ialaska.com.ussf.co.za
Issued by R3
About this certificate
This digital certificate with serial number 03:dd:4d:21:9a:f2:d5:11:35:72:be:ab:cb:93:be:64:af:2d was issued on by Let's Encrypt.
With 13 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ialaska.com.ussf.co.za
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:dd:4d:21:9a:f2:d5:11:35:72:be:ab:cb:93:be:64:af:2dSerial Number (int): 336641785929010145938845008049305618263853
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 70:7e:38:3d:e1:d7:4a:53:01:8c:c5:6e:39:ea:30:f4:fa:da:50:54
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 99:5f:98:f8:61:ab:79:74:5d:71:8a:05:42:bd:55:e5:1e:db:6f:8a
Fingerprint (sha256): 9e:cb:9b:38:84:e9:51:03:b7:a7:05:24:82:a7:ca:67:11:91:4d:bb:db:c6:35:40:40:c3:87:03:05:4c:11:f9
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate ialaska.com.ussf.co.za
13
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ialaska.com.ussf.co.za
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
brennan.vc.greenpharmus.com
coconut-oil.com
delagoa.com
extreatment.com
finewineflavors.com.letfreedombloom.org
gaydentists.com
healthyhomestores.com.insuranceonlineauto.com
homeloansinsurance.com
ialaska.com.ussf.co.za
maldives4vip.com
offcampus.apartments
quratedtrip.com
technopm.com
coconut-oil.com
delagoa.com
extreatment.com
finewineflavors.com.letfreedombloom.org
gaydentists.com
healthyhomestores.com.insuranceonlineauto.com
homeloansinsurance.com
ialaska.com.ussf.co.za
maldives4vip.com
offcampus.apartments
quratedtrip.com
technopm.com
Other certificates including the domain name ussf.co.za
(limited to 100 certificates)
Certificate
The complete raw certificate details for ialaska.com.ussf.co.za in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGEzCCBPugAwIBAgISA91NIZry1RE1cr6ry5O+ZK8tMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMTMxMTIwNTdaFw0yNDAzMTIxMTIwNTZaMCExHzAdBgNVBAMT FmlhbGFza2EuY29tLnVzc2YuY28uemEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQC35sNwqpNa+uxjBE9M5o/tAlH/z4c5lRIwJH4QKEw5rLQVKbNIcH7Y 4UushJrknRDv4CqKkV0eSWcalcdh4Ss8COlIEGjeklhbsgzkbubiRnEKx8zs+6fm asdlHY/ZTfspSkPlVmYPce1LTvS3zEYinTpDf30UsnyQElAFaVJMu/oRuwrB+qp/ FLmPEgFJcDTuJ2nc2oZY76u01p1hKWC5OP7LroTzuk62R7At3kc8FjaINRdLSyce KSQhaoqSjdPFBmWlipXMYzRbfvLeLBbp+GMYgfJFDBK09Bmg1f4ZPs2a0+WZmEMS 4wdldm9D7so/S6/v/Wo+h+jFqjyy23VPAgMBAAGjggMyMIIDLjAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQC MAAwHQYDVR0OBBYEFHB+OD3h10pTAYzFbjnqMPT62lBUMB8GA1UdIwQYMBaAFBQu sxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYV aHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5s ZW5jci5vcmcvMIIBOQYDVR0RBIIBMDCCASyCG2JyZW5uYW4udmMuZ3JlZW5waGFy bXVzLmNvbYIPY29jb251dC1vaWwuY29tggtkZWxhZ29hLmNvbYIPZXh0cmVhdG1l bnQuY29tgidmaW5ld2luZWZsYXZvcnMuY29tLmxldGZyZWVkb21ibG9vbS5vcmeC D2dheWRlbnRpc3RzLmNvbYItaGVhbHRoeWhvbWVzdG9yZXMuY29tLmluc3VyYW5j ZW9ubGluZWF1dG8uY29tghZob21lbG9hbnNpbnN1cmFuY2UuY29tghZpYWxhc2th LmNvbS51c3NmLmNvLnphghBtYWxkaXZlczR2aXAuY29tghRvZmZjYW1wdXMuYXBh cnRtZW50c4IPcXVyYXRlZHRyaXAuY29tggx0ZWNobm9wbS5jb20wEwYDVR0gBAww CjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgA7U3d1Pi25gE6L MFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYxjH4AYAAAEAwBHMEUCIA57CxcdS+zW YHCPvlE686qmOcpEPnSz7xEycDauNehcAiEA920FUbrq9O4L4F4s/xz19iI30b3I 805BRSg0ma65fL0AdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAA AYxjH4AaAAAEAwBHMEUCIQDX6NsSWgvcnRYogIKWK8qD/SiAvEuGNNOvqNtWDKZ7 DQIgGTrwry6Yk/OLtpUmlJbF1xo79dDJbkhnH07VnRj6zcIwDQYJKoZIhvcNAQEL BQADggEBALQQLuAMFGvLu5G4WDHbIp40HcsV8eyJ42gV9BoqeOVd8a3xGfgzKUoY g4UX2MFq+mzzdwV5wigjO6Bp6Bn8IYXYi2LwvuOQzoNTB4r+ZjoAY6Xuj0nmsbFR QsX1W52ml4ltp1iff5UZ197MnaGO82VCPFfspcYXtP2v3WqKln20E6+aY1qZ/0M1 iS/s9Hed/lahRc9lozomrFCK/2u3tCo2ZFSP7bwnYxndeX70v2UJ4ucDC+Zso40I HwXnuFrjZSJICxq1a5+4svb4GfcRLeCtOWOywVRBfmn6uu6xoOs5sVt5tNEuvU6b CX2/4wmuMkwSLnSytbCK5Q0yDVjwmNQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+bDcKqTWvrsYwRPTOaP 7QJR/8+HOZUSMCR+EChMOay0FSmzSHB+2OFLrISa5J0Q7+AqipFdHklnGpXHYeEr PAjpSBBo3pJYW7IM5G7m4kZxCsfM7Pun5mrHZR2P2U37KUpD5VZmD3HtS070t8xG Ip06Q399FLJ8kBJQBWlSTLv6EbsKwfqqfxS5jxIBSXA07idp3NqGWO+rtNadYSlg uTj+y66E87pOtkewLd5HPBY2iDUXS0snHikkIWqKko3TxQZlpYqVzGM0W37y3iwW 6fhjGIHyRQwStPQZoNX+GT7NmtPlmZhDEuMHZXZvQ+7KP0uv7/1qPofoxao8stt1 TwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 336641785929010145938845008049305618263853 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-13 11:20:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-12 11:20:56 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ialaska.com.ussf.co.za' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23215403501166940132485157318052257268281388538262466994856460708691749131439033037645291609987109259248050425324851571783511653090867327079173248708724776546638493892433265751234656973813137403453622960265726020903352861439200560043494726650810801473596545676804930662008118278756733716410835379201659902523382486123094791281239462807068314936041508450361114958083753733250885120639118528800832232561163579753003050586437309282727184098002896160076283377684235859022860674714832635429957924171770914727749585854875863521231393089136384636785905447973539653366613728391934543178644062290461856433499787357077945152847 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 707e383de1d74a53018cc56e39ea30f4fada5054 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (304 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brennan.vc.greenpharmus.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coconut-oil.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'delagoa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'extreatment.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'finewineflavors.com.letfreedombloom.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gaydentists.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthyhomestores.com.insuranceonlineauto.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeloansinsurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ialaska.com.ussf.co.za' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maldives4vip.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'offcampus.apartments' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'quratedtrip.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'technopm.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c631f8018000004030047304502200e7b0b171d4becd660708fbe513af3aaa639ca443e74b3ef11327036ae35e85c022100f76d0551baeaf4ee0be05e2cff1cf5f62237d1bdc8f34e4145283499aeb97cbd007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018c631f801a0000040300473045022100d7e8db125a0bdc9d16288082962bca83fd2880bc4b8634d3afa8db560ca67b0d0220193af0af2e9893f38bb695269496c5d71a3bf5d0c96e48671f4ed59d18facdc2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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