opinoapp.com
Issued by R3
About this certificate
This digital certificate with serial number 03:9e:c2:22:e8:12:5f:8e:f3:1f:25:4b:ef:d9:52:26:ce:b5 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=opinoapp.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:9e:c2:22:e8:12:5f:8e:f3:1f:25:4b:ef:d9:52:26:ce:b5Serial Number (int): 315359523245039189894520896488632800956085
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 0c:ff:13:67:7a:5b:12:37:64:91:65:c2:5a:4c:9f:bf:69:21:74:6c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 50:d3:be:de:a1:3e:fe:ff:61:2f:bb:d7:21:63:93:c0:04:d9:57:7f
Fingerprint (sha256): a8:71:f5:fe:6d:e9:f0:71:d7:fc:aa:79:42:88:79:c2:44:d0:b9:b9:31:0e:c0:66:8b:2b:1b:6a:cd:c2:7e:eb
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate opinoapp.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for opinoapp.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
opinoapp.com
www.opinoapp.com
www.opinoapp.com
Other certificates including the domain name opinoapp.com
(limited to 100 certificates)
app.swipefwd.com
saml.siftai.com
opinoapp.com
www.caremother.in
feliciaalfieri.com
dl.elsa.care
touchee.com
app.la-collaborative.org
www.eat-vite.fr
www.coremah.com
opinoapp.com
en.revitalair.com
link.getonform.com
bbfs.in
www.spanishvirtuosos.com
uejesusamigo.codexplus.net
link.opinoapp.com
portal.cloverbyte.com
saml.siftai.com
opinoapp.com
www.caremother.in
feliciaalfieri.com
dl.elsa.care
touchee.com
app.la-collaborative.org
www.eat-vite.fr
www.coremah.com
opinoapp.com
en.revitalair.com
link.getonform.com
bbfs.in
www.spanishvirtuosos.com
uejesusamigo.codexplus.net
link.opinoapp.com
portal.cloverbyte.com
Certificate
The complete raw certificate details for opinoapp.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE9jCCA96gAwIBAgISA57CIugSX47zHyVL79lSJs61MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMDgwMzA1MDBaFw0yNDA2MDYwMzA0NTlaMBcxFTATBgNVBAMT DG9waW5vYXBwLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJjx t0HAzP4V7ZCB/N5o1BPWhrCZ+NGaGFLZcviFJ13Uj1G9mmEyFFy4zvnlSiFH4t5r EHyfED4Wtj1LnF+cdl3YXNnSo7BoYCDkf8DD++d/kqm3IKh5/phmBvkKsJaUwabm VKBQctSDCfP8OHi9Tu54izNcV/ZFh9ay9Rf5u3uC+OxXcMy/mWEKDGFtuc70gRn2 /2Ur1g+95X/gUF3miZIPwfKZX+9xvpoPxY2dXSEf6ZB4BWiNRVFpPPzm+zPJMvWi lupU4vFvLRt3StyFldhN4iwhly73lXORJvrbIkbe3eEz4LFGLnu4W78Aq5dkmOVS V0LXPtKRDWkbU+mwvbsCAwEAAaOCAh8wggIbMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUDP8TZ3pbEjdkkWXCWkyfv2khdGwwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w KQYDVR0RBCIwIIIMb3Bpbm9hcHAuY29tghB3d3cub3Bpbm9hcHAuY29tMBMGA1Ud IAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYA7s3QZNXb Gs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGOHDxYkAAABAMARzBFAiAGHJrR 1M5MaRZod7remuuBhN/fiEH8qeHl+6U5ciwQSwIhAMMdepxD3oDcAWO9lFWcc7sU bsqa2MiP0ZpzDmsWjFS5AHUASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznY hHMAAAGOHDxYxAAABAMARjBEAiAUE5jZyRKYiuajhfI3bsiiffOIZYf5vSRAf6z4 JSUsnAIgLHrAMS0+ueXo9LSPUQEOmarg7FOt572qo+tCT5TUeBowDQYJKoZIhvcN AQELBQADggEBAAGLQqN61s69TU9DB65CuqOa0QkUJ12fgD3teTv1LGz1qnWTL0Eg KIdYJ1e0gppyQl/7qqrXryNj8R8kbC6qfc0wYh9R7GPkA25gkE+zytWx6yQONetY x6+cX6hIk2VILmi57r/LAo/gEK+AIIa0RBWKARCDq/VyfxsEOnEJKfQSebuva14z JYg3UuZB/xmKm0aus3ZmHnI3TBchDiDmSeQFWQXTCdvpcOr0zWk39Tj5y77MoFeD I0ljHRRN9RKx4kIVE1cteCfYBJOCCERyh7BT61uGOzwZOmVtlH2ExNKEKD01vsGE 2xnlFrAE05hbLxQmRwcZHTqSNuPoBgZzIUg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmPG3QcDM/hXtkIH83mjU E9aGsJn40ZoYUtly+IUnXdSPUb2aYTIUXLjO+eVKIUfi3msQfJ8QPha2PUucX5x2 Xdhc2dKjsGhgIOR/wMP753+SqbcgqHn+mGYG+QqwlpTBpuZUoFBy1IMJ8/w4eL1O 7niLM1xX9kWH1rL1F/m7e4L47FdwzL+ZYQoMYW25zvSBGfb/ZSvWD73lf+BQXeaJ kg/B8plf73G+mg/FjZ1dIR/pkHgFaI1FUWk8/Ob7M8ky9aKW6lTi8W8tG3dK3IWV 2E3iLCGXLveVc5Em+tsiRt7d4TPgsUYue7hbvwCrl2SY5VJXQtc+0pENaRtT6bC9 uwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 315359523245039189894520896488632800956085 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-08 03:05:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-06 03:04:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'opinoapp.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19307416881468574607638504772141428840716767572874899904644829924965510266376533918789273851577392623930323155906974589479075851230651114869283778619574095532951035830903411520076203738773524845179319843472445974084514010720983774248658667513236921925384204901674634094055899595949567742038946734619082655365716870957349660888607449612287154984892259596057509501387209420863900008677106663343839547499264320796716776463827372208538256682416419287462836190023062393762730611977603738827771245243911884443552668301917411488387403733498782135647179510386546570275537701268881473506106059732703436761782709394609361960379 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0cff13677a5b1237649165c25a4c9fbf6921746c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'opinoapp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.opinoapp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e1c3c589000000403004730450220061c9ad1d4ce4c69166877bade9aeb8184dfdf8841fca9e1e5fba539722c104b022100c31d7a9c43de80dc0163bd94559c73bb146eca9ad8c88fd19a730e6b168c54b900750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e1c3c58c400000403004630440220141398d9c912988ae6a385f2376ec8a27df3886587f9bd24407facf825252c9c02202c7ac0312d3eb9e5e8f4b48f51010e99aae0ec53ade7bdaaa3eb424f94d4781a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00018b42a37ad6cebd4d4f4307ae42baa39ad10914275d9f803ded793bf52c6cf5aa75932f41202887582757b4829a72425ffbaaaad7af2363f11f246c2eaa7dcd30621f51ec63e4036e60904fb3cad5b1eb240e35eb58c7af9c5fa8489365482e68b9eebfcb028fe010af802086b444158a011083abf5727f1b043a710929f41279bbaf6b5e3325883752e641ff198a9b46aeb376661e72374c17210e20e649e4055905d309dbe970eaf4cd6937f538f9cbbecca057832349631d144df512b1e2421513572d7827d804938208447287b053eb5b863b3c193a656d947d84c4d284283d35bec184db19e516b004d3985b2f14264707191d3a9236e3e80606732148