*.bubblecitea.com
Issued by Encryption Everywhere DV TLS CA - G2
About this certificate
This digital certificate with serial number 08:24:76:d9:fd:f8:77:ea:30:14:58:0c:20:63:62:b7 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.bubblecitea.com
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 08:24:76:d9:fd:f8:77:ea:30:14:58:0c:20:63:62:b7Serial Number (int): 10823157248631164640007633905756889783
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 5a:f6:7e:dd:9e:0f:3c:7d:66:26:29:c4:6d:05:01:f1:dc:c8:cc:c8
AuthorityKeyId: 78:df:91:90:5f:ee:de:ac:f6:c5:75:eb:d5:4c:55:53:ef:24:4a:b6
Fingerprint (sha1): f7:82:36:8c:1b:13:80:fd:8c:f8:83:7c:ad:0a:46:ef:94:e8:4f:28
Fingerprint (sha256): a3:40:4f:a8:2a:bc:1c:1c:ed:ab:8c:7e:cb:02:cd:40:9b:c1:1b:9d:e6:0b:45:e0:d0:b6:8c:bf:df:1d:97:23
Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCheck the revocation status for certificate *.bubblecitea.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.bubblecitea.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.bubblecitea.com
bubblecitea.com
bubblecitea.com
Other certificates including the domain name bubblecitea.com
(limited to 100 certificates)
hr.lewenet.com
bubblecitea.com
bubblecitea.com
*.bubblecitea.com
myhr.ollyandseb.com
www.bubblecitea.com
hr.bubblecitea.com
www.bubblecitea.com
bubblecitea.com
atletehub.atl10n.com
www.bubblecitea.com
bubblecitea.com
hr.bubblecitea.com
bubblecitea.com
bubblecitea.com
*.bubblecitea.com
people.refocusit.com
employee.next-doors.com
bubblecitea.com
www.bubblecitea.com
hr.bubblecitea.com
staff.calipology.co.uk
employee.next-doors.com
bubblecitea.com
hris.bynaric.net
www.bubblecitea.com
people.refocusit.com
bubblecitea.com
bubblecitea.com
*.bubblecitea.com
myhr.ollyandseb.com
www.bubblecitea.com
hr.bubblecitea.com
www.bubblecitea.com
bubblecitea.com
atletehub.atl10n.com
www.bubblecitea.com
bubblecitea.com
hr.bubblecitea.com
bubblecitea.com
bubblecitea.com
*.bubblecitea.com
people.refocusit.com
employee.next-doors.com
bubblecitea.com
www.bubblecitea.com
hr.bubblecitea.com
staff.calipology.co.uk
employee.next-doors.com
bubblecitea.com
hris.bynaric.net
www.bubblecitea.com
people.refocusit.com
Certificate
The complete raw certificate details for *.bubblecitea.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGCzCCBPOgAwIBAgIQCCR22f34d+owFFgMIGNitzANBgkqhkiG9w0BAQsFADBu MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg RFYgVExTIENBIC0gRzIwHhcNMjQwMzEwMDAwMDAwWhcNMjUwMzI1MjM1OTU5WjAc MRowGAYDVQQDDBEqLmJ1YmJsZWNpdGVhLmNvbTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALxgtog162FKd/Ernn3QoevHCu8wiLfVWE4eHp1Vka7fLyYg D6MHrV7A8AoDI/BRpI6vjWFv9CMkrEsVBSCNOvaOl/mIdC+3W7PbQD1e6/VUqfZ5 EUZ33qL1vZwqMVNoolkXwBjly8U//oIjd85JaOntz3yA92JjQVZoUif3PqsE2U7n 54WCXeDwyHE7LBUt60bzbGccTnIOOH17xTED6GCETZF2D3k0kSGlKaaM3107APST L4qrX0JZRE1LTEVs3Ctz6ZrXxdufwoVxPGL7/RtgezRVUkPYqqTlVRweIqGymjxA LhXYv998YFiJr+gHm2amJiU5v53iErp29k8yAgUCAwEAAaOCAvUwggLxMB8GA1Ud IwQYMBaAFHjfkZBf7t6s9sV169VMVVPvJEq2MB0GA1UdDgQWBBRa9n7dng88fWYm KcRtBQHx3MjMyDAtBgNVHREEJjAkghEqLmJ1YmJsZWNpdGVhLmNvbYIPYnViYmxl Y2l0ZWEuY29tMD4GA1UdIAQ3MDUwMwYGZ4EMAQIBMCkwJwYIKwYBBQUHAgEWG2h0 dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMIGABggrBgEFBQcBAQR0MHIwJAYIKwYB BQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBKBggrBgEFBQcwAoY+aHR0 cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0VuY3J5cHRpb25FdmVyeXdoZXJlRFZU TFNDQS1HMi5jcnQwDAYDVR0TAQH/BAIwADCCAX4GCisGAQQB1nkCBAIEggFuBIIB agFoAHUAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGOJpfduQAA BAMARjBEAiBb6AtxB7ZCZcJuW+OjSpZBHbc5TvKbc7bBIUsIZIoofQIgKegYYB2N wuq0Z9vGoJPXATIy/8yI6JtnF05JMnQKJ54AdgB9WR4S4XgqexxhZ3xe/fjQh1wU oE6VnrkDL9kOjC55uAAAAY4ml919AAAEAwBHMEUCIQDcLVdnVnunj3FUWSr/MHaN psBwTc0elXhsGii9/5raZgIgGiSGwrYdU5upPOacigvi99hVni7JAFFL1tPo/UYW 4gYAdwDm0jFjQHeMwRBBBtdxuc7B0kD2loSG+7qHMh39HjeOUAAAAY4ml92pAAAE AwBIMEYCIQDODgCih6rzL5N3gDpyJtt7OYo3QElClqi7KFuLr7eUDAIhAKF1wqNS tX/AOOHGiuNGlblPDGbz09luriO94uVt5aTpMA0GCSqGSIb3DQEBCwUAA4IBAQAN 3kUQOh3RcsRxOV+IedPwZgM4eCJ+ygs0M4uMGeIOCwLRC0Av9N4ZQMh6mrAwNUHt +/UN+aYMGQFMO0uNIOkRhIOSxdIvYRdDJhoiDz5ysUDon95FbcE5Z+NyZQrrfA3e pp3Znzg2bAGH03mFXM5mMR0586+BFARqaAc+ioCdCSKP5KE3Z/3MIAFSPHwuHjQX LjTzF5iuizFMnazqTtFVv7+ztY/oyqUEZaMDGd6JX0nCTvPUIJLMT9zKf9qjIY08 Y9xnbZQXxcHCgrPuMIvZBG+F9sl3y8uuZbRvq9XBvIu8tyf64mnmosoW8vTeZpSe cB64yFVt3G6F9UBYtVHf -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGC2iDXrYUp38SuefdCh 68cK7zCIt9VYTh4enVWRrt8vJiAPowetXsDwCgMj8FGkjq+NYW/0IySsSxUFII06 9o6X+Yh0L7dbs9tAPV7r9VSp9nkRRnfeovW9nCoxU2iiWRfAGOXLxT/+giN3zklo 6e3PfID3YmNBVmhSJ/c+qwTZTufnhYJd4PDIcTssFS3rRvNsZxxOcg44fXvFMQPo YIRNkXYPeTSRIaUppozfXTsA9JMviqtfQllETUtMRWzcK3PpmtfF25/ChXE8Yvv9 G2B7NFVSQ9iqpOVVHB4iobKaPEAuFdi/33xgWImv6AebZqYmJTm/neISunb2TzIC BQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10823157248631164640007633905756889783 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.bubblecitea.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23780492299230458944586596393786478453828469465012211273815567852650901536584548694975412214585551937257294775609243636985643482874912528761487524123436667893875949075340092989690756828244735265474584217116184263185581908086457495481910418628450164212391179130780697981061185759698203785628068497590987366383725976583424351796527743256821025612000918854659149346560177007798384187477406984726401282233759049045463497267969558723938414496595710984572879970525912312096406862357822725285687822838868913312823224531558032469768127440288181376091008699711426831021233946773987084095597432723566986187830940711131278344709 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 78df91905feedeacf6c575ebd54c5553ef244ab6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5af67edd9e0f3c7d662629c46d0501f1dcc8ccc8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bubblecitea.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bubblecitea.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 000dde45103a1dd172c471395f8879d3f066033878227eca0b34338b8c19e20e0b02d10b402ff4de1940c87a9ab0303541edfbf50df9a60c19014c3b4b8d20e911848392c5d22f611743261a220f3e72b140e89fde456dc13967e372650aeb7c0ddea69dd99f38366c0187d379855cce66311d39f3af8114046a68073e8a809d09228fe4a13767fdcc2001523c7c2e1e34172e34f31798ae8b314c9dacea4ed155bfbfb3b58fe8caa50465a30319de895f49c24ef3d42092cc4fdcca7fdaa3218d3c63dc676d9417c5c1c282b3ee308bd9046f85f6c977cbcbae65b46fabd5c1bc8bbcb727fae269e6a2ca16f2f4de66949e701eb8c8556ddc6e85f54058b551df