pineconstruction.com

Issued by R3

About this certificate

This digital certificate with serial number 03:c8:76:ed:e8:76:1d:92:d9:a4:4a:0a:2a:3b:fe:0a:54:fa was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=pineconstruction.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:c8:76:ed:e8:76:1d:92:d9:a4:4a:0a:2a:3b:fe:0a:54:fa
Serial Number (int): 329551415372203629279806571823294849897722
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: f3:29:44:bd:9e:40:e6:50:6e:1d:bf:72:69:34:93:31:18:8f:db:94
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 86:e8:4a:24:b1:67:62:44:10:86:fd:c1:e0:65:0f:0d:78:a4:ea:bb
Fingerprint (sha256): ad:1f:3b:f9:ce:09:ad:00:dd:01:ae:ac:38:29:e5:34:73:a2:9f:d8:eb:cb:66:b9:0e:9a:16:85:07:25:be:69

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate pineconstruction.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for pineconstruction.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

pineconstruction.com
www.pineconstruction.com

Other certificates including the domain name pineconstruction.com

(limited to 100 certificates)
pineconstruction.com
www.pineconstruction.com
pineconstruction.com

Certificate

The complete raw certificate details for pineconstruction.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 329551415372203629279806571823294849897722
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-23 09:07:42 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-22 09:07:41 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pineconstruction.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 593910620024424893024937015597208303941158455488354312218792948636918979354959269259112196366979962166506777512068486868594403705405323155070798454454969162723885566236862151321722037817255526219842668337754220832154927777300570078571246270749345898614602992362365442862008731365231979250507406723407700545544118198016210307643333267074826403561679958804503117425849703151444209343586451695704389840739489229626157184083973703489706789434863299535086059737703937144970844455770718458847020585013090417107161285867439075693602409256819593110855970140771164537375246552619949728845499219288219123613195507612341905114712477002559735779921414030901298674199774644855364584918777337473004954300869131639393119486653122543373936707465214972016102029594793395965498475453036236219974984229072594865513099142642217913009462343982175413407928172177782399678244384889300767964727313771853807632810726077765379532454715840062245369212505111334121935196560429347693589907314908190204952945940589016728459656483688630455956090307937279021304446594709369125475973136937281601989838848419616185050262528470820938664505767371563717967689636873830107706984881053290539251407188922956383772686168973667556869210031438231438511025220269773338413930193
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							f32944bd9e40e6506e1dbf7269349331188fdb94
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pineconstruction.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pineconstruction.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c96251767000004030047304502204908ad831f1c7937a1fed1a522a38d674d3e0fb5a368f00a8a1faee3fa2eab8502210099e14985874638e3500c7854670da191b7ca15195bdd30332abbc2d19bad386e00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018c962517da000004030047304502210099ec296e53b661ad7ff2160e6894fe12688bb1be23890e3f5d5eeac72671946a022035bb119d8d826bed910ad6deb68c71703aee8cc19bae3f2d1c48c37834930ac0
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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