geexu.com

Issued by R3

About this certificate

This digital certificate with serial number 04:ec:47:7a:1e:e3:07:e9:f0:87:6e:6f:6b:eb:89:2b:73:af was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=geexu.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:ec:47:7a:1e:e3:07:e9:f0:87:6e:6f:6b:eb:89:2b:73:af
Serial Number (int): 428850791594759464450737917398482401588143
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: e9:6a:5b:df:97:25:ac:37:36:6b:f9:cf:64:48:46:54:5a:0a:ba:8d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 0c:58:b2:46:fd:0e:f9:03:52:16:8e:90:0e:d1:4e:1a:9c:eb:f9:92
Fingerprint (sha256): 89:c8:57:b0:1d:97:66:f4:b0:72:f1:be:14:85:86:ac:66:50:04:58:05:27:67:d4:cf:a0:6c:93:f1:a4:27:cb

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate geexu.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for geexu.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

geexu.com
www.geexu.com

Other certificates including the domain name geexu.com

(limited to 100 certificates)
sni43488.cloudflaressl.com
sni43488.cloudflaressl.com
www.geexu.com
www.geexu.com
www.geexu.com
sni43488.cloudflaressl.com
sni43488.cloudflaressl.com
sni43488.cloudflaressl.com
geexu.com
www.geexu.com
sni43488.cloudflaressl.com
www.geexu.com
sni43488.cloudflaressl.com

Certificate

The complete raw certificate details for geexu.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 428850791594759464450737917398482401588143
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-29 03:45:35 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-27 03:45:34 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'geexu.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 559900008162526201072177319692208911066182127945761417103612545384606599385002302155614447800143937697204406042698282182766888930771881937580343741417087761815873432383780594448550370030449939942290447045881578512283509476243688860018795751216355717838306134026335774178760571151984094943061595196002042332334925271367906209555553178397216717512578607509633577748350393831628779906563756233652338376499755128424760928110601046577248939856973952371104114758767395275853341416889352523564938455432718582815950028370677957094459336832194216884307263984252584158607798288599591434267339371406038593150820411711989737458043840733741163089304969814509128152072970927575499439204315711309551114679493724605844983531998298313142654677137650572089202010127897667453201299447988782992176205882917826229974229047350261327591725905429038032573579059363392447768591409252770055419689693292149349660447617220350281178735116696068167768554008176895469226227272700479891240978594234116128703386954823239544241671932999748382708260840778334051743142031470725158094676153351327740113758739669511949062577290133227302648217121459542809567042094480646567454029276521515007363451185728233744234964504486716818932928059274376007824031378978702000323948513
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							e96a5bdf9725ac37366bf9cf644846545a0aba8d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'geexu.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.geexu.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e88870b9a0000040300473045022100e8e88f70f9ef07cc5ccfd7d4ca93a63427eab17482810212c4c0e8844887095a0220243b1f3aced01f3d9e382215c094404b472a2aca06de1999a0f13f7d35f957b800760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e88870bae0000040300473045022100a1df2cf3429b7c81fb52e2639005fde697d2ecd28cb684711d9441b35318955502202b31600af08e86e0941bfbc41a4cd67f6079b87f16a88dd6a9f0ef6df4566829
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0067bcb3927f4918b7f3fa67acb593ce7dafb7534d0d2673dc31585e70f22d61cc7f3ac711ce3d09378f11652140bbdda290c49c5cbc6f12bdc8e801928d7695223c706df4878ef6363aff22d06db3ed814a20759b238bfdf94965c47dfadf31b6a6782ba6136605320ba62b1b228a3cf1b27050866309f151e74984696f91c1f5a840c356cc6d49b5e17be1aac0c35ecadc018934ce28e06b4ae48dfd0770e7e9b7e05c43b75ca9cf3226af6fb85246cdf9c8550f4603782a1466f6e244462c56865f80bcfd201b3cbc8438298b8bf9c56446d64b31ea88f9dcb3b1a47af9feac9ca250927cfcc5850b8ff68dbe9d15d762e5cc9f5692fc01253d78e8f4cf034d