canalautodidata.shpgroup.com.br
Issued by R3
About this certificate
This digital certificate with serial number 03:ce:e1:dc:ef:c4:a6:67:6f:e6:c4:34:7e:1b:08:a5:6b:d1 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=canalautodidata.shpgroup.com.br
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:ce:e1:dc:ef:c4:a6:67:6f:e6:c4:34:7e:1b:08:a5:6b:d1Serial Number (int): 331735248848430661831782874815507336621009
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 93:78:07:4d:6a:83:8e:5d:1c:d5:9e:b6:4b:e2:5c:ab:17:4c:5e:98
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 7d:53:d8:1b:31:19:03:10:c3:0a:b9:ee:68:94:e4:8d:21:87:98:45
Fingerprint (sha256): 9b:a2:3c:e0:bf:05:5b:a0:c6:07:87:14:be:c8:73:76:b8:35:c3:de:76:83:6f:8c:38:d0:c6:3f:89:4a:45:04
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate canalautodidata.shpgroup.com.br
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for canalautodidata.shpgroup.com.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
canalautodidata.shpgroup.com.br
www.canalautodidata.shpgroup.com.br
www.canalautodidata.shpgroup.com.br
Other certificates including the domain name shpgroup.com.br
(limited to 100 certificates)
Certificate
The complete raw certificate details for canalautodidata.shpgroup.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgISA87h3O/Epmdv5sQ0fhsIpWvRMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMTcxMjM3MTNaFw0yNDA1MTcxMjM3MTJaMCoxKDAmBgNVBAMT H2NhbmFsYXV0b2RpZGF0YS5zaHBncm91cC5jb20uYnIwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQCyiYlW2gmhFKI5glEFEy6OLrd7u57HFPZb5CYJC/i1 EsKOnsGhnyUXd7v8OmVXItCP1mj9oj/YceXYYBNL8cED2urE1DwXJn8dZitMkRFq aK9mF8sd8ulQk8Aa17UNvQ1ljNiacO2AUro9rJk3vRHPPyG0kEZNFC/fQOU+M3zy cNbV7/wSUB5TE/ZkWclRUmBb6hFr9PJjUUjBWkZkNuHr4y9oVHBxxu1paKJyTICx PNcsTfV8aGAFSm7qhn8KaNDGJ8xmJifrPeg932XjIqWe4rq0GKJ53OexGSFhhhUL UIkQfjQiRlNINPr9uiI5UAx88z5iEapJd4ulj/ZGl2NvAgMBAAGjggJFMIICQTAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFJN4B01qg45dHNWetkviXKsXTF6YMB8GA1Ud IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw Oi8vcjMuaS5sZW5jci5vcmcvME8GA1UdEQRIMEaCH2NhbmFsYXV0b2RpZGF0YS5z aHBncm91cC5jb20uYnKCI3d3dy5jYW5hbGF1dG9kaWRhdGEuc2hwZ3JvdXAuY29t LmJyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDv AHUASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGNt0kIjwAABAMA RjBEAiAKOVdKdtJf9Q2btqpnIO48kLFhqDKjinDV0qZQdZ8MnQIgeVoHyiJMMScl NHvE2Mkh0GTjWlcJllYd4q6b59ez6ZoAdgA7U3d1Pi25gE6LMFsG/kA7Z9hPw/TH vQANLXJv4frUFwAAAY23SQj6AAAEAwBHMEUCIQDq6Dkss/Syb+huhiSHVtiQbSQc BfMwL6x/ym4YUKMp/gIgUIP6SFxoOpvz64MZFT61MNteVSCLpcqbZn7rnaRyxwUw DQYJKoZIhvcNAQELBQADggEBALIlFlzAqW4f4zeq+CDLJ1chUNA6S8IAP4cZZypw Wk6T38WPLWFqJXfsb4VE7wJmq+QqBd0z/q+Bt/CFxt0dkfXLu3hjJnDt0sOmxHF9 EzP1nB2W+hrsxCR0CRqISdmaI6zILC5YGODw93jBxId1yCIgibeGhDzDn+lEZQKc 86WGgmpBFQlkYweXeq/VnF70qdPPVg17P7OlWUnidt0qxHzIi6ztGuIsTTFf7bS3 PXbNl5IAwdpz0Ln8b7ufuPRtFPMbbQbtkh6QVs65QrlgIl0fqcAC/cyshISrKJN2 B8DlLstns+xejHVaDesYIne8xVFCOucHV9GhxhZaKL/FhEE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsomJVtoJoRSiOYJRBRMu ji63e7uexxT2W+QmCQv4tRLCjp7BoZ8lF3e7/DplVyLQj9Zo/aI/2HHl2GATS/HB A9rqxNQ8FyZ/HWYrTJERamivZhfLHfLpUJPAGte1Db0NZYzYmnDtgFK6PayZN70R zz8htJBGTRQv30DlPjN88nDW1e/8ElAeUxP2ZFnJUVJgW+oRa/TyY1FIwVpGZDbh 6+MvaFRwccbtaWiickyAsTzXLE31fGhgBUpu6oZ/CmjQxifMZiYn6z3oPd9l4yKl nuK6tBiiedznsRkhYYYVC1CJEH40IkZTSDT6/boiOVAMfPM+YhGqSXeLpY/2Rpdj bwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 331735248848430661831782874815507336621009 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-17 12:37:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-17 12:37:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'canalautodidata.shpgroup.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22538240050738892924173048049112836128511449350275410818794901808003691032643909834939666262405869154654926571178506573300551848349630320870820207144560057060581915871734136200317275724543313233450329417315844552202822359503069789826732923110378286114287607717922183480953764427662957093840837456988075792920577123088644904779917802166901946370340033996767068893083832305171595717100831053919178485026809333489902144033058046159261396849126044884095709636375999594833488868688328497471451552018287228601852904421763123850081164545570560986256509809179305884343167063734587909849026660465610708703559969332290387403631 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9378074d6a838e5d1cd59eb64be25cab174c5e98 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canalautodidata.shpgroup.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.canalautodidata.shpgroup.com.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018db749088f000004030046304402200a39574a76d25ff50d9bb6aa6720ee3c90b161a832a38a70d5d2a650759f0c9d0220795a07ca224c312725347bc4d8c921d064e35a570996561de2ae9be7d7b3e99a0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018db74908fa0000040300473045022100eae8392cb3f4b26fe86e86248756d8906d241c05f3302fac7fca6e1850a329fe02205083fa485c683a9bf3eb8319153eb530db5e55208ba5ca9b667eeb9da472c705 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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