pineconstruction.com
Issued by R3
About this certificate
This digital certificate with serial number 03:c8:76:ed:e8:76:1d:92:d9:a4:4a:0a:2a:3b:fe:0a:54:fa was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=pineconstruction.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c8:76:ed:e8:76:1d:92:d9:a4:4a:0a:2a:3b:fe:0a:54:faSerial Number (int): 329551415372203629279806571823294849897722
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f3:29:44:bd:9e:40:e6:50:6e:1d:bf:72:69:34:93:31:18:8f:db:94
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 86:e8:4a:24:b1:67:62:44:10:86:fd:c1:e0:65:0f:0d:78:a4:ea:bb
Fingerprint (sha256): ad:1f:3b:f9:ce:09:ad:00:dd:01:ae:ac:38:29:e5:34:73:a2:9f:d8:eb:cb:66:b9:0e:9a:16:85:07:25:be:69
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate pineconstruction.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pineconstruction.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pineconstruction.com
www.pineconstruction.com
www.pineconstruction.com
Other certificates including the domain name pineconstruction.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for pineconstruction.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGDzCCBPegAwIBAgISA8h27eh2HZLZpEoKKjv+ClT6MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMjMwOTA3NDJaFw0yNDAzMjIwOTA3NDFaMB8xHTAbBgNVBAMT FHBpbmVjb25zdHJ1Y3Rpb24uY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC CgKCAgEAkZQ7Nh33WHZkbjpcRZ2CmQaKxhiVuQJ/Z1ZtDfYmeY7SM3++MuNAlsea VTmt0viQGZFPw/KEnSCN/Z8/u93K0yICNZu1gwjLqNV1ynI3FUcYmT2r9jguW4LC IKbcDiRste3Aw563ww2toLor5rVwTH2AzosHoqJYZPbh+eF2nex3VW1z6pWxVGYm 2JFIwMSzFwfapb1BhcLCBI457ft+dEz5ZojL7i0Xhtu/kpk0HZXNWvFBW1EGkuPh 3IN6cSJL6XFRqHbq/B3rzdj7nUHH/MkVQLpqWt5zglbIhy+VjPIIELAD5LajH/K2 GXLBEpUxW7S6HOxlT1iG4SsrI2nL+7PQmC3X5kLcEncdTE6HELqLXJDot/3JiX24 KjQqNehG6PcKVDBZk0EPvkl+skKq9hUG7aGbJSZAPgON76UnrzE8F07kYt6FHgVh VgfjZc5MNbqJSl7ac3FO6943yDjgtzmzjKL4+KszHFdGsl24vp24AlvljscZ5zKG 69rpSEOespyU/CNbfbuXJE2EkyWb1mY0UEhk1xSA76qnDd7vgJyfDi+cVEGBlIgF JzFr1ktQUBmd+/2VXOR9vH12fi6zUIPrq8alFFNDAROrrf4eApLN97s/V6Qgf91s +gzzVIYM2YYEjgVDDDWVq2wT6+to2CD5ujLg/OhLAKr8F6yYltECAwEAAaOCAjAw ggIsMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU8ylEvZ5A5lBuHb9yaTSTMRiP25Qw HwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBH MCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKG Fmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wOQYDVR0RBDIwMIIUcGluZWNvbnN0cnVj dGlvbi5jb22CGHd3dy5waW5lY29uc3RydWN0aW9uLmNvbTATBgNVHSAEDDAKMAgG BmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2ADtTd3U+LbmAToswWwb+ QDtn2E/D9Me9AA0tcm/h+tQXAAABjJYlF2cAAAQDAEcwRQIgSQitgx8ceTeh/tGl IqONZ00+D7WjaPAKih+u4/ouq4UCIQCZ4UmFh0Y441AMeFRnDaGRt8oVGVvdMDMq u8LRm604bgB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjJYl F9oAAAQDAEcwRQIhAJnsKW5TtmGtf/IWDmiU/hJoi7G+I4kOP11e6scmcZRqAiA1 uxGdjYJr7ZEK1t62jHFwOu6MwZuuPy0cSMN4NJMKwDANBgkqhkiG9w0BAQsFAAOC AQEAGPeixYhQg8W210uX0vfQYelUg1BWKchdb+Omu1cQC1f9LnX4d8o/CeejVR66 vYKh/Y5kUJxBuHQXzP5Iz7ee9J+itI0IxvnCDfUktaOpembmABniZHjDpSLE1Lg1 INmzxL9hM0CdxXAZ8sGuoWt3HFaczZ621ab/ziUKVQNcN3HTeQsDDAg/LEZTGHe0 XHUeqQKJZZ/FAHhS6OYzR7A5/31ClPpToJOpZhkSrxartASiqfwvy7nOvpZAo9ir sRYABHouqTr2G0Iwm10/m4xwhRDV9uQ7hnD5Bsflrx8j6qh9j1urgpkcLpNHkxv5 Lm9idaWPdfJHSI854x5kGH2jRw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAkZQ7Nh33WHZkbjpcRZ2C mQaKxhiVuQJ/Z1ZtDfYmeY7SM3++MuNAlseaVTmt0viQGZFPw/KEnSCN/Z8/u93K 0yICNZu1gwjLqNV1ynI3FUcYmT2r9jguW4LCIKbcDiRste3Aw563ww2toLor5rVw TH2AzosHoqJYZPbh+eF2nex3VW1z6pWxVGYm2JFIwMSzFwfapb1BhcLCBI457ft+ dEz5ZojL7i0Xhtu/kpk0HZXNWvFBW1EGkuPh3IN6cSJL6XFRqHbq/B3rzdj7nUHH /MkVQLpqWt5zglbIhy+VjPIIELAD5LajH/K2GXLBEpUxW7S6HOxlT1iG4SsrI2nL +7PQmC3X5kLcEncdTE6HELqLXJDot/3JiX24KjQqNehG6PcKVDBZk0EPvkl+skKq 9hUG7aGbJSZAPgON76UnrzE8F07kYt6FHgVhVgfjZc5MNbqJSl7ac3FO6943yDjg tzmzjKL4+KszHFdGsl24vp24AlvljscZ5zKG69rpSEOespyU/CNbfbuXJE2EkyWb 1mY0UEhk1xSA76qnDd7vgJyfDi+cVEGBlIgFJzFr1ktQUBmd+/2VXOR9vH12fi6z UIPrq8alFFNDAROrrf4eApLN97s/V6Qgf91s+gzzVIYM2YYEjgVDDDWVq2wT6+to 2CD5ujLg/OhLAKr8F6yYltECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 329551415372203629279806571823294849897722 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-23 09:07:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-22 09:07:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pineconstruction.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 593910620024424893024937015597208303941158455488354312218792948636918979354959269259112196366979962166506777512068486868594403705405323155070798454454969162723885566236862151321722037817255526219842668337754220832154927777300570078571246270749345898614602992362365442862008731365231979250507406723407700545544118198016210307643333267074826403561679958804503117425849703151444209343586451695704389840739489229626157184083973703489706789434863299535086059737703937144970844455770718458847020585013090417107161285867439075693602409256819593110855970140771164537375246552619949728845499219288219123613195507612341905114712477002559735779921414030901298674199774644855364584918777337473004954300869131639393119486653122543373936707465214972016102029594793395965498475453036236219974984229072594865513099142642217913009462343982175413407928172177782399678244384889300767964727313771853807632810726077765379532454715840062245369212505111334121935196560429347693589907314908190204952945940589016728459656483688630455956090307937279021304446594709369125475973136937281601989838848419616185050262528470820938664505767371563717967689636873830107706984881053290539251407188922956383772686168973667556869210031438231438511025220269773338413930193 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f32944bd9e40e6506e1dbf7269349331188fdb94 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pineconstruction.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pineconstruction.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c96251767000004030047304502204908ad831f1c7937a1fed1a522a38d674d3e0fb5a368f00a8a1faee3fa2eab8502210099e14985874638e3500c7854670da191b7ca15195bdd30332abbc2d19bad386e00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018c962517da000004030047304502210099ec296e53b661ad7ff2160e6894fe12688bb1be23890e3f5d5eeac72671946a022035bb119d8d826bed910ad6deb68c71703aee8cc19bae3f2d1c48c37834930ac0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0018f7a2c5885083c5b6d74b97d2f7d061e95483505629c85d6fe3a6bb57100b57fd2e75f877ca3f09e7a3551ebabd82a1fd8e64509c41b87417ccfe48cfb79ef49fa2b48d08c6f9c20df524b5a3a97a66e60019e26478c3a522c4d4b83520d9b3c4bf6133409dc57019f2c1aea16b771c569ccd9eb6d5a6ffce250a55035c3771d3790b030c083f2c46531877b45c751ea90289659fc5007852e8e63347b039ff7d4294fa53a093a9661912af16abb404a2a9fc2fcbb9cebe9640a3d8abb11600047a2ea93af61b42309b5d3f9b8c708510d5f6e43b8670f906c7e5af1f23eaa87d8f5bab82991c2e9347931bf92e6f6275a58f75f247488f39e31e64187da347