percustudio.com

Issued by R3

About this certificate

This digital certificate with serial number 03:dd:86:13:95:d2:df:5e:4a:46:72:e3:ab:d0:fd:e6:9e:af was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=percustudio.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:dd:86:13:95:d2:df:5e:4a:46:72:e3:ab:d0:fd:e6:9e:af
Serial Number (int): 336717479128669705473037817230746855055023
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 09:ad:e9:a7:a9:4a:ee:8f:92:ca:c8:1f:ed:22:97:ed:be:52:5d:1c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 69:34:10:17:2b:67:6f:01:52:53:86:f5:43:e3:14:10:89:a1:b7:67
Fingerprint (sha256): 95:33:ae:bd:2c:3a:da:4c:f6:95:d8:3e:24:dd:e1:11:ac:dc:f9:2e:0d:9e:a0:b8:54:7f:7f:d5:32:b9:4d:19

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate percustudio.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for percustudio.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

percustudio.com
www.percustudio.com

Other certificates including the domain name percustudio.com

(limited to 100 certificates)
newsletter.percustudio.com
percustudio.com
dnsinove.com
newsletter.percustudio.com
percustudio.com
percustudio.com
newsletter.percustudio.com
percustudio.com
newsletter.percustudio.com
percustudio.com
*.percustudio.com
percustudio.com
percustudio.com
percustudio.com
anaaga.com
percustudio.com
newsletter.percustudio.com
dnsinove.com
newsletter.percustudio.com
jmjbordados.com
percustudio.com
percustudio.com
*.ahbvvc.com
newsletter.percustudio.com
percustudio.com

Certificate

The complete raw certificate details for percustudio.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISA92GE5XS315KRnLjq9D95p6vMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yMzEyMjUxNDUxNTRaFw0yNDAzMjQxNDUxNTNaMBoxGDAWBgNVBAMT
D3BlcmN1c3R1ZGlvLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ALC8Nim6tjU0u+FcvLoA2SAlhGtugTC7aYEh8L9NYCmhFV+iP2DnVmnIsmEctf/s
bqPP89a6gz7YspGtv9NHcHuqQh1zAmBMUF943/zY3k6Ht+BLUSHPR1q8zs5Pi5rM
CeXVfMOPO3ItpX4vkXy+8rHQI47NYrqtDxhvnLmCBjqvFfch8JssR8WrpdFx5VxK
T2ibeksZ+Txv/u491FGuRAXMYDglihXHAy5P9pCBx9iUoB+H4ZDs3htGElOLzXBD
s23lNi1h6sJX0tDW36NpPk+U9HQAcxoKSiAE2aQjrCIrjEI/ouNlh/QDxWngE+pZ
AISAxxodn5zsxdWUey3V1PECAwEAAaOCAiUwggIhMA4GA1UdDwEB/wQEAwIFoDAd
BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV
HQ4EFgQUCa3pp6lK7o+Sysgf7SKX7b5SXRwwHwYDVR0jBBgwFoAUFC6zF7dYVsuu
UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v
cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y
Zy8wLwYDVR0RBCgwJoIPcGVyY3VzdHVkaW8uY29tghN3d3cucGVyY3VzdHVkaW8u
Y29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDv
AHUAouK/1h7eLy8HoNZObTen3GVDsMa1LqLat4r4mm31F9gAAAGMoazxwwAABAMA
RjBEAiANGb4AK9qpRDCSkWop/IDfgNhvC00rq021UGeA25eczwIgcBoypK5NWoDr
odEu4j/Lef16w1JJ91X1a4HSbJuFln0AdgDuzdBk1dsazsVct520zROiModGfLzs
3sNRSFlGcR+1mwAAAYyhrPIEAAAEAwBHMEUCIFglnej8WQc1oCG+bAZATv6oEYgo
xLPCMd3tq8bFFTr/AiEAuVgGUm0C0BWIC3e/8sMmSKA1xanh6+GpuXvPJsfC9acw
DQYJKoZIhvcNAQELBQADggEBACt+Ht7QOhCSpIyYorhf6pYVcghbVtloKedAnzPf
shgSXsk0wUytXGLjMW7Hou3pWmljhV/283/KbAFs2on7+2WKuyVNT1ZO9TQDNmi3
4dwFSsUMcTOExGT9u9Z55mpbYG8GRQpq7KG2ucDG+p20OkRLdUXPKnr0FMB7Spfq
65MP4vGsfp5MJbC4h0DQOhDW1IZW0WGaO2Vziz6cN+6is4QhQovULZgn2iogVqpV
ThupG6W45xg1FYYDTgzV47ddPE3aTNZ0PZnHB1M65Vr5uEy6yYY3iShBAwsmRJBT
eXL1aivRv4xjFifSVzBYg+1X10vXicWGl1knJ0ULkv0u3NQ=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLw2Kbq2NTS74Vy8ugDZ
ICWEa26BMLtpgSHwv01gKaEVX6I/YOdWaciyYRy1/+xuo8/z1rqDPtiyka2/00dw
e6pCHXMCYExQX3jf/NjeToe34EtRIc9HWrzOzk+LmswJ5dV8w487ci2lfi+RfL7y
sdAjjs1iuq0PGG+cuYIGOq8V9yHwmyxHxaul0XHlXEpPaJt6Sxn5PG/+7j3UUa5E
BcxgOCWKFccDLk/2kIHH2JSgH4fhkOzeG0YSU4vNcEOzbeU2LWHqwlfS0Nbfo2k+
T5T0dABzGgpKIATZpCOsIiuMQj+i42WH9APFaeAT6lkAhIDHGh2fnOzF1ZR7LdXU
8QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 336717479128669705473037817230746855055023
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-25 14:51:54 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-24 14:51:53 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'percustudio.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22310752260381610656319454636683712346832639064064594314879577273003426700291068923390271719987358986884612140940740187013353382651804703396206420219908293447544051347678701701660848058521629285808114036034311189984652311958633384060425099933751806701981535219212477007552230820611696003708319118149340659086960473351488920587158255252314046733559178532324307122264626280318053913012997682636710952535634169047438436540855476520586140095761524283834424265086021495611250416950600087912024036513396220950907659895761809941660189931068098195296654350279088609968034891259966681788859008984646811543318754254778510202097
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							09ade9a7a94aee8f92cac81fed2297edbe525d1c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'percustudio.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.percustudio.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018ca1acf1c3000004030046304402200d19be002bdaa9443092916a29fc80df80d86f0b4d2bab4db5506780db979ccf0220701a32a4ae4d5a80eba1d12ee23fcb79fd7ac35249f755f56b81d26c9b85967d007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ca1acf2040000040300473045022058259de8fc590735a021be6c06404efea8118828c4b3c231ddedabc6c5153aff022100b95806526d02d015880b77bff2c32648a035c5a9e1ebe1a9b97bcf26c7c2f5a7
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		002b7e1eded03a1092a48c98a2b85fea961572085b56d96829e7409f33dfb218125ec934c14cad5c62e3316ec7a2ede95a6963855ff6f37fca6c016cda89fbfb658abb254d4f564ef534033668b7e1dc054ac50c713384c464fdbbd679e66a5b606f06450a6aeca1b6b9c0c6fa9db43a444b7545cf2a7af414c07b4a97eaeb930fe2f1ac7e9e4c25b0b88740d03a10d6d48656d1619a3b65738b3e9c37eea2b38421428bd42d9827da2a2056aa554e1ba91ba5b8e718351586034e0cd5e3b75d3c4dda4cd6743d99c707533ae55af9b84cbac98637892841030b264490537972f56a2bd1bf8c631627d257305883ed57d74bd789c58697592727450b92fd2edcd4