brandopedia.com
Issued by R3
About this certificate
This digital certificate with serial number 04:49:74:1b:75:23:15:29:26:1c:a5:3c:2c:cf:90:cb:9d:b4 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=brandopedia.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:49:74:1b:75:23:15:29:26:1c:a5:3c:2c:cf:90:cb:9d:b4Serial Number (int): 373444089527617183347312641782780204391860
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a4:39:40:98:a5:1a:f5:08:0b:19:55:d5:6d:1a:22:59:35:fc:22:08
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 65:97:bd:b7:c5:6c:f9:fe:be:78:ea:54:19:2e:b7:07:8e:15:00:8a
Fingerprint (sha256): aa:04:07:bd:2f:2d:f9:f9:15:2d:fb:d7:b9:9a:37:28:57:e1:fd:60:31:89:71:8a:df:ca:dc:80:3f:8a:28:2e
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate brandopedia.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for brandopedia.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
brandopedia.com
www.brandopedia.com
www.brandopedia.com
Other certificates including the domain name brandopedia.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for brandopedia.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGADCCBOigAwIBAgISBEl0G3UjFSkmHKU8LM+Qy520MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMzAxOTAxNDRaFw0yNDAyMjgxOTAxNDNaMBoxGDAWBgNVBAMT D2JyYW5kb3BlZGlhLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB AK+MDOWEAH9LpAlYMcmtxD5sJ6shTp3Zmhe9gsSYUFsv8u3wiGhwitTXamDuuyLm fuVXsy5NPt5WauQFUj+3dvciVTBMVniL4fDzVaRXdi8HNQDtYtGHBqWFuYyILxL9 xlrPM6w5tOEkjD54vsC7WDb4id3U7Jn/nFI2wswGQVO1mA825I7B/uYvgMyHDi3E BERWDM+osNfnfBdDNHS+Y1IF1+/zQMn9VemdTVlbg2brKzerpi41e7iAz3MH5iTF GCsOzjFqKEWmjyGeX7HPP8WT/gLowQhFTMkCfUjm1dqzRTAgl37aaTRqTbA0dUp6 swBdSRpyGSjMjly8MH8UdqUgx2wuy3+FvIg//07eUFGQEE+6uLF0KOgO92WOp3aN eHEjWHg0IZ2Rx3wUGo/CAF1hyzi9KUVEK50Ep88DD8ApST8PHaqIdUYLhCt7YwNY AeTx6Nqa9/Ie4X9FFOOfxxsZL2RDsHlQdj5WLDc6uCLTgp17sN/wvdZgiQnJ1/aG mhoi61/CcuZNi5DmBf4lIYTmKze5U/UmTsFVMGXVdCa3UGK4b+QZTSxZFfEJXHuN lOI+1P/SL8JfMGsnN2CYgIE2oh0T4d3VlAHKmwMVgmW9e8FavxOfWotIOq4a9bMD rY5Afn6bDKmEjINPSaCKmurJBxTm7s2ojjx5GiJo5QUxAgMBAAGjggImMIICIjAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFKQ5QJilGvUICxlV1W0aIlk1/CIIMB8GA1Ud IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw Oi8vcjMuaS5sZW5jci5vcmcvMC8GA1UdEQQoMCaCD2JyYW5kb3BlZGlhLmNvbYIT d3d3LmJyYW5kb3BlZGlhLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisG AQQB1nkCBAIEgfUEgfIA8AB2ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h +tQXAAABjCHSsCEAAAQDAEcwRQIhALZrvi0EB1xsi4CD53cFOHq+zV0+RwPEb/hM SI6ESdM0AiA7soxCZwj3WWjcUPWK5ysSJnuo2rBwYEowugSD380sIAB2AEiw42va pkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjCHSsCMAAAQDAEcwRQIgQbc5 6oHpB594E7hzgDDh+oVYZzvDETH1B9MKGKcDxKACIQDAcyhJSQGJJRdkiiHBP9gf T8wSK6OblsoJUwjfDkWQtTANBgkqhkiG9w0BAQsFAAOCAQEAkAjGq6W8GBYJNnhI ozqNX8D+0YtTuCwnmV0HzTWmWzhAO8/GGGihHcwaMUqYLvdbkB7PZ8KBTzz3xGI/ TC/zzLDR7SuG4E0Mk3y7HfScAvzEVgGBo/g9zPyfJn3sJxSQz20DBbexUedGTidm SDog2ydySbvzcBjPikx8d5/X6bwFKhqnRT9Pdvsmelgqm+CbRV+PkmcOQpLam/Ro HPPNZim/A9M061h74rfVP048o21SJf7Rr99m/MfjZDVyd8OqIkhUjsMgQXpgOgMJ dXSKhoXShnI1vhCTWo80oONkT+AqC8HZPceJX/O3NyI7/I+dYjtUIj38sBLnQVF/ U4YNPA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAr4wM5YQAf0ukCVgxya3E PmwnqyFOndmaF72CxJhQWy/y7fCIaHCK1NdqYO67IuZ+5VezLk0+3lZq5AVSP7d2 9yJVMExWeIvh8PNVpFd2Lwc1AO1i0YcGpYW5jIgvEv3GWs8zrDm04SSMPni+wLtY NviJ3dTsmf+cUjbCzAZBU7WYDzbkjsH+5i+AzIcOLcQERFYMz6iw1+d8F0M0dL5j UgXX7/NAyf1V6Z1NWVuDZusrN6umLjV7uIDPcwfmJMUYKw7OMWooRaaPIZ5fsc8/ xZP+AujBCEVMyQJ9SObV2rNFMCCXftppNGpNsDR1SnqzAF1JGnIZKMyOXLwwfxR2 pSDHbC7Lf4W8iD//Tt5QUZAQT7q4sXQo6A73ZY6ndo14cSNYeDQhnZHHfBQaj8IA XWHLOL0pRUQrnQSnzwMPwClJPw8dqoh1RguEK3tjA1gB5PHo2pr38h7hf0UU45/H GxkvZEOweVB2PlYsNzq4ItOCnXuw3/C91mCJCcnX9oaaGiLrX8Jy5k2LkOYF/iUh hOYrN7lT9SZOwVUwZdV0JrdQYrhv5BlNLFkV8Qlce42U4j7U/9Ivwl8wayc3YJiA gTaiHRPh3dWUAcqbAxWCZb17wVq/E59ai0g6rhr1swOtjkB+fpsMqYSMg09JoIqa 6skHFObuzaiOPHkaImjlBTECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 373444089527617183347312641782780204391860 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-30 19:01:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-28 19:01:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'brandopedia.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 716169570068697739571050045329252979453200892060082312784595509623701406935586466324465399420170311648337555315424310591736277062071240410934463697671743974045975091762198843795973038074077717103128802461741249989326480497548880688213600147307974103627044969891432942219555262004913579617674864902439374075718717694264222260927320336794851157260294809003873873879136650534088246864785014213968995354849274945173189712718309953262532550835327445516307793111593766880123368225330927587679800799720943919622253470496712707086211422887986509209133087145388198720954861809262222158610349561429859108596677743394480352067623700121760066643987898463330789692062365806220426606622666277334593418442591881218894882822500080520389732606429795564135662302198823821710229517376053413302295586856362634163712692704682653319183319178278209918357729024808945508523108953431055029089023629935625950423077407319790273196992922821568843809185909651673215969466009814715747819310354731835900018425794306039916117784176007425496598080669041223269458495674969509401810040186738065189348057406687788720311276399589418898206086724505353959990583790132283502632267192951330324893365445065176949946619385513151115195792988534431880257508384525282985753511217 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a4394098a51af5080b1955d56d1a225935fc2208 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brandopedia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.brandopedia.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c21d2b0210000040300473045022100b66bbe2d04075c6c8b8083e77705387abecd5d3e4703c46ff84c488e8449d33402203bb28c426708f75968dc50f58ae72b12267ba8dab070604a30ba0483dfcd2c2000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c21d2b0230000040300473045022041b739ea81e9079f7813b8738030e1fa8558673bc31131f507d30a18a703c4a0022100c07328494901892517648a21c13fd81f4fcc122ba39b96ca095308df0e4590b5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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