our88fjRg/5wJgDW9U9DmiWGxEDk6Q/Q9bZmmoMJBq VYPmH+/Q+BLxwyBD7JsEJINd7UzujGmQh6JUxQp/v7i1pMAD+ujhTUHH//4PNrby Pri5LdZAFgV5MTG6KJrUHPDH7nnTQrjpOy0mfK6m/wiBrKPL -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApBz4AD8FUUw1I3WLMCqQ e734sED9fBLsyg+blSC86tq8Yc/56PqaosUf+9E8538dEe1MDK7W29shErFkA/sP CEMerlMZJpw9IJBCAp1SjrZbt3vslMPV8O/HuvJ8Evpo049uK6QDASOd2db6kLoc hcTwsD9JYlStApX1LQ+ch1vmiha0qoEgFJSgWLVSP+AudH8h4dgk0QSYO8yBPCPt SaKIqEMVySnxRl+osHNkeiquurAhBb1QyVIPpKHTIVaWSGDxIG46P0PX/uF0TLVB dpew34ppdqK+qG6ggyT8CS1XtFYoHagKl3/zi3A3J0ffDLD8LnM+6RREs/7Y7C3y kQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 266368300358585274442440712339249935796814 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-19 18:44:51 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-17 18:44:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nestoria.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20717367039321029415013820214757690442574421559593645603281808387037740357832667120550525566505463809317050808353636907820772173415516137876439906771035903175255955367490451742053475524574322636098652365253942955094133559255945310931474586355708103315367801273120984707861854134458127341782994437509529903939792302061916165778145681110817213109516400930101545092333889256112485822154003773496753182560729726437376399330577322033707990972140409597710080450382530414216213265530075684682749680306049440076225507687349518594764567768317128700707626844735971946322525096388099338535252521749456746418292964514607267705489 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c65eedae919a400ca590b673d5440d509acfc169 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.nestoria.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nestoria.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rss.nestoria.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's.nestoria.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'share.nestoria.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nestoria.com.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000169977c2e790000040300483046022100abb261f6f63c01e0789423f8ea4cbb1bc4c25f0b89e0e7e478292a2fba9f8745022100d57d1f22bc5537237065eb956d1f4f646f27bfe3a6b87b722ca08ed5b1fb0083007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000169977c2ece000004030046304402203cfa7437c29440b79dee2a66e7c5ddcfc4034805330b4f1e543520e9c19998d002203f558b2807b67ac35f13f46ebf9324d9ea0931d29587c30092ee9611c6552664 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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