primainsure.com

Issued by R3

About this certificate

This digital certificate with serial number 04:7b:36:24:91:87:25:9a:de:50:ad:4c:2e:d3:96:26:84:7a was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=primainsure.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:7b:36:24:91:87:25:9a:de:50:ad:4c:2e:d3:96:26:84:7a
Serial Number (int): 390375843044432542942133201001587805684858
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 37:8c:c0:64:85:bc:ca:2c:d3:be:f1:68:33:db:fe:48:ef:2c:62:f8
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 0a:f1:f8:7d:47:f3:11:f1:92:98:fa:9a:71:80:79:82:39:0f:5c:c6
Fingerprint (sha256): 97:89:2b:e1:06:98:c8:fa:d5:0e:18:8b:2c:d3:70:2a:fe:01:9e:17:f8:00:34:21:cf:b8:db:93:67:95:fd:26

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate primainsure.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for primainsure.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

primainsure.com
www.primainsure.com

Other certificates including the domain name primainsure.com

(limited to 100 certificates)
primainsure.com
primainsure.com
primainsure.com
experimentamadrid.com
primainsure.com
www.primainsure.com
www.primainsure.com
primainsure.com
primainsure.com
peaceofmindclub.com
primainsure.com
www.primainsure.com
limos1.com
www.primainsure.com
www.primainsure.com

Certificate

The complete raw certificate details for primainsure.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 390375843044432542942133201001587805684858
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-03 09:05:44 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-02 09:05:43 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'primainsure.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 582111983590399781187255177778114813195366586653034782246295755241023347496439351256825999405279194160000528810525528260140312045683637586922292157863499015914775334386055552849602451402149730201178120291966499992416588434184520927573987909944833088088347709008989872597145138794398401538116416152009252625359231076793571893729174818007456682727418170027398785563127551447555284906928633321302617576164231125810488839888359732078323668894064011521798183527413454966885265437849309762693456199807188058912755401738775995236300358788527099423562317696385364098698358404545839005484660939077286216592908696679619163155935160918496168634246881860321305575391748884111812324443518585780233562783203643892215178165530454276380279497315319313054428989862874234114866424214690647034897597205732113719226815710834866409530923707297680194025632866344828961935008908568970980974111918569142329559351497697956721915888064296422957457299383392570137133952529030284781838522497306940628458494301544915416088680849139073991612478629659663120874060746532273751907665462499929727882389020546995836325692336378839388718224101720374510898622926832924433142033139139834844709101897911135129955673044639895592247906847872799885489053911911280332051258717
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							378cc06485bcca2cd3bef16833dbfe48ef2c62f8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'primainsure.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.primainsure.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f100770029d03a1bb674aa711cd3035b6557c14f8aa78b4fe8389449eca453f944bd24680000018ccec941fe0000040300483046022100b3c32fa394da3e55591e0c4e6aeafc5e3f78f8c0ef7483d36d9ac802174efdb9022100bcccae7a4125554ad3c18933043138c5ca3a5ee7b27b58598c573bd8827d9322007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ccec941b5000004030047304502206431ce4a52ba61c924ba78c21a7586fc5dd6a8c0a9e6c69393669359fece648f02210097d0d4351bc7f7aa69e471e4bfcc28a6f5e518f7d3ef1fcba0e712f3934b5589
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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