geexu.com
Issued by R3
About this certificate
This digital certificate with serial number 04:ec:47:7a:1e:e3:07:e9:f0:87:6e:6f:6b:eb:89:2b:73:af was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=geexu.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:ec:47:7a:1e:e3:07:e9:f0:87:6e:6f:6b:eb:89:2b:73:afSerial Number (int): 428850791594759464450737917398482401588143
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e9:6a:5b:df:97:25:ac:37:36:6b:f9:cf:64:48:46:54:5a:0a:ba:8d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 0c:58:b2:46:fd:0e:f9:03:52:16:8e:90:0e:d1:4e:1a:9c:eb:f9:92
Fingerprint (sha256): 89:c8:57:b0:1d:97:66:f4:b0:72:f1:be:14:85:86:ac:66:50:04:58:05:27:67:d4:cf:a0:6c:93:f1:a4:27:cb
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate geexu.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for geexu.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
geexu.com
www.geexu.com
www.geexu.com
Other certificates including the domain name geexu.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for geexu.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF7jCCBNagAwIBAgISBOxHeh7jB+nwh25va+uJK3OvMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjkwMzQ1MzVaFw0yNDA2MjcwMzQ1MzRaMBQxEjAQBgNVBAMT CWdlZXh1LmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAIk+C8J7 Xb7nZC2y63qKMGbf8Qp1G7ZBu+H+RakOXP6gMou4UEAuS945g3kX0NHiAjPgy9fX hwelpq66jNmhh2fS1FXR1LjPkfEZ7AshXRaQqLWH8GHnVwhQVi5f+wBZijrsI233 O2rwF8gJyEzPdm7XHWjasnBq+oe/lrWQJWXt9RyfcXe3lXzT0iA+OTzIpHjCnEkI R6HPssJQ6mW6LwDMWgXWRd5ax3NYFCzjLhZhYe/Eiiy7zV5PRwXo+ZUScqj2X85U vg288UCzDiMcmciHiD/ZhleDBqQ6LS0qarZUyD8KhqhuhB73jtkvjuAPbYz/aQCy +dWbvglwFUeIu4b2tSk9Ouj0CObe751d2DX896gnH9n7fRb6dcCAOT09o1t9CvHs mtnU+bGLHFHP06am6LKol6XPR35z1EE30bN8fO7pGhYkXkvhDkdzUajBXBMNOipe JtVWgyUoPeJj9JJuuOVWtwRJIU442l7s/vaWIB06eIIRB5Jlxi2LXulWyxfU0mAo GuzGb3aH/H3XqpGjsYgDQwd1TWZxM7fv+fikgMnDhkyZXxsLM7XDN/f1xRpjxVtJ m3Ea7HuFbgz7Qk9zoJJnY1bpprS2FyJYKopO4Hp2M9TfN47dZakOSrOh5e9G4L71 lnF+XaUE7Ax+qJidf2t0n2scBhu/ZH5dTe/hAgMBAAGjggIaMIICFjAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFOlqW9+XJaw3Nmv5z2RIRlRaCrqNMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMCMGA1UdEQQcMBqCCWdlZXh1LmNvbYINd3d3LmdlZXh1LmNv bTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2 AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjoiHC5oAAAQDAEcw RQIhAOjoj3D57wfMXM/X1MqTpjQn6rF0goECEsTA6IRIhwlaAiAkOx86ztAfPZ44 IhXAlEBLRyoqygbeGZmg8T99NflXuAB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0s gdm7v6s52IRzAAABjoiHC64AAAQDAEcwRQIhAKHfLPNCm3yB+1LiY5AF/eaX0uzS jLaEcR2UQbNTGJVVAiArMWAK8I6G4JQb+8QaTNZ/YHm4fxaojdap8O9t9FZoKTAN BgkqhkiG9w0BAQsFAAOCAQEAZ7yzkn9JGLfz+mestZPOfa+3U00NJnPcMVhecPIt Ycx/OscRzj0JN48RZSFAu92ikMScXLxvEr3I6AGSjXaVIjxwbfSHjvY2Ov8i0G2z 7YFKIHWbI4v9+UllxH363zG2pngrphNmBTILpisbIoo88bJwUIZjCfFR50mEaW+R wfWoQMNWzG1JteF74arAw17K3AGJNM4o4GtK5I39B3Dn6bfgXEO3XKnPMiavb7hS Rs35yFUPRgN4KhRm9uJERixWhl+AvP0gGzy8hDgpi4v5xWRG1ksx6oj53LOxpHr5 /qycolCSfPzFhQuP9o2+nRXXYuXMn1aS/AElPXjo9M8DTQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAiT4LwntdvudkLbLreoow Zt/xCnUbtkG74f5FqQ5c/qAyi7hQQC5L3jmDeRfQ0eICM+DL19eHB6WmrrqM2aGH Z9LUVdHUuM+R8RnsCyFdFpCotYfwYedXCFBWLl/7AFmKOuwjbfc7avAXyAnITM92 btcdaNqycGr6h7+WtZAlZe31HJ9xd7eVfNPSID45PMikeMKcSQhHoc+ywlDqZbov AMxaBdZF3lrHc1gULOMuFmFh78SKLLvNXk9HBej5lRJyqPZfzlS+DbzxQLMOIxyZ yIeIP9mGV4MGpDotLSpqtlTIPwqGqG6EHveO2S+O4A9tjP9pALL51Zu+CXAVR4i7 hva1KT066PQI5t7vnV3YNfz3qCcf2ft9Fvp1wIA5PT2jW30K8eya2dT5sYscUc/T pqbosqiXpc9HfnPUQTfRs3x87ukaFiReS+EOR3NRqMFcEw06Kl4m1VaDJSg94mP0 km645Va3BEkhTjjaXuz+9pYgHTp4ghEHkmXGLYte6VbLF9TSYCga7MZvdof8fdeq kaOxiANDB3VNZnEzt+/5+KSAycOGTJlfGwsztcM39/XFGmPFW0mbcRrse4VuDPtC T3OgkmdjVummtLYXIlgqik7genYz1N83jt1lqQ5Ks6Hl70bgvvWWcX5dpQTsDH6o mJ1/a3SfaxwGG79kfl1N7+ECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 428850791594759464450737917398482401588143 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-29 03:45:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-27 03:45:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'geexu.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 559900008162526201072177319692208911066182127945761417103612545384606599385002302155614447800143937697204406042698282182766888930771881937580343741417087761815873432383780594448550370030449939942290447045881578512283509476243688860018795751216355717838306134026335774178760571151984094943061595196002042332334925271367906209555553178397216717512578607509633577748350393831628779906563756233652338376499755128424760928110601046577248939856973952371104114758767395275853341416889352523564938455432718582815950028370677957094459336832194216884307263984252584158607798288599591434267339371406038593150820411711989737458043840733741163089304969814509128152072970927575499439204315711309551114679493724605844983531998298313142654677137650572089202010127897667453201299447988782992176205882917826229974229047350261327591725905429038032573579059363392447768591409252770055419689693292149349660447617220350281178735116696068167768554008176895469226227272700479891240978594234116128703386954823239544241671932999748382708260840778334051743142031470725158094676153351327740113758739669511949062577290133227302648217121459542809567042094480646567454029276521515007363451185728233744234964504486716818932928059274376007824031378978702000323948513 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e96a5bdf9725ac37366bf9cf644846545a0aba8d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'geexu.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.geexu.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e88870b9a0000040300473045022100e8e88f70f9ef07cc5ccfd7d4ca93a63427eab17482810212c4c0e8844887095a0220243b1f3aced01f3d9e382215c094404b472a2aca06de1999a0f13f7d35f957b800760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e88870bae0000040300473045022100a1df2cf3429b7c81fb52e2639005fde697d2ecd28cb684711d9441b35318955502202b31600af08e86e0941bfbc41a4cd67f6079b87f16a88dd6a9f0ef6df4566829 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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