sdi-12.com
Issued by R3
About this certificate
This digital certificate with serial number 04:26:9b:6f:31:32:32:fd:b7:63:04:1a:b5:25:84:26:3a:f2 was issued on by Let's Encrypt.
With 11 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sdi-12.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:26:9b:6f:31:32:32:fd:b7:63:04:1a:b5:25:84:26:3a:f2Serial Number (int): 361586481352149867203658777256024389073650
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: ff:68:a9:f9:c2:04:7b:19:c8:b3:02:09:e8:a2:f7:b0:53:70:27:f7
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 15:29:d0:6b:91:4d:8c:20:13:69:73:31:23:f2:c8:5b:b7:a7:b9:f5
Fingerprint (sha256): b3:05:82:99:c3:e3:8f:74:36:29:08:23:15:99:fa:69:ba:3c:de:0f:47:b5:11:85:fa:53:fb:08:e0:14:1f:b0
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate sdi-12.com
11
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sdi-12.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ecashtraffic.com
frflanaganinstitute.net
googolbonker.com
houstoncommercialconstruction.com
ismykioskonline.com
nswstateelections.com.au
reviewsforum.in
rxgoldencrunch.com
sdi-12.com
showexchange.com
vactrucks.com
frflanaganinstitute.net
googolbonker.com
houstoncommercialconstruction.com
ismykioskonline.com
nswstateelections.com.au
reviewsforum.in
rxgoldencrunch.com
sdi-12.com
showexchange.com
vactrucks.com
Other certificates including the domain name sdi-12.com
(limited to 100 certificates)
sdi-12.com
jamiekirchick.org
instituteforbiblereading.bible
sdi-12.com
onlyyoucandoit.ca
ultimateloghome.ca
bramptonhomebuyers.ca
mc.thrive.fi
lgbtqia.bible
bramptonhomebuyers.ca
cohealthfreedompac.org
robots.cool
wfo.land
modeling.world
instituteforbiblereading.bible
delisting.org
investigations101.org
fldc.bible
horse-community.org
instituteforbiblereading.bible
backorder.world
nirv.bible
rawgeospatial.org
nirv.bible
ledgerbank.org
robots.cool
sdi-12.com
instituteforbiblereading.bible
nirv.bible
sculpit.mobi
premierhealthcare.de
delisting.org
ledgerbank.org
moonexpress.space
sdi-12.com
maw.me
pcmatrix.org
bramptonhomebuyers.ca
getviagra.org
enerpac.org
bramptonhomebuyers.ca
lumber.cc
paysend.org
jamiekirchick.org
instituteforbiblereading.bible
sdi-12.com
onlyyoucandoit.ca
ultimateloghome.ca
bramptonhomebuyers.ca
mc.thrive.fi
lgbtqia.bible
bramptonhomebuyers.ca
cohealthfreedompac.org
robots.cool
wfo.land
modeling.world
instituteforbiblereading.bible
delisting.org
investigations101.org
fldc.bible
horse-community.org
instituteforbiblereading.bible
backorder.world
nirv.bible
rawgeospatial.org
nirv.bible
ledgerbank.org
robots.cool
sdi-12.com
instituteforbiblereading.bible
nirv.bible
sculpit.mobi
premierhealthcare.de
delisting.org
ledgerbank.org
moonexpress.space
sdi-12.com
maw.me
pcmatrix.org
bramptonhomebuyers.ca
getviagra.org
enerpac.org
bramptonhomebuyers.ca
lumber.cc
paysend.org
Certificate
The complete raw certificate details for sdi-12.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIExjCCA66gAwIBAgISBCabbzEyMv23YwQatSWEJjryMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDQwODIyMzhaFw0yNDA3MDMwODIyMzdaMBUxEzARBgNVBAMT CnNkaS0xMi5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkVLzH ZxObVDQOn+9M5/H044bmEydPrdjg0egYNI08QKHIQvofy/Ng6hG26dC/YlL2klmN Rz7uAAecfJqmXg42RqulMa9PJEvgnP4AMK3SqyGyZRChQE0xvAMoeEPNbDz6OcbE opRkfN2VHwQ3lsXs1P/En7Df5wl9PmFyhOmJuUrEa+75x4PImD5vrt+C3MUArtCL RMYRTRkUY6UcrZpI4YW376VmmrnRV/iVqBHs+6izcH8uWiw4vtTElCuM1MxTiiSz 5WXCgCnNAZcKUTpD6tYwlnC7mAV8V0idCr8j4tPzlqCRoKzjrW0QwO82Ee5bOYha OJvzkLZTIagAxTIhAgMBAAGjggHxMIIB7TAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FP9oqfnCBHsZyLMCCeii97BTcCf3MB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMIHs BgNVHREEgeQwgeGCEGVjYXNodHJhZmZpYy5jb22CF2ZyZmxhbmFnYW5pbnN0aXR1 dGUubmV0ghBnb29nb2xib25rZXIuY29tgiFob3VzdG9uY29tbWVyY2lhbGNvbnN0 cnVjdGlvbi5jb22CE2lzbXlraW9za29ubGluZS5jb22CGG5zd3N0YXRlZWxlY3Rp b25zLmNvbS5hdYIPcmV2aWV3c2ZvcnVtLmlughJyeGdvbGRlbmNydW5jaC5jb22C CnNkaS0xMi5jb22CEHNob3dleGNoYW5nZS5jb22CDXZhY3RydWNrcy5jb20wEwYD VR0gBAwwCjAIBgZngQwBAgEwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcN AQELBQADggEBAFaD7s+3+2YNFO7sdNenpXarp3FfKsN2RzY32oasVBKZ38cIcUSI 9uPDlMeiPMxUw4J40esksyZDsqWCiKT82w4AfmFABfD/UfiaBKSWcGyuJQ5chl7k MRyRa6yoqoMFwZXLTyDPvzwfAl7Nm0tgZ1b6p2TUyHSSOTi5dQo103L9yeFi/Meq G3NVoeTsu5G0RXaB7CnNzAVwRBJkkp5ncj1u1EkQmLZlyJJ6KM3vb3CjiufQm8pD l58bIQQ1K1MhH5Bd7mr/gCQKG4LZq/UuUlFZjaoogIhkyy4iF3kQ1SbC59CdYdqj flnCvSvpdBDsWhHHc4MZNCKpUSN4usmKj4Q= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5FS8x2cTm1Q0Dp/vTOfx 9OOG5hMnT63Y4NHoGDSNPEChyEL6H8vzYOoRtunQv2JS9pJZjUc+7gAHnHyapl4O NkarpTGvTyRL4Jz+ADCt0qshsmUQoUBNMbwDKHhDzWw8+jnGxKKUZHzdlR8EN5bF 7NT/xJ+w3+cJfT5hcoTpiblKxGvu+ceDyJg+b67fgtzFAK7Qi0TGEU0ZFGOlHK2a SOGFt++lZpq50Vf4lagR7Puos3B/LlosOL7UxJQrjNTMU4oks+VlwoApzQGXClE6 Q+rWMJZwu5gFfFdInQq/I+LT85agkaCs461tEMDvNhHuWzmIWjib85C2UyGoAMUy IQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 361586481352149867203658777256024389073650 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-04 08:22:38 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-03 08:22:37 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sdi-12.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28824119110270883488145936874982593892375917577627412325899152177780537638431285246638170191247511595028820450238467387242240510525751491884689272647265554343876569901753244810340884532291280883625975047605553850680450042304648275059763305186029583761127991126550716486637588767791240815353723322152492838149391375186973707584156947313810409632953469693401481909703059123803677156632319302122844997226078330418927794123255119564292207423822683983642091842318292260868982877250342206770202080641773750824522042296401046922131170806149225303345805510034940581971225781081903207247578854770163205543278432839497811309089 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ff68a9f9c2047b19c8b30209e8a2f7b0537027f7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (228 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ecashtraffic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'frflanaganinstitute.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'googolbonker.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'houstoncommercialconstruction.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ismykioskonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nswstateelections.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'reviewsforum.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rxgoldencrunch.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sdi-12.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'showexchange.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vactrucks.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 005683eecfb7fb660d14eeec74d7a7a576aba7715f2ac376473637da86ac541299dfc708714488f6e3c394c7a23ccc54c38278d1eb24b32643b2a58288a4fcdb0e007e614005f0ff51f89a04a496706cae250e5c865ee4311c916baca8aa8305c195cb4f20cfbf3c1f025ecd9b4b606756faa764d4c874923938b9750a35d372fdc9e162fcc7aa1b7355a1e4ecbb91b4457681ec29cdcc0570441264929e67723d6ed4491098b665c8927a28cdef6f70a38ae7d09bca43979f1b2104352b53211f905dee6aff80240a1b82d9abf52e5251598daa28808864cb2e22177910d526c2e7d09d61daa37e59c2bd2be97410ec5a11c77383193422a9512378bac98a8f84