athenadayspa.com.voetbal.co.za
Issued by R3
About this certificate
This digital certificate with serial number 03:d2:6f:25:49:4d:f6:ac:00:d4:f4:9c:02:44:34:47:b5:de was issued on by Let's Encrypt.
With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=athenadayspa.com.voetbal.co.za
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d2:6f:25:49:4d:f6:ac:00:d4:f4:9c:02:44:34:47:b5:deSerial Number (int): 332943892757986519549450599535461188220382
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3d:34:0e:9a:7d:38:5b:bf:4c:6f:8c:30:a7:1b:99:23:9c:30:55:9a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 13:81:98:5b:50:e7:0f:65:1b:b1:f2:6a:d0:b2:cc:13:90:b1:a2:98
Fingerprint (sha256): b5:2b:2c:b0:c3:75:f1:2b:b1:b1:eb:12:03:cf:a3:9c:7b:0a:fb:ef:c6:8d:37:70:69:24:d8:af:71:03:02:c9
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate athenadayspa.com.voetbal.co.za
12
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for athenadayspa.com.voetbal.co.za
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
69er.love
affordabledesignerwatches.com
amusementparkpos.com
athenadayspa.com.voetbal.co.za
debbiehenline.com
growfoundry.org
homeschoolprayers.org
masterfone.com.simplicitydb.com
midlandchillers.com
norwoodfoundrysaskatchewan.com.honestsolarus.com
nw.bible
olympia-med.com.dog4vip.com
affordabledesignerwatches.com
amusementparkpos.com
athenadayspa.com.voetbal.co.za
debbiehenline.com
growfoundry.org
homeschoolprayers.org
masterfone.com.simplicitydb.com
midlandchillers.com
norwoodfoundrysaskatchewan.com.honestsolarus.com
nw.bible
olympia-med.com.dog4vip.com
Other certificates including the domain name voetbal.co.za
(limited to 100 certificates)
Certificate
The complete raw certificate details for athenadayspa.com.voetbal.co.za in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGGjCCBQKgAwIBAgISA9JvJUlN9qwA1PScAkQ0R7XeMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMDgwNzA4MDBaFw0yNDAzMDcwNzA3NTlaMCkxJzAlBgNVBAMT HmF0aGVuYWRheXNwYS5jb20udm9ldGJhbC5jby56YTCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAMM01DQWlMCEzZHWEgwhHFKZJa4ZayvF7XigF3EnJxS3 G8wXwV+j0cfQRci49K3lh6BaLVf1JxXz2zAsjJ6ObdPZAK3IpDpDW9wE/xI6frY4 lQrzU3JPIbVWDX6e5OkpCs+gEQthbdXYCwoE6JKymWpY3qZu3Cg+zxPc9bL7a1uX 8lZhgDz6nz/wtZLib2QsUX2z8Qi7cU/UCNhoCMdRlQU9GkjOn4Pw/uZ04BP8Xk+W YrpM000G0kQRQzt/yGyYUjLLyF5lcbTefsDP+3HQHQBV9wq3GhoXwRNczuBAtBBY xnw2V3Z0AhBc8E727e9i0v/uuMtSZcmVuzcekN10isMCAwEAAaOCAzEwggMtMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYD VR0TAQH/BAIwADAdBgNVHQ4EFgQUPTQOmn04W79Mb4wwpxuZI5wwVZowHwYDVR0j BBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsG AQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6 Ly9yMy5pLmxlbmNyLm9yZy8wggE3BgNVHREEggEuMIIBKoIJNjllci5sb3Zlgh1h ZmZvcmRhYmxlZGVzaWduZXJ3YXRjaGVzLmNvbYIUYW11c2VtZW50cGFya3Bvcy5j b22CHmF0aGVuYWRheXNwYS5jb20udm9ldGJhbC5jby56YYIRZGViYmllaGVubGlu ZS5jb22CD2dyb3dmb3VuZHJ5Lm9yZ4IVaG9tZXNjaG9vbHByYXllcnMub3Jngh9t YXN0ZXJmb25lLmNvbS5zaW1wbGljaXR5ZGIuY29tghNtaWRsYW5kY2hpbGxlcnMu Y29tgjBub3J3b29kZm91bmRyeXNhc2thdGNoZXdhbi5jb20uaG9uZXN0c29sYXJ1 cy5jb22CCG53LmJpYmxlghtvbHltcGlhLW1lZC5jb20uZG9nNHZpcC5jb20wEwYD VR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwA7U3d1 Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYxIeBuLAAAEAwBIMEYCIQCd t4dJuHhMi457YCY4xIddjgtLn9yhsfZxzQyyiJd/ggIhAOYnBXGzklSfbePkMjkd w4qpZS5tgl1fZjzkh+gwUpWYAHYAKdA6G7Z0qnEc0wNbZVfBT4qni0/oOJRJ7KRT +US9JGgAAAGMSHgcSwAABAMARzBFAiEAzX3p658mz0TsRs6MVqwkvQ/RuIKNUDy0 Yvw4C99+7mgCIBUU8ro6lsJNcrYVhS6usPpVT1+s85htZXYQx2GxYb4/MA0GCSqG SIb3DQEBCwUAA4IBAQAyL6MmXWdLHuZd0PF7dnRhylOTWEBuEsdo9LG7SAW1jQ1i yt2uUtF3/h/Qv/quC6whL1bQ3W+IeKK5ocSGeQjZHJwopzunfXb8fXL9Rf698Ba9 ECsdevDe3P2OOXObLZM05joQFkxgyPERZ9E9fXJzm+v1rotC1289eW/jzGo4jaq/ /U8h2BVhIQsMrTQX0YvtsGJTKkBucxrm6pROU3VA4INIdMGMIB3L5P1w1keV6CeL CtluEpSn8W7ExecMYJm8kIeJPJGozTnj4BhY3PYrgRyxm66GEsi6bGh9kHwwvFCD h2X3q1htzPBpUCw7fUX9x8qkSNpXmiosrd2OUMqz -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwzTUNBaUwITNkdYSDCEc UpklrhlrK8XteKAXcScnFLcbzBfBX6PRx9BFyLj0reWHoFotV/UnFfPbMCyMno5t 09kArcikOkNb3AT/Ejp+tjiVCvNTck8htVYNfp7k6SkKz6ARC2Ft1dgLCgTokrKZ aljepm7cKD7PE9z1svtrW5fyVmGAPPqfP/C1kuJvZCxRfbPxCLtxT9QI2GgIx1GV BT0aSM6fg/D+5nTgE/xeT5ZiukzTTQbSRBFDO3/IbJhSMsvIXmVxtN5+wM/7cdAd AFX3CrcaGhfBE1zO4EC0EFjGfDZXdnQCEFzwTvbt72LS/+64y1JlyZW7Nx6Q3XSK wwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 332943892757986519549450599535461188220382 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-08 07:08:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-07 07:07:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'athenadayspa.com.voetbal.co.za' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24642520379667034703450193390550433822967187064339547867423175288903251770621252236701419442678571495217675225377486240403864521845065987744043856003703305189134927124972274563264579804265142030942520415480696187903208912887765081340403567923420647886836775665048369268911366665916874411884972821841610561930651479190230568637816335055944841830878606662379828491789152560493918395838721583940804076823883787113172837690611037612525775640726333622929472949069947588049530094996451857311834142457874746884136889231347378876386989111157832368089472605535256661582079926670075732851483326389792178784936608491399093193411 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3d340e9a7d385bbf4c6f8c30a71b99239c30559a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (302 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '69er.love' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'affordabledesignerwatches.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amusementparkpos.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'athenadayspa.com.voetbal.co.za' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'debbiehenline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'growfoundry.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeschoolprayers.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'masterfone.com.simplicitydb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'midlandchillers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'norwoodfoundrysaskatchewan.com.honestsolarus.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nw.bible' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'olympia-med.com.dog4vip.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c48781b8b00000403004830460221009db78749b8784c8b8e7b602638c4875d8e0b4b9fdca1b1f671cd0cb288977f82022100e6270571b392549f6de3e432391dc38aa9652e6d825d5f663ce487e83052959800760029d03a1bb674aa711cd3035b6557c14f8aa78b4fe8389449eca453f944bd24680000018c48781c4b0000040300473045022100cd7de9eb9f26cf44ec46ce8c56ac24bd0fd1b8828d503cb462fc380bdf7eee6802201514f2ba3a96c24d72b615852eaeb0fa554f5facf3986d657610c761b161be3f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00322fa3265d674b1ee65dd0f17b767461ca539358406e12c768f4b1bb4805b58d0d62caddae52d177fe1fd0bffaae0bac212f56d0dd6f8878a2b9a1c4867908d91c9c28a73ba77d76fc7d72fd45febdf016bd102b1d7af0dedcfd8e39739b2d9334e63a10164c60c8f11167d13d7d72739bebf5ae8b42d76f3d796fe3cc6a388daabffd4f21d81561210b0cad3417d18bedb062532a406e731ae6ea944e537540e0834874c18c201dcbe4fd70d64795e8278b0ad96e1294a7f16ec4c5e70c6099bc9087893c91a8cd39e3e01858dcf62b811cb19bae8612c8ba6c687d907c30bc50838765f7ab586dccf069502c3b7d45fdc7caa448da579a2a2caddd8e50cab3