primevestcp.com

Issued by R3

About this certificate

This digital certificate with serial number 03:80:c7:71:00:6d:46:6d:dd:ea:65:31:57:16:96:68:1e:a3 was issued on by Let's Encrypt.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=primevestcp.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:80:c7:71:00:6d:46:6d:dd:ea:65:31:57:16:96:68:1e:a3
Serial Number (int): 305158103870524742443036997289498217291427
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: f5:17:8f:0d:5c:ba:34:2a:ec:4d:c0:66:04:70:c5:d2:ea:ab:a0:1d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): fb:c3:6d:dc:8b:ba:b8:30:be:76:7a:2d:5b:27:02:cf:af:18:11:f3
Fingerprint (sha256): b1:ae:30:39:c7:b3:79:61:1d:8d:14:e6:8a:ff:c9:97:16:b0:af:a9:43:77:da:38:85:ba:18:09:69:6a:fa:32

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate primevestcp.com

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for primevestcp.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

primevestcp.com
primex.site.transip.me
www.primevestcp.com

Other certificates including the domain name primevestcp.com

(limited to 100 certificates)
primevestcp.com
primevestcp.com
primevestcp.com
primevestcp.com
primevestcp.com
crm.primevestcp.com
primevestcp.com
crm.primevestcp.com
primevestcp.com

Certificate

The complete raw certificate details for primevestcp.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 305158103870524742443036997289498217291427
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-17 22:41:39 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-15 22:41:38 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'primevestcp.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 670738535139306640961053770283406643566400601253451518784079665935567851047239771641858123370033630253519672575465378236068111663732857453299120410245773569409898539668960275732243750618303055852270794992903678605857640280585666934832439266477487418197645135624313151127741907999969991227233739701880392663597717090342989434009687039012102623907983184198545522563658446727920692864675194826839900328617538348538869222559318632402183568212421169716008711437315621552967385848929086377825327881403290123858551060034700555268318324474662458660365920903476837324828482279742751398358233194234586644819056836426137944215962944365034829394718523698983037934537917511706780723222012234851116598105521040916745502379223489024499511163255563361008243712932391877332921643513959548738374273655951430136364874877993319079083520213220663117777184612009145846955461414550863780582052593170922312904780869150846244513217194266583150760988258660595895255239717997784673536131779919263119578835357540465466137678288249202489087931421785589575332962697199620852802827981232151406072874418658727265308198768663852782905967331642906633905642251666065761813454718959118985724444707626204810348548422391929729824534124910197041548720146601539199773345677
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							f5178f0d5cba342aec4dc0660470c5d2eaaba01d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (64 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'primevestcp.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'primex.site.transip.me'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.primevestcp.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018bdfa959810000040300473045022100a04d80451d795030b325d9b3d219c41ee435fb705617bd3019d5b61ee1f651b302204007e43afa8a14f2556400b2dbea72ab0f096dd663c8e3df7ffab4d4404a1ddd0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018bdfa9597b0000040300473045022100f07bad0a2d480714672037cdded967fac7ba1e757079a666eee28fa1660baead02204483ba91dbf4c88017e2e44517d297d8c53233a93730049091454b683637bf8c
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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