pts-mi.com
Issued by R3
About this certificate
This digital certificate with serial number 04:92:ab:56:7a:20:c7:87:0f:da:ca:36:94:0b:b8:8d:fa:5f was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=pts-mi.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:92:ab:56:7a:20:c7:87:0f:da:ca:36:94:0b:b8:8d:fa:5fSerial Number (int): 398358116299358080504362699940869765462623
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a1:cd:f3:a7:97:89:23:52:ee:44:fb:96:ed:8d:c9:40:15:5a:39:52
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f4:52:59:00:c6:70:ba:57:6d:08:5c:84:2d:64:b0:3d:02:6b:1c:e1
Fingerprint (sha256): b1:25:cb:ef:9c:7b:6a:2d:ac:94:89:49:48:0f:51:54:89:3d:6c:0f:a8:bc:cb:e3:bf:61:f2:95:d3:27:c8:ab
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate pts-mi.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pts-mi.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pts-mi.com
www.pts-mi.com
www.pts-mi.com
Other certificates including the domain name pts-mi.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for pts-mi.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgISBJKrVnogx4cP2so2lAu4jfpfMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMjIxOTMzMjFaFw0yNDA0MjExOTMzMjBaMBUxEzARBgNVBAMT CnB0cy1taS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVWxkL YLI8dyI4k0ZncruqlltZJNOa240mKaQlq0Ce4NlmRsu16AZZDnA5UTwi5nEzp6Mv lTE6LDVIDQJxPVHNu66PwcJ2JE/Qj0lnQElKDRHpxsyAzU/bamxSLGmWyKa90enA A/6s6D/lADrbES+2k1dllsRJR3+TdMo+lonG6GzLdK6ihZjl4d0a+LgaA2e2nJBi TyelBhucSbc5SzwVoLGSt9u+0FJGqx3V9upj/GIT8C2a44xtkOKW34wiyXig3OeD MEpqpxEu3EHB6EjqcXt1P173k+h7DAYSep/ZnGW20CTdx/O6zIeG9Z5XCVp6NxoS TqRFG7X2r9M5tOixAgMBAAGjggIcMIICGDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FKHN86eXiSNS7kT7lu2NyUAVWjlSMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCUG A1UdEQQeMByCCnB0cy1taS5jb22CDnd3dy5wdHMtbWkuY29tMBMGA1UdIAQMMAow CAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcASLDja9qmRzQP5WoC +p0w6xxSActW3SyB2bu/qznYhHMAAAGNMuCtsQAABAMASDBGAiEAv0lclsgpi8QF sPYUGkrkQ4vpm9DChM2Xf81OkNbu7D4CIQDl9p5FwCZM2D8BS6DQENp6Wmt6diFS ex9+0p5IX13HuQB1AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfYAAAB jTLgrcYAAAQDAEYwRAIgL1GWCAT2zPQqqRdeXi6qKJ11ccoIQZ2psTEjNzn/1gMC IBTlnAmo18TEXyzQPXxYgCBOEs/0q6aJ6gS9RpSgyoxTMA0GCSqGSIb3DQEBCwUA A4IBAQA1nqBXUV2K2V1XkWt4St9xpyeMhpzyilCn91W2pCclQkUjxAWRY6+O6PJj cGn1ErQoO9CQveM77ZKhlqsk3NMNAOA0n9G4DQPHvB5D8o8v+7289qWZzYn8keL5 qMgRccWUk+F2S7e3iJqKef8gYKKe/MEsH2nTes8eR710prikIiIoNBp6KWNKQ++f RgkPIALfuNwKvaP+8zOPxBuGb9KdYBOxl9kZGbhP5EObEO2xishyA+PfJ6CjGZJ6 Y4IynWAQZgPQKjZQEcHOdiZHZaq1RK8lpilQvpRduAavcj/MjrA01qI0o1BQ7OOt aU1M32cAhp22e9n/vhvpOuaflfGX -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1VsZC2CyPHciOJNGZ3K7 qpZbWSTTmtuNJimkJatAnuDZZkbLtegGWQ5wOVE8IuZxM6ejL5UxOiw1SA0CcT1R zbuuj8HCdiRP0I9JZ0BJSg0R6cbMgM1P22psUixplsimvdHpwAP+rOg/5QA62xEv tpNXZZbESUd/k3TKPpaJxuhsy3SuooWY5eHdGvi4GgNntpyQYk8npQYbnEm3OUs8 FaCxkrfbvtBSRqsd1fbqY/xiE/AtmuOMbZDilt+MIsl4oNzngzBKaqcRLtxBwehI 6nF7dT9e95PoewwGEnqf2ZxlttAk3cfzusyHhvWeVwlaejcaEk6kRRu19q/TObTo sQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 398358116299358080504362699940869765462623 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-22 19:33:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-21 19:33:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pts-mi.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26933680971940959721075128883272273007470396180849075120104602791414648436701842600493373798751086245411814151527659168995237637525846596459597323473413021800966731512979054005728555074804555277251819966631213223788968969643282130494789455215707824213792879425280348449569732390949913719811375417849714334608969618172751592671340602785491168096862964110317181935081015149161952346895415823615952488891528165272912499148279283775290627763967433569926599034957414608983974483573578716793160071008024686537109293473217330654382416920283732452486437337288886448466978966973485321083902778358189810221909896769828910590129 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a1cdf3a797892352ee44fb96ed8dc940155a3952 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pts-mi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pts-mi.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d32e0adb10000040300483046022100bf495c96c8298bc405b0f6141a4ae4438be99bd0c284cd977fcd4e90d6eeec3e022100e5f69e45c0264cd83f014ba0d010da7a5a6b7a7621527b1f7ed29e485f5dc7b9007500a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d32e0adc6000004030046304402202f51960804f6ccf42aa9175e5e2eaa289d7571ca08419da9b131233739ffd603022014e59c09a8d7c4c45f2cd03d7c5880204e12cff4aba689ea04bd4694a0ca8c53 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00359ea057515d8ad95d57916b784adf71a7278c869cf28a50a7f755b6a42725424523c4059163af8ee8f2637069f512b4283bd090bde33bed92a196ab24dcd30d00e0349fd1b80d03c7bc1e43f28f2ffbbdbcf6a599cd89fc91e2f9a8c81171c59493e1764bb7b7889a8a79ff2060a29efcc12c1f69d37acf1e47bd74a6b8a4222228341a7a29634a43ef9f46090f2002dfb8dc0abda3fef3338fc41b866fd29d6013b197d91919b84fe4439b10edb18ac87203e3df27a0a319927a6382329d60106603d02a365011c1ce76264765aab544af25a62950be945db806af723fcc8eb034d6a234a35050ece3ad694d4cdf6700869db67bd9ffbe1be93ae69f95f197