phoenix-geosystem.com
Issued by R3
About this certificate
This digital certificate with serial number 03:e3:e8:49:65:4a:bd:95:2b:7a:99:60:4a:f7:65:34:d6:ed was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=phoenix-geosystem.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:e3:e8:49:65:4a:bd:95:2b:7a:99:60:4a:f7:65:34:d6:edSerial Number (int): 338889717073471471667989244413456382482157
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: aa:61:b8:0e:d9:db:d7:48:e2:4d:01:45:14:b5:91:57:2e:35:6f:b9
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c7:fe:10:00:32:b7:7a:0c:6e:6c:3d:b5:2b:ca:75:e7:6a:42:aa:f3
Fingerprint (sha256): b2:33:b7:fd:b6:6a:58:d3:aa:96:a9:c2:4f:b9:00:04:f1:50:3d:5e:52:66:a7:a3:a3:03:28:d3:13:34:5a:37
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate phoenix-geosystem.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for phoenix-geosystem.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
Other certificates including the domain name phoenix-geosystem.com
(limited to 100 certificates)
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
develop.phoenix-geosystem.com
phoenix-geosystem.dikot.men
phoenix-geosystem.dikot.men
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
*.phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
develop.phoenix-geosystem.com
phoenix-geosystem.dikot.men
phoenix-geosystem.dikot.men
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
*.phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
phoenix-geosystem.com
Certificate
The complete raw certificate details for phoenix-geosystem.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgISA+PoSWVKvZUreplgSvdlNNbtMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMDYyMjI5MjJaFw0yNDA2MDQyMjI5MjFaMCAxHjAcBgNVBAMT FXBob2VuaXgtZ2Vvc3lzdGVtLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBANvPQsQFTdcP4IUkYZqq748JyWiYhLLPxnzdXjazffzTkUJRCSVLsmjK +8o1jVkeGjqg9e+4OjGllPXYU4bIefJ+6IqJlBCP8phStwlClSBiIOhvOR+/SEfM Oqeahw64lCoIr40FeYR//VlMf2uEpbO1WF9dbI1WcCmRDFFlHyHJzCClqF/M0yoH 35CijFse+BjDLmyv20B3WoN6iW02l8kBnROhi4nwf2h7eqLpRg5G8ocq9odH9I/G B1A/uZGFa6cXji38Hn3BdPrir+bMr4Vhc+WiAxK1dWY2QjtSWHWg3ynXMxudCrGc BcZJlA9qXD1zVUqa3g020IiN85CzIO0CAwEAAaOCAjEwggItMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIw ADAdBgNVHQ4EFgQUqmG4Dtnb10jiTQFFFLWRVy41b7kwHwYDVR0jBBgwFoAUFC6z F7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVo dHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxl bmNyLm9yZy8wOQYDVR0RBDIwMIIXKi5waG9lbml4LWdlb3N5c3RlbS5jb22CFXBo b2VuaXgtZ2Vvc3lzdGVtLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisG AQQB1nkCBAIEgfYEgfMA8QB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s5 2IRzAAABjhYZoakAAAQDAEgwRgIhAM0D78Ve6Z2izlx79kSTVVVyTGrSBDJfRl7n TxYSotoQAiEA91UfyTZQZ7lewlkXQ/CX7bdaU+v02DfoGW5g9/q7cCUAdgB2/4g/ Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAY4WGaH7AAAEAwBHMEUCIQCm yO2V69I31ue2ELGZLiyP+EYeTiwgl3eXtqaT5V0WIQIgadlnffnIz8TpbmG1GVjm eB0iUC9yPeLTscGZh13iTfYwDQYJKoZIhvcNAQELBQADggEBACqx4/CwMRWdmBWF zbzT75szHtot7+8EENY2E9uZhcGVkctABfOtTaI9ZbsS1pug0ddPKKuGrJJJf0ar U95wcDV6LsFhqB1kH7qE/kn1TLH2ClpY2zRYE8Upx/9GWj3h6q9RW23mw7MBz/rI gNVhi/E3M4xJRtGBwjnOa3Z47dFLZ8gmEXwbeUPnh4hm5UUgtmbxfgEgzohpUCkQ amf1LQvPSToXIrIWjqi/PINP/qc95m+8tOsb95LnSPcqOOVhz197A+ltYXmFnfRw AT2WfsHtR8bnE/kbXqY7bSEb9xTjcuOH2sWXqYrYmKdJUfCPONByV2vkarsecvet DdXhrVE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA289CxAVN1w/ghSRhmqrv jwnJaJiEss/GfN1eNrN9/NORQlEJJUuyaMr7yjWNWR4aOqD177g6MaWU9dhThsh5 8n7oiomUEI/ymFK3CUKVIGIg6G85H79IR8w6p5qHDriUKgivjQV5hH/9WUx/a4Sl s7VYX11sjVZwKZEMUWUfIcnMIKWoX8zTKgffkKKMWx74GMMubK/bQHdag3qJbTaX yQGdE6GLifB/aHt6oulGDkbyhyr2h0f0j8YHUD+5kYVrpxeOLfwefcF0+uKv5syv hWFz5aIDErV1ZjZCO1JYdaDfKdczG50KsZwFxkmUD2pcPXNVSpreDTbQiI3zkLMg 7QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 338889717073471471667989244413456382482157 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-06 22:29:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-04 22:29:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'phoenix-geosystem.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27748392898991220226652224899026826890866414340451876751139913925156706216014205581881203496777983849094038238595757312823977443803965474199325926928128712953175593893550215265619902409694584630026828339116248176964105567730187045442373389048880549082605454652679992398421081314257265184691950853029554600929856441620402399312759958281174949773216372145854467962902489182555265630324730789417031172800863118140156273479067263962066881357271489035670740824722205783920425775935847734329692922277830733341156038811268485232123297099625804408356141115571159644276174011870322755305541852197317930448046591214946276810989 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) aa61b80ed9dbd748e24d014514b591572e356fb9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.phoenix-geosystem.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'phoenix-geosystem.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e1619a1a90000040300483046022100cd03efc55ee99da2ce5c7bf644935555724c6ad204325f465ee74f1612a2da10022100f7551fc9365067b95ec2591743f097edb75a53ebf4d837e8196e60f7fabb702500760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018e1619a1fb0000040300473045022100a6c8ed95ebd237d6e7b610b1992e2c8ff8461e4e2c20977797b6a693e55d1621022069d9677df9c8cfc4e96e61b51958e6781d22502f723de2d3b1c199875de24df6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 002ab1e3f0b031159d981585cdbcd3ef9b331eda2defef0410d63613db9985c19591cb4005f3ad4da23d65bb12d69ba0d1d74f28ab86ac92497f46ab53de7070357a2ec161a81d641fba84fe49f54cb1f60a5a58db345813c529c7ff465a3de1eaaf515b6de6c3b301cffac880d5618bf137338c4946d181c239ce6b7678edd14b67c826117c1b7943e7878866e54520b666f17e0120ce88695029106a67f52d0bcf493a1722b2168ea8bf3c834ffea73de66fbcb4eb1bf792e748f72a38e561cf5f7b03e96d6179859df470013d967ec1ed47c6e713f91b5ea63b6d211bf714e372e387dac597a98ad898a74951f08f38d072576be46abb1e72f7ad0dd5e1ad51