www.digitalexpand.co.za

Issued by R3

About this certificate

This digital certificate with serial number 04:b7:7b:2e:3a:40:51:15:a0:1c:5f:7c:5a:13:05:8a:56:c0 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=www.digitalexpand.co.za

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:b7:7b:2e:3a:40:51:15:a0:1c:5f:7c:5a:13:05:8a:56:c0
Serial Number (int): 410884551944185216496780801460672181982912
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 35:48:b4:46:9e:b3:10:7a:db:cb:b3:db:d7:be:2a:54:88:86:4b:f9
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 22:70:8d:18:e0:d4:8f:36:7a:ba:55:b1:2f:97:94:1d:cb:db:c0:8e
Fingerprint (sha256): 9b:bf:70:20:77:fd:0b:7b:4c:94:2f:db:51:83:53:4e:58:f2:dd:96:0d:4f:2d:12:65:f2:a2:d1:72:a7:f7:5a

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate www.digitalexpand.co.za

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.digitalexpand.co.za

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

digitalexpand.co.za
www.digitalexpand.co.za

Other certificates including the domain name digitalexpand.co.za

(limited to 100 certificates)
events.nightjarr.com
www.digitalexpand.co.za
meeting.scaleupproject.ch
digitalexpand.co.za
meeting.assetbrothers.jp
meeting.scaleupproject.ch
digitalexpand.co.za
book.bringuthere.info
meetings.onetabco.com
meeting.fruits360.io
meeting.vanguardati.com.br
digitalexpand.co.za
meeting.synapsedigital.io
ac.pevent.com.sa
meeting.assetbrothers.jp
meeting.fruits360.io
billing.digitalexpand.co.za
digitalexpand.co.za
digitalexpand.co.za
meetings.onetabco.com
digitalexpand.co.za
www.digitalexpand.co.za
webinar.portqii.com
digitalexpand.co.za
www.digitalexpand.co.za
meeting.vanguardati.com.br
meeting.dega-it.de
meeting.assetbrothers.jp
meetings.onetabco.com
meeting.scaleupproject.ch
digitalexpand.co.za

Certificate

The complete raw certificate details for www.digitalexpand.co.za in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 410884551944185216496780801460672181982912
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-27 06:36:55 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-25 06:36:54 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digitalexpand.co.za'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 724087512645133898632796959908225162616679500699233892331338446327691609023907786762643772834612936585295441579764058662295254465525094240963264852527331726758069495282961956969532830793600774312428639275917756535240104686615900167645322286157394717952834033051766839391189805370426446912593191219026144669186190179744336137355938476545898521987294218242681451309385084187601432598602804645339027490475174396515340428944156777920960257381175894158861166006469077501587998008577596273748351169699344946597353536826787283251887062438604577073807169722422181305866847648811200911661779822958267943159320519660162298892584580960835375867048370080621927847146839582747038489241240673631630590447155627688388734765257874922308703124316661211952540544000016525505165355050983215045208752237084617430707104014840822714362986411883273480736135008946924769213175805533789524917815088426399512136498876737156349054850709137332540069582462678684577514512301659823093231403419481647888873484796302530118531870239307455825181278554914679818266335123848640302202023159016970348910380314843807997475438521752589202616785590277232060287571575408014059752793449996845863548547746650856843693079635076949041711643530608881092304592936534235633669734781
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3548b4469eb3107adbcbb3dbd7be2a5488864bf9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digitalexpand.co.za'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digitalexpand.co.za'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018e7ed732b400000403004830460221008545fdcf6cc52ac115910f5192a668254bbf2694e3f70e5d8ea2139bbdf17a88022100938f3dd3bc8261283aa10ef532f451bb8f8d284332b4cdc6f84d3fca932f7e2d0075003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018e7ed73a570000040300463044022049cb839e52df7ffb6240a3800a78dadf15cca5682e912541b0112183773b3e0d0220281cc47283c7ef73a68298e72764dba58c8456e45ba8a827201198d1a4c5f975
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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