one4allgiftcards.co.uk
Issued by R3
About this certificate
This digital certificate with serial number 03:76:eb:c3:28:19:57:7b:21:4c:92:f5:dc:fd:96:b0:8d:11 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=one4allgiftcards.co.uk
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:76:eb:c3:28:19:57:7b:21:4c:92:f5:dc:fd:96:b0:8d:11Serial Number (int): 301803558982152510409974191405973671808273
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: e8:4f:0a:6d:f0:b0:b7:6b:57:9f:e7:cb:3d:53:87:15:5c:17:e9:ca
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): fb:f3:62:5b:97:35:41:e1:30:34:e5:f0:75:49:89:e7:4b:7f:8d:72
Fingerprint (sha256): a3:96:57:6d:cd:8c:6c:a8:59:ad:5a:12:5d:e0:1a:34:64:cd:53:7c:eb:9e:eb:48:d8:84:c4:ef:4a:33:ee:e7
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate one4allgiftcards.co.uk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for one4allgiftcards.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.one4allgiftcards.co.uk
one4allgiftcards.co.uk
one4allgiftcards.co.uk
Other certificates including the domain name one4allgiftcards.co.uk
(limited to 100 certificates)
Certificate
The complete raw certificate details for one4allgiftcards.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISA3brwygZV3shTJL13P2WsI0RMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTkwODQ0MTBaFw0yNDA3MTgwODQ0MDlaMCExHzAdBgNVBAMT Fm9uZTRhbGxnaWZ0Y2FyZHMuY28udWswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDs+attpgMFHpHk0Nb8OfOVjvtvodpG1ii7sBG422OXXhHEyY0P9jJV osUicCRrGhEX7waINWfaU52oyBzV69Ah7jj20SeIt+K7hH8O0aTdw+kR7uqXRFMN AHbK40H5sr/wGw/CtCSvlleTnGn93yyvbhaaIotxK5OWANjKBo2vsme2sM0xv/og X7Ih2rzhsuEQ3aY6KKsfnnzYCbiFC0GO4Xh4v68nkrlhW2jNYjoyYQZ2FoP2f9O4 TCheN7s68U2TQjjturZnjBVdXYi+cmgJ1mVKgQE2za9ueF+eUVKRxZKDhk2UR9NE vZPdRM7h6LRLf4DxZEF7AgEyrVvyg6d1AgMBAAGjggIzMIICLzAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQC MAAwHQYDVR0OBBYEFOhPCm3wsLdrV5/nyz1ThxVcF+nKMB8GA1UdIwQYMBaAFBQu sxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYV aHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5s ZW5jci5vcmcvMDsGA1UdEQQ0MDKCGCoub25lNGFsbGdpZnRjYXJkcy5jby51a4IW b25lNGFsbGdpZnRjYXJkcy5jby51azATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUG CisGAQQB1nkCBAIEgfYEgfMA8QB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0t cm/h+tQXAAABjvW99jMAAAQDAEgwRgIhANxOm7P8koVb0MTlOrPZLnHkjr0wk5gi PjoXR/DkFX3RAiEAnXYImP1fliKxvaqumkTKt+rkVm+tQctFgQRNYIYKxwsAdgDu zdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAY71vfYvAAAEAwBHMEUC IGbNuY1AjxoDg4W96+xuJmTutHGZ+DUNiF1CNSi065bHAiEAif2nQhdHJahGMEIn YHRrQ9JhVS5WDzQpHCOkJiaLV7cwDQYJKoZIhvcNAQELBQADggEBAK025C2uu1r6 DQThYkutX6QCOcQMAhlr2eHSXREJa0x6NUr43fp0FzeXHgMax76q4IBpc0EARji0 H1GnNwSRPZz+UmAKdi2VF3DVNt8j0GQ3Kd5r5TQZ55j5Wb6hWKuKJTa0mMkQ87ns NRN2Rb0Lu/uXWn1kKiQu5fyjAPZKwag6ufDbHif+2wYsEcMM2vy6Fc0xTz56NhTe lUqm6lDLQI1OE+Z7hKYpUAWqRZKsFfncGvvhT86wSLynZnGryf5266ycDRZPDG9j JFQuYCpJZ3yBfIbR+AJnSu3u2OxVMgDtAGCwRPSeDrN+16yDOkaLVF+pJsCw5kUj dsZ8DsahBXE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7PmrbaYDBR6R5NDW/Dnz lY77b6HaRtYou7ARuNtjl14RxMmND/YyVaLFInAkaxoRF+8GiDVn2lOdqMgc1evQ Ie449tEniLfiu4R/DtGk3cPpEe7ql0RTDQB2yuNB+bK/8BsPwrQkr5ZXk5xp/d8s r24WmiKLcSuTlgDYygaNr7JntrDNMb/6IF+yIdq84bLhEN2mOiirH5582Am4hQtB juF4eL+vJ5K5YVtozWI6MmEGdhaD9n/TuEwoXje7OvFNk0I47bq2Z4wVXV2IvnJo CdZlSoEBNs2vbnhfnlFSkcWSg4ZNlEfTRL2T3UTO4ei0S3+A8WRBewIBMq1b8oOn dQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 301803558982152510409974191405973671808273 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-19 08:44:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-18 08:44:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'one4allgiftcards.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29915356661009428598426810555777905888523020564784199231522059463291160430975142993582006169579729618289539841725805839056860480363245711686063769775577138753252640033090560907495708183364245938212730373860934092948019695570351078242945887875413252172781777955833316320232319237702784191325546166119763640740421866018253293711492380440908342612858698540894625084667854862184489234459503565122863692713284961487924021204546484331296892272734070217859814291078718195515109055381843265105568396720911265233390250382457864321513816722369643135155561967495981419696420448574279546704662983569566721343750464339774768654197 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e84f0a6df0b0b76b579fe7cb3d5387155c17e9ca . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.one4allgiftcards.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'one4allgiftcards.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018ef5bdf6330000040300483046022100dc4e9bb3fc92855bd0c4e53ab3d92e71e48ebd309398223e3a1747f0e4157dd10221009d760898fd5f9622b1bdaaae9a44cab7eae4566fad41cb4581044d60860ac70b007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ef5bdf62f0000040300473045022066cdb98d408f1a038385bdebec6e2664eeb47199f8350d885d423528b4eb96c702210089fda742174725a84630422760746b43d261552e560f34291c23a426268b57b7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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