trihemofa.vn

Issued by R3

About this certificate

This digital certificate with serial number 04:02:f2:03:fc:ef:3f:af:a4:d3:bb:f1:2e:ec:0d:28:43:bc was issued on by Let's Encrypt.

With 24 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=trihemofa.vn

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:02:f2:03:fc:ef:3f:af:a4:d3:bb:f1:2e:ec:0d:28:43:bc
Serial Number (int): 349451402342875849616289163791390957126588
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: b3:d5:d9:cf:5b:e8:27:e3:1e:50:7f:89:82:ef:52:5c:98:5d:11:56
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): de:84:c1:8f:e5:76:45:58:ba:dc:79:92:82:2a:8e:2e:28:39:04:6e
Fingerprint (sha256): aa:78:f1:59:97:26:e1:40:5d:e5:8d:ce:cd:3c:9d:6a:86:a3:41:7c:cb:d6:50:19:89:2c:48:89:0c:a2:c9:57

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate trihemofa.vn

24

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for trihemofa.vn

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

bpstone.duy5.name.vn
cpanel.duy5.name.vn
cpcalendars.duy5.name.vn
cpcontacts.duy5.name.vn
damaihd.com.vn.duy5.name.vn
duy5.name.vn
hoathuyetduongnaonibifa.com.vn
hoathuyetduongnaonibifa.com.vn.duy5.name.vn
mail.duy5.name.vn
nordvn.duy5.name.vn
studio.colormedia.vn
studio.colormedia.vn.duy5.name.vn
trihemofa.vn
trihemofa.vn.duy5.name.vn
webdisk.duy5.name.vn
webmail.duy5.name.vn
www.bpstone.duy5.name.vn
www.damaihd.com.vn.duy5.name.vn
www.duy5.name.vn
www.hoathuyetduongnaonibifa.com.vn.duy5.name.vn
www.nordvn.duy5.name.vn
www.studio.colormedia.vn.duy5.name.vn
www.trihemofa.vn
www.trihemofa.vn.duy5.name.vn

Other certificates including the domain name trihemofa.vn

(limited to 100 certificates)
www.nordvn.duy5.name.vn
trihemofa.vn
www.gammavietnam.com.vn.duy5.name.vn
amz.ihappy9.name.vn

Certificate

The complete raw certificate details for trihemofa.vn in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtK0aPGxN5gXSRtmY9vs5
2UrEezjNP+dKffVLmRnTUCFirTx0/NYDkOw7/84+gS9SOJSFgMEmCBgxJGCBt019
blLDGMSGIv7ijHYG+5f35b29DU7HG3orALFH6AZx0wCEVVIUc71AdJgdd1YXV5Ke
4F4sZ9xq18uWIjGqAvLwerus+cgFMRa4Nx3xZcXvGNuBzjiZtpbYyxrd8cwyusY+
m9Iu8XU/Fxl4SeZgtEqpjxoz3d3YVPK3c3nwliklG96xYyS+3S1zjQ6D18cgQtK8
szWCBKseXpfJNPqtC3pmF+W3jHTu4Ad/Wqc3DfPOeBtKwrZRYZQs+9K2swyK6j3W
BwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 349451402342875849616289163791390957126588
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-27 21:19:12 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-26 21:19:11 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'trihemofa.vn'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22808254910400395500323035550857106122270158041477821224445109878520589942443211580443176805045649518842388674837966402950418492270631741963368819086879342188000232829445093230705701791959469618506159813003829911616251084771963757974178055809622970871588729390247387962301775317521533661404147519891522598931092566129608232377400843411584086509052296242587654765895049913017174694172393447836295383011050784451604226599451549186345575408875781673250622591755618806966470866132024516978484330225149945963944953640574134024127331953090939241238517427063372430980282790346767754334189604169813440416902388830311114724871
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							b3d5d9cf5be827e31e507f8982ef525c985d1156
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (639 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bpstone.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcalendars.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcontacts.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'damaihd.com.vn.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hoathuyetduongnaonibifa.com.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hoathuyetduongnaonibifa.com.vn.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nordvn.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'studio.colormedia.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'studio.colormedia.vn.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'trihemofa.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'trihemofa.vn.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bpstone.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.damaihd.com.vn.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hoathuyetduongnaonibifa.com.vn.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nordvn.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.studio.colormedia.vn.duy5.name.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.trihemofa.vn'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.trihemofa.vn.duy5.name.vn'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d4d0160670000040300483046022100c17259952221d886c4fe10b9eb2ad1ca195e7d35c394d7814934bd38fab701cc022100a5dcd0c98ce896d6ec2b3cf49429f0b9848a9af488d0a11d9a8c1c4481a2c45d007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d4d0160770000040300473045022100d6dcf2c35ac85abf3fab215a2ed42623b02d1810dca9de5e74a43d1d709b4c9d02205a7001e7ec15ba96945f1a84e33b735cd579bba04fe08ea7d3022441aea208f4
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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