citiwood.co.za
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:9c:89:c5:ea:ac:cf:be:a8:f4:52:98:c8:29:45:08:64:fd was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=citiwood.co.za
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:9c:89:c5:ea:ac:cf:be:a8:f4:52:98:c8:29:45:08:64:fdSerial Number (int): 314604038912626190173536396223577349186813
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a2:40:37:1d:1b:87:31:88:8e:72:cf:91:92:57:d7:f6:da:81:45:3a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 62:40:8b:e7:85:c7:c7:c0:a6:a6:f9:b0:ce:90:c3:8f:67:51:6f:3d
Fingerprint (sha256): b3:8d:52:dc:1e:b8:d9:01:7e:3d:93:ff:9b:4c:cc:ca:17:b9:58:f5:93:e3:73:5d:93:a2:a1:34:4c:c9:c5:5c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate citiwood.co.za
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for citiwood.co.za
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
citiwood.co.za
Other certificates including the domain name citiwood.co.za
(limited to 100 certificates)
citiwood.co.za
citiwood.co.za
sni.cloudflaressl.com
citiwood.co.za
citiwood.co.za
citiwood.co.za
citiwood.co.za
www.citiwood.co.za
www.citiwood.co.za
citiwood.co.za
citiwood.co.za
citiwood.co.za
track.rathin.com
www.citiwood.co.za
citiwood.co.za
citiwood.co.za
sni.cloudflaressl.com
zmtrack.web.citiwood.co.za
www.citiwood.co.za
sni.cloudflaressl.com
www.citiwood.co.za
www.citiwood.co.za
citiwood.co.za
citiwood.co.za
www.citiwood.co.za
www.citiwood.co.za
citiwood.co.za
citiwood.co.za
www.citiwood.co.za
citiwood.co.za
citiwood.co.za
zmtrack.web.citiwood.co.za
citiwood.co.za
citiwood.co.za
sni.cloudflaressl.com
www.citiwood.co.za
www.citiwood.co.za
citiwood.co.za
citiwood.co.za
citiwood.co.za
citiwood.co.za
sni.cloudflaressl.com
citiwood.co.za
citiwood.co.za
citiwood.co.za
citiwood.co.za
www.citiwood.co.za
www.citiwood.co.za
citiwood.co.za
citiwood.co.za
citiwood.co.za
track.rathin.com
www.citiwood.co.za
citiwood.co.za
citiwood.co.za
sni.cloudflaressl.com
zmtrack.web.citiwood.co.za
www.citiwood.co.za
sni.cloudflaressl.com
www.citiwood.co.za
www.citiwood.co.za
citiwood.co.za
citiwood.co.za
www.citiwood.co.za
www.citiwood.co.za
citiwood.co.za
citiwood.co.za
www.citiwood.co.za
citiwood.co.za
citiwood.co.za
zmtrack.web.citiwood.co.za
citiwood.co.za
citiwood.co.za
sni.cloudflaressl.com
www.citiwood.co.za
www.citiwood.co.za
citiwood.co.za
citiwood.co.za
citiwood.co.za
Certificate
The complete raw certificate details for citiwood.co.za in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgISA5yJxeqsz76o9FKYyClFCGT9MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODExMjIwNzMxMDRaFw0x OTAyMjAwNzMxMDRaMBkxFzAVBgNVBAMTDmNpdGl3b29kLmNvLnphMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA63x0MBweila0r7aEbGjHCvroP4ZUTX0M qURIF4wqbXqgXNCXSZyWnKV5rQlZG2eGOJDFVbeL0iSqlBvnlHEhWYaH6468Kj8Z LABSGyw0V0mbhF3yC5yiq8RorRAPYIHdhIkszLUkwvKFz3VjAoT3CaVPi8si2I6Z 4KPxpgm4NOspdFT0qG1KTlLvquBnqvthctY1QNiSg2vqjzUZSgadsEEjJaDKRsoc F/YAwqulgpzGnEK4TwZTtNSizV7s76+oZvJ6aRUJr1+uYNt+59a+KtFQSsgTeAbq apooiLkYpsYR3LJOkDujIWGhBLqsxPng7kQXQuLnU9kRLsiGyNp8UwIDAQABo4IC YzCCAl8wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSiQDcdG4cxiI5yz5GSV9f22oFF OjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRj MGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5v cmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5v cmcvMBkGA1UdEQQSMBCCDmNpdGl3b29kLmNvLnphMEwGA1UdIARFMEMwCAYGZ4EM AQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0 c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYA4mlLribo6UAJ 6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4AAAFnOotBcQAABAMARzBFAiEAoemFBM8E EKarLr9seD5a3VnK1NfuyBa8hwL22F+kd8QCIFsS7PzfBHWv3uVqBhfQw4FgNMBa 6pqH1OmqPwOTUfnJAHYAY/Lbzeg7zCzPC3KEJ1drM6SNYXePvXWmOLHHaFRL2I0A AAFnOotBcwAABAMARzBFAiEAhCdbCRpmS8ZBl5GTOFP6NDI4uyIm2yk74UkkbavP uhECIDm4NTHXhCt3XVTH8V6VpIT6ZWlV1aaZ6fAe7fLNYVEyMA0GCSqGSIb3DQEB CwUAA4IBAQCABr1L1VbhVZ1k1balyAfKs6YwrgeRvWsebzFKSoy6K0o9cgw28w9+ hDpR8ynOSn/cNnK9ur1frUStSgBDP8SHLdSQXOvMZDm5R3jBTYakqH/aqpcL2gPd F/oCnTbDpYVimim9ZG/008C2Mqp3GSPoilIIbF8g7Z6gc75WmcJNHRwfupM7TCiw cUL3JjMT/bxDatzbqPzXZL725HCtbJSVQjR212bcYlZ4vDqgl00dNEsrkcb2OyhF ERktsZPUSXKgEqA6EPWEvVfvpepKGN4up7qO5KyCUdSyx4pwqmf8JJGgGU3LFwX1 889ytZOHMffj433OjQ+twOkf2VzOKJ3U -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA63x0MBweila0r7aEbGjH CvroP4ZUTX0MqURIF4wqbXqgXNCXSZyWnKV5rQlZG2eGOJDFVbeL0iSqlBvnlHEh WYaH6468Kj8ZLABSGyw0V0mbhF3yC5yiq8RorRAPYIHdhIkszLUkwvKFz3VjAoT3 CaVPi8si2I6Z4KPxpgm4NOspdFT0qG1KTlLvquBnqvthctY1QNiSg2vqjzUZSgad sEEjJaDKRsocF/YAwqulgpzGnEK4TwZTtNSizV7s76+oZvJ6aRUJr1+uYNt+59a+ KtFQSsgTeAbqapooiLkYpsYR3LJOkDujIWGhBLqsxPng7kQXQuLnU9kRLsiGyNp8 UwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 314604038912626190173536396223577349186813 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-22 07:31:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-20 07:31:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'citiwood.co.za' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29727372152254266792017466860247615455390365636840611204696370736736106714025088931375083723788761645617296614963287702722606971248394154802579724982418501773731231857500859374795868849755307390201154113271395333965363948935380378331321924600606873761268999044875391538138341707302169952147546693031952242787357223650966508964815100971688503788504032141134444474903052214732847996639140505975275790642718828650251937708541107349799076073816250924108677276817433526354954968433887663214831539247011297388173418598801251584911256514996839424513723301925122136742182806292686861248238345399604211855775573107008530447443 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a240371d1b8731888e72cf919257d7f6da81453a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'citiwood.co.za' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe000001673a8b41710000040300473045022100a1e98504cf0410a6ab2ebf6c783e5add59cad4d7eec816bc8702f6d85fa477c402205b12ecfcdf0475afdee56a0617d0c3816034c05aea9a87d4e9aa3f039351f9c900760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d000001673a8b4173000004030047304502210084275b091a664bc6419791933853fa343238bb2226db293be149246dabcfba11022039b83531d7842b775d54c7f15e95a484fa656955d5a699e9f01eedf2cd615132 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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