primevestcp.com
Issued by R3
About this certificate
This digital certificate with serial number 03:80:c7:71:00:6d:46:6d:dd:ea:65:31:57:16:96:68:1e:a3 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=primevestcp.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:80:c7:71:00:6d:46:6d:dd:ea:65:31:57:16:96:68:1e:a3Serial Number (int): 305158103870524742443036997289498217291427
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f5:17:8f:0d:5c:ba:34:2a:ec:4d:c0:66:04:70:c5:d2:ea:ab:a0:1d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): fb:c3:6d:dc:8b:ba:b8:30:be:76:7a:2d:5b:27:02:cf:af:18:11:f3
Fingerprint (sha256): b1:ae:30:39:c7:b3:79:61:1d:8d:14:e6:8a:ff:c9:97:16:b0:af:a9:43:77:da:38:85:ba:18:09:69:6a:fa:32
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate primevestcp.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for primevestcp.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
primevestcp.com
primex.site.transip.me
www.primevestcp.com
primex.site.transip.me
www.primevestcp.com
Other certificates including the domain name primevestcp.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for primevestcp.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGGDCCBQCgAwIBAgISA4DHcQBtRm3d6mUxVxaWaB6jMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMTcyMjQxMzlaFw0yNDAyMTUyMjQxMzhaMBoxGDAWBgNVBAMT D3ByaW1ldmVzdGNwLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB AKRpOhh0xJC2rKVSUC+8ktK4ZbW4br5SEvHYGe4a3EvsW8RLsHrtAbbm8Dv6NgKT zmijk/hwYftosbEa2rHDZ70fBZ1cRO8WsU93rE4O5WbQyZYRf8x+tMl7k0Ual41J 6Fz7LZenzrLhr/tJWEVB3IbZOTppg8ATe769PywLK0F7+ouBml6aORjL8SJ6oDtc f7DLhV59Gn8QFBbD45/VLzoFbp/rL5P6toChGbozU57+Dl4llNkeORnKH5JfHMiF Xlv4BeDRrgmAimEFuMorv2eWQ9w0P0C3Mf3ZoUsNvAsMMd94jZP8cWQXztz+sSk6 6J2+wfiBMKYJAEWjU9rPjca/QGSNmeiddNH0Tz647uzXIjWrxORRiqZsBCLJcg9w 532tZyYOfW32oLF1JDeloJZBFxChmmdTpCG3/0r21aJ1JpyQgxa7+XyNIxJ6zrM+ neKCGEKjil6J0pxSr9LtqIVqRUG2Wb4pEF3edtLtWSqv5X+J7cozk4wEaZ+yMYN6 3DbHBCpe9vLXCLWYvZ1llrTghQOgFsC8jwGGX/czyfPlpwguSJKanzXNjHHjOCc3 I4CDx1iPvPikKfzJWJMXfAm1nGIeuEgv+/fYtO2O1tLE2J4vBYfEfdBsvSQMyjZt wb2pXmezwhb5aLNAxzvWJU0m93K997Vt2L7F66u1/oeNAgMBAAGjggI+MIICOjAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFPUXjw1cujQq7E3AZgRwxdLqq6AdMB8GA1Ud IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw Oi8vcjMuaS5sZW5jci5vcmcvMEcGA1UdEQRAMD6CD3ByaW1ldmVzdGNwLmNvbYIW cHJpbWV4LnNpdGUudHJhbnNpcC5tZYITd3d3LnByaW1ldmVzdGNwLmNvbTATBgNV HSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2AEiw42va pkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABi9+pWYEAAAQDAEcwRQIhAKBN gEUdeVAwsyXZs9IZxB7kNftwVhe9MBnVth7h9lGzAiBAB+Q6+ooU8lVkALLb6nKr Dwlt1mPI499/+rTUQEod3QB2ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h +tQXAAABi9+pWXsAAAQDAEcwRQIhAPB7rQotSAcUZyA3zd7ZZ/rHuh51cHmmZu7i j6FmC66tAiBEg7qR2/TIgBfi5EUX0pfYxTIzqTcwBJCRRUtoNje/jDANBgkqhkiG 9w0BAQsFAAOCAQEAhdv0w9+iQxOImtcafyjVegq4BcEJUOuQbS5W2BlhcrRK5ogc /RxwUVw8G3kCpNxOAdzxJjqWOvcH/YcHQemBWSK66Tk9YKrmezLhZvkyE59SEEcz iqiFcwdD+uBnnfoUcJM617301U6A2Xj9yDvzKrTX+uGUjrsKAAX2QsJtyXKcRXvm +fqHwI9jkd6eIXw6ElzyUAj58KwtjcC8STkuXhnpVzYdI80q9tmzUqcMwqDJgGzK otfvoZRlLK8L2u7gGUp46FZ3Bf9rZly31vxnPILit9RSYbdryLThoz7ibrSB5jHS DNV9nHBOxsi/7H/MRqlr/XTgID6mO0RuD2QtBQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApGk6GHTEkLaspVJQL7yS 0rhltbhuvlIS8dgZ7hrcS+xbxEuweu0BtubwO/o2ApPOaKOT+HBh+2ixsRrascNn vR8FnVxE7xaxT3esTg7lZtDJlhF/zH60yXuTRRqXjUnoXPstl6fOsuGv+0lYRUHc htk5OmmDwBN7vr0/LAsrQXv6i4GaXpo5GMvxInqgO1x/sMuFXn0afxAUFsPjn9Uv OgVun+svk/q2gKEZujNTnv4OXiWU2R45Gcofkl8cyIVeW/gF4NGuCYCKYQW4yiu/ Z5ZD3DQ/QLcx/dmhSw28Cwwx33iNk/xxZBfO3P6xKTronb7B+IEwpgkARaNT2s+N xr9AZI2Z6J100fRPPrju7NciNavE5FGKpmwEIslyD3Dnfa1nJg59bfagsXUkN6Wg lkEXEKGaZ1OkIbf/SvbVonUmnJCDFrv5fI0jEnrOsz6d4oIYQqOKXonSnFKv0u2o hWpFQbZZvikQXd520u1ZKq/lf4ntyjOTjARpn7Ixg3rcNscEKl728tcItZi9nWWW tOCFA6AWwLyPAYZf9zPJ8+WnCC5IkpqfNc2MceM4JzcjgIPHWI+8+KQp/MlYkxd8 CbWcYh64SC/799i07Y7W0sTYni8Fh8R90Gy9JAzKNm3BvaleZ7PCFvlos0DHO9Yl TSb3cr33tW3YvsXrq7X+h40CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 305158103870524742443036997289498217291427 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-17 22:41:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-15 22:41:38 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'primevestcp.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 670738535139306640961053770283406643566400601253451518784079665935567851047239771641858123370033630253519672575465378236068111663732857453299120410245773569409898539668960275732243750618303055852270794992903678605857640280585666934832439266477487418197645135624313151127741907999969991227233739701880392663597717090342989434009687039012102623907983184198545522563658446727920692864675194826839900328617538348538869222559318632402183568212421169716008711437315621552967385848929086377825327881403290123858551060034700555268318324474662458660365920903476837324828482279742751398358233194234586644819056836426137944215962944365034829394718523698983037934537917511706780723222012234851116598105521040916745502379223489024499511163255563361008243712932391877332921643513959548738374273655951430136364874877993319079083520213220663117777184612009145846955461414550863780582052593170922312904780869150846244513217194266583150760988258660595895255239717997784673536131779919263119578835357540465466137678288249202489087931421785589575332962697199620852802827981232151406072874418658727265308198768663852782905967331642906633905642251666065761813454718959118985724444707626204810348548422391929729824534124910197041548720146601539199773345677 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f5178f0d5cba342aec4dc0660470c5d2eaaba01d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (64 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'primevestcp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'primex.site.transip.me' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.primevestcp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018bdfa959810000040300473045022100a04d80451d795030b325d9b3d219c41ee435fb705617bd3019d5b61ee1f651b302204007e43afa8a14f2556400b2dbea72ab0f096dd663c8e3df7ffab4d4404a1ddd0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018bdfa9597b0000040300473045022100f07bad0a2d480714672037cdded967fac7ba1e757079a666eee28fa1660baead02204483ba91dbf4c88017e2e44517d297d8c53233a93730049091454b683637bf8c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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