ialaska.com.ussf.co.za

Issued by R3

About this certificate

This digital certificate with serial number 03:dd:4d:21:9a:f2:d5:11:35:72:be:ab:cb:93:be:64:af:2d was issued on by Let's Encrypt.

With 13 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=ialaska.com.ussf.co.za

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:dd:4d:21:9a:f2:d5:11:35:72:be:ab:cb:93:be:64:af:2d
Serial Number (int): 336641785929010145938845008049305618263853
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 70:7e:38:3d:e1:d7:4a:53:01:8c:c5:6e:39:ea:30:f4:fa:da:50:54
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 99:5f:98:f8:61:ab:79:74:5d:71:8a:05:42:bd:55:e5:1e:db:6f:8a
Fingerprint (sha256): 9e:cb:9b:38:84:e9:51:03:b7:a7:05:24:82:a7:ca:67:11:91:4d:bb:db:c6:35:40:40:c3:87:03:05:4c:11:f9

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate ialaska.com.ussf.co.za

13

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ialaska.com.ussf.co.za

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

brennan.vc.greenpharmus.com
coconut-oil.com
delagoa.com
extreatment.com
finewineflavors.com.letfreedombloom.org
gaydentists.com
healthyhomestores.com.insuranceonlineauto.com
homeloansinsurance.com
ialaska.com.ussf.co.za
maldives4vip.com
offcampus.apartments
quratedtrip.com
technopm.com

Other certificates including the domain name ussf.co.za

(limited to 100 certificates)
ussf.co.za
ussf.co.za
xbone.co.za
ussf.co.za
ussf.co.za
banneradvertisingservices.com.ussf.co.za
overcomersrecovery.ca
ialaska.com.ussf.co.za
ussf.co.za
overcomersrecovery.ca
ussf.co.za
ussf.co.za

Certificate

The complete raw certificate details for ialaska.com.ussf.co.za in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGEzCCBPugAwIBAgISA91NIZry1RE1cr6ry5O+ZK8tMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yMzEyMTMxMTIwNTdaFw0yNDAzMTIxMTIwNTZaMCExHzAdBgNVBAMT
FmlhbGFza2EuY29tLnVzc2YuY28uemEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw
ggEKAoIBAQC35sNwqpNa+uxjBE9M5o/tAlH/z4c5lRIwJH4QKEw5rLQVKbNIcH7Y
4UushJrknRDv4CqKkV0eSWcalcdh4Ss8COlIEGjeklhbsgzkbubiRnEKx8zs+6fm
asdlHY/ZTfspSkPlVmYPce1LTvS3zEYinTpDf30UsnyQElAFaVJMu/oRuwrB+qp/
FLmPEgFJcDTuJ2nc2oZY76u01p1hKWC5OP7LroTzuk62R7At3kc8FjaINRdLSyce
KSQhaoqSjdPFBmWlipXMYzRbfvLeLBbp+GMYgfJFDBK09Bmg1f4ZPs2a0+WZmEMS
4wdldm9D7so/S6/v/Wo+h+jFqjyy23VPAgMBAAGjggMyMIIDLjAOBgNVHQ8BAf8E
BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQC
MAAwHQYDVR0OBBYEFHB+OD3h10pTAYzFbjnqMPT62lBUMB8GA1UdIwQYMBaAFBQu
sxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYV
aHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5s
ZW5jci5vcmcvMIIBOQYDVR0RBIIBMDCCASyCG2JyZW5uYW4udmMuZ3JlZW5waGFy
bXVzLmNvbYIPY29jb251dC1vaWwuY29tggtkZWxhZ29hLmNvbYIPZXh0cmVhdG1l
bnQuY29tgidmaW5ld2luZWZsYXZvcnMuY29tLmxldGZyZWVkb21ibG9vbS5vcmeC
D2dheWRlbnRpc3RzLmNvbYItaGVhbHRoeWhvbWVzdG9yZXMuY29tLmluc3VyYW5j
ZW9ubGluZWF1dG8uY29tghZob21lbG9hbnNpbnN1cmFuY2UuY29tghZpYWxhc2th
LmNvbS51c3NmLmNvLnphghBtYWxkaXZlczR2aXAuY29tghRvZmZjYW1wdXMuYXBh
cnRtZW50c4IPcXVyYXRlZHRyaXAuY29tggx0ZWNobm9wbS5jb20wEwYDVR0gBAww
CjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgA7U3d1Pi25gE6L
MFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYxjH4AYAAAEAwBHMEUCIA57CxcdS+zW
YHCPvlE686qmOcpEPnSz7xEycDauNehcAiEA920FUbrq9O4L4F4s/xz19iI30b3I
805BRSg0ma65fL0AdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAA
AYxjH4AaAAAEAwBHMEUCIQDX6NsSWgvcnRYogIKWK8qD/SiAvEuGNNOvqNtWDKZ7
DQIgGTrwry6Yk/OLtpUmlJbF1xo79dDJbkhnH07VnRj6zcIwDQYJKoZIhvcNAQEL
BQADggEBALQQLuAMFGvLu5G4WDHbIp40HcsV8eyJ42gV9BoqeOVd8a3xGfgzKUoY
g4UX2MFq+mzzdwV5wigjO6Bp6Bn8IYXYi2LwvuOQzoNTB4r+ZjoAY6Xuj0nmsbFR
QsX1W52ml4ltp1iff5UZ197MnaGO82VCPFfspcYXtP2v3WqKln20E6+aY1qZ/0M1
iS/s9Hed/lahRc9lozomrFCK/2u3tCo2ZFSP7bwnYxndeX70v2UJ4ucDC+Zso40I
HwXnuFrjZSJICxq1a5+4svb4GfcRLeCtOWOywVRBfmn6uu6xoOs5sVt5tNEuvU6b
CX2/4wmuMkwSLnSytbCK5Q0yDVjwmNQ=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+bDcKqTWvrsYwRPTOaP
7QJR/8+HOZUSMCR+EChMOay0FSmzSHB+2OFLrISa5J0Q7+AqipFdHklnGpXHYeEr
PAjpSBBo3pJYW7IM5G7m4kZxCsfM7Pun5mrHZR2P2U37KUpD5VZmD3HtS070t8xG
Ip06Q399FLJ8kBJQBWlSTLv6EbsKwfqqfxS5jxIBSXA07idp3NqGWO+rtNadYSlg
uTj+y66E87pOtkewLd5HPBY2iDUXS0snHikkIWqKko3TxQZlpYqVzGM0W37y3iwW
6fhjGIHyRQwStPQZoNX+GT7NmtPlmZhDEuMHZXZvQ+7KP0uv7/1qPofoxao8stt1
TwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 336641785929010145938845008049305618263853
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-13 11:20:57 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-12 11:20:56 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ialaska.com.ussf.co.za'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23215403501166940132485157318052257268281388538262466994856460708691749131439033037645291609987109259248050425324851571783511653090867327079173248708724776546638493892433265751234656973813137403453622960265726020903352861439200560043494726650810801473596545676804930662008118278756733716410835379201659902523382486123094791281239462807068314936041508450361114958083753733250885120639118528800832232561163579753003050586437309282727184098002896160076283377684235859022860674714832635429957924171770914727749585854875863521231393089136384636785905447973539653366613728391934543178644062290461856433499787357077945152847
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							707e383de1d74a53018cc56e39ea30f4fada5054
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (304 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brennan.vc.greenpharmus.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coconut-oil.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'delagoa.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'extreatment.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'finewineflavors.com.letfreedombloom.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gaydentists.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthyhomestores.com.insuranceonlineauto.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeloansinsurance.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ialaska.com.ussf.co.za'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maldives4vip.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'offcampus.apartments'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'quratedtrip.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'technopm.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c631f8018000004030047304502200e7b0b171d4becd660708fbe513af3aaa639ca443e74b3ef11327036ae35e85c022100f76d0551baeaf4ee0be05e2cff1cf5f62237d1bdc8f34e4145283499aeb97cbd007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018c631f801a0000040300473045022100d7e8db125a0bdc9d16288082962bca83fd2880bc4b8634d3afa8db560ca67b0d0220193af0af2e9893f38bb695269496c5d71a3bf5d0c96e48671f4ed59d18facdc2
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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