www.michemprime.com

Issued by R3

About this certificate

This digital certificate with serial number 03:cf:24:8a:e7:14:d8:f8:e3:5a:69:43:8d:73:97:86:42:69 was issued on by Let's Encrypt.

With 39 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=www.michemprime.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:cf:24:8a:e7:14:d8:f8:e3:5a:69:43:8d:73:97:86:42:69
Serial Number (int): 331823881179618067997618329794971684979305
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 64:44:25:3e:70:a9:2d:ae:92:a7:b4:f6:4e:91:d2:df:da:81:8f:b7
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): d5:51:cd:51:f6:39:91:08:06:c8:e7:ef:9f:8e:82:d1:00:c3:cd:7b
Fingerprint (sha256): 8a:58:d8:4f:00:63:bb:02:6a:cd:ba:51:f9:ec:9a:ee:d6:f6:47:27:cc:3d:fe:28:b5:ea:37:05:30:13:cf:6a

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate www.michemprime.com

39

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.michemprime.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

digiprime.com
expandingpaper.com
ftp.michem.com
host.michelman.com
licomer.com
michelman.asia
michelman.be
michelman.com
michelman.com.br
michelman.de
michelman.eu
michelman.net
michelmaninc.com
michem.asia
michem.com
michem.eu
michem.net
michemprime.com
mktweb20.michelman.net
performanceadditives.com
rustban.com
www.digiprime.com
www.expandingpaper.com
www.licomer.com
www.michelman.asia
www.michelman.be
www.michelman.com
www.michelman.com.br
www.michelman.de
www.michelman.eu
www.michelman.net
www.michelmaninc.com
www.michem.asia
www.michem.com
www.michem.eu
www.michem.net
www.michemprime.com
www.performanceadditives.com
www.rustban.com

Other certificates including the domain name michemprime.com

(limited to 100 certificates)
www.licomer.com
www.performanceadditives.com
www.expandingpaper.com
www.michem.com
www.expandingpaper.com
www.michemprime.com
www.michelman.de
www.michem.com
www.michem.asia
www.michelman.de
www.michemprime.com
www.performanceadditives.com
www.licomer.com
www.performanceadditives.com
www.performanceadditives.com
www.michelmaninc.com
www.michem.net
www.michemprime.com
www.michem.com
www.michem.com

Certificate

The complete raw certificate details for www.michemprime.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2aDqiNUhW0CbCFoZjj9w
ir73G6oP+v6oCpcG5Z+0WWra5LvBpCAlti0CiCoAZr5V09cVqKdQd3/oLOuZzxCj
Ur7wyhYZSoI7o+EzPQ+keYDJTb9iwhLQyIsxncIFcxVtYKeuYavDMifCGYLz5txh
gYKCFUjviNnLJgjuXcy6/HnADS3+SMyJtm42Ues3FDHmxm8HeL1AilRfSBbNVUdA
7lQFDDnMldMnIz78GIIb+yy1RtetkDIuUnMFZwi7uXN4EPcugILK7oGpxIL4FZcv
DloUH4DPl9xZ4ZU6/+MhCt+9GToZB+/pSieRh4BONCg1juRXV0NTY0AkJr4tDsBw
sQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 331823881179618067997618329794971684979305
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-31 21:31:03 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-30 21:31:02 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.michemprime.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27473062888837910426532790317074535920156881060363198380571677247789619465026681608280543175485648995118640710050864333406284933503389019558039779767019435203409075529391850040619231262407372982136860107548799753387851101633728500380857258725933961674646666702397021722174421134639572788372750376508971052536318778825396850829350671524345699410165703033130823337617195407982463053025103543986623904162514777684044393426990824034897491607869133458973648649606466326179274729161868432077570529666793094738710187872491427746943487361371153168006695121157702626644441019380341310505616964020962769220350710199700728869041
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6444253e70a92dae92a7b4f64e91d2dfda818fb7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (688 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digiprime.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'expandingpaper.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ftp.michem.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'host.michelman.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'licomer.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michelman.asia'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michelman.be'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michelman.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michelman.com.br'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michelman.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michelman.eu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michelman.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michelmaninc.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michem.asia'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michem.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michem.eu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michem.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michemprime.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mktweb20.michelman.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'performanceadditives.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rustban.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digiprime.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.expandingpaper.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.licomer.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.michelman.asia'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.michelman.be'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.michelman.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.michelman.com.br'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.michelman.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.michelman.eu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.michelman.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.michelmaninc.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.michem.asia'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.michem.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.michem.eu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.michem.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.michemprime.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.performanceadditives.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rustban.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018cc200859f000004030047304502210081ee474c03de551f9e5ffc54c93de3c242a55655ef96e923d77ad51f7386dd7102202919f6a9866caae5656e6d2f0781812e1e400f71d8fddbfd5154595be225074300770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018cc20086000000040300483046022100d3d0255ffabc6a2a6a366b0394ae89348cea81e896fdcaa59242927dc1cd35cb022100d149dbe7b67f7d2aff23f77b8546d4e267699f751b0a580948104a70e913302f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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