onedegree.az
Issued by R3
About this certificate
This digital certificate with serial number 03:8b:ef:fc:10:78:f0:63:92:4a:ae:f7:b4:53:0d:62:eb:ca was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=onedegree.az
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:8b:ef:fc:10:78:f0:63:92:4a:ae:f7:b4:53:0d:62:eb:caSerial Number (int): 308955101081192461968462053776632626473930
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b2:85:13:48:f1:d6:38:2c:30:94:bc:c8:1f:b3:d1:6a:73:b0:e4:81
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 4f:6d:bd:68:71:d6:38:06:96:fe:9c:e6:fc:6a:ab:51:f0:9e:60:73
Fingerprint (sha256): b7:10:18:54:04:5c:f6:2c:bd:8a:64:72:56:03:82:ef:b7:b5:3a:70:e6:a7:1c:3f:98:cf:d3:b2:ad:17:ae:46
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate onedegree.az
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for onedegree.az
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
onedegree.az
www.onedegree.az
www.onedegree.az
Other certificates including the domain name onedegree.az
(limited to 100 certificates)
lsd.onedegree.az
ipm.johnstonenj.com
support.edgt.com
support.edgt.com
support.onedegree.az
onedegree.az
support.onedegree.az
support.onedegree.az
ipm.johnstonenj.com
support.onedegree.az
support.edgt.com
onedegree.az
helpdesk.fountainlife.com
support.edgt.com
onedegree.az
support.edgt.com
onedegree.az
support.edgt.com
support.edgt.com
ipm.johnstonenj.com
support.edgt.com
support.edgt.com
support.onedegree.az
onedegree.az
support.onedegree.az
support.onedegree.az
ipm.johnstonenj.com
support.onedegree.az
support.edgt.com
onedegree.az
helpdesk.fountainlife.com
support.edgt.com
onedegree.az
support.edgt.com
onedegree.az
support.edgt.com
support.edgt.com
Certificate
The complete raw certificate details for onedegree.az in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgISA4vv/BB48GOSSq73tFMNYuvKMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MDUwODU3MDBaFw0yNDA4MDMwODU2NTlaMBcxFTATBgNVBAMT DG9uZWRlZ3JlZS5hejCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALWB BSZV84cih+7NSdacgmO/hOrS4smSc8Qr5Mggnl5g1ccgAGWcQa1CMN6JtgSPy/XB 87XUq3XoRIdeSHHPpwXGchNtNzwBWzEw5n/iXOLe2pg4Uv2i7sBuo9dd07OtoPxU LgCWrdsNlN/b7E+8YDPbs22cjo81tdMhefb5ErNCZQQPBwjuBGzO9iz5EjK1bLTc dGQ7MR4w56D5C8lGrTCGzlYKI7rFtr70fOl0P2EzvEtgVjTTuer7rOJ3rAPERbpQ xE0ARiDzesOzJYlwChqLircqTBlvO4m8ydNfqGsDDxsgkm0oFgFejokrzrlUpu6m UcKif9wGtQE8ahTDmMECAwEAAaOCAiAwggIcMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUsoUTSPHWOCwwlLzIH7PRanOw5IEwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w KQYDVR0RBCIwIIIMb25lZGVncmVlLmF6ghB3d3cub25lZGVncmVlLmF6MBMGA1Ud IAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHUASLDja9qm RzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGPSC90mQAABAMARjBEAiB8xDRc W8MMIGGQMP6WO/QXK1tNwaSzmGKLGE58H92O6QIgbcEpYHMH+fRDnygVbzWYyYKe 5v+Fga8OBiQVkOHLor4AdwDf4VbrqgWvtZwPhnGNqMAyTq5W2W6n9aVqAdHBO75S XAAAAY9IL3VkAAAEAwBIMEYCIQC1oPlxSsFJG4bW2Es831ZhW+he3lRMkrqfbjwv vjniOwIhAPqAlwUCHVY6ld7FNKpKk311qkchxjA5bIAcTM/x2K++MA0GCSqGSIb3 DQEBCwUAA4IBAQBwuN4u7ag/o5rt6FYK/B8sAJbyZaX9ZTeQecNwhxAFrrrlXXyO SNZEvh4Q9NGCiF7sml/y8PQ4QlInEV5lMWTw34uiKXyyq47ElxuVcf8poFyb59ce mvcL8cnXX2KEolVFjgcmvEhOUettQP2QMBZq8TPH8f/PeiEhnumteIK5MSFrz1t4 f/luNhJSDtf32gsi422V8BBCAw55Q4VF8FARA/mhXj991rnbMAYXFBYrmSqqAHy8 anlSKpnpUAXRCMQKD52j6ZOhFYCp02vBie4ec+RIN88tdY7fN33caSxGFvhnAOOm pKIb8CjVPFfghwc8JNzjN1IUZRvQAIG+cDw7 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYEFJlXzhyKH7s1J1pyC Y7+E6tLiyZJzxCvkyCCeXmDVxyAAZZxBrUIw3om2BI/L9cHztdSrdehEh15Icc+n BcZyE203PAFbMTDmf+Jc4t7amDhS/aLuwG6j113Ts62g/FQuAJat2w2U39vsT7xg M9uzbZyOjzW10yF59vkSs0JlBA8HCO4EbM72LPkSMrVstNx0ZDsxHjDnoPkLyUat MIbOVgojusW2vvR86XQ/YTO8S2BWNNO56vus4nesA8RFulDETQBGIPN6w7MliXAK GouKtypMGW87ibzJ01+oawMPGyCSbSgWAV6OiSvOuVSm7qZRwqJ/3Aa1ATxqFMOY wQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 308955101081192461968462053776632626473930 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-05 08:57:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-03 08:56:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'onedegree.az' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22912755389389835939521878384685553223965316861134347523193352988836957172698389647579749973144214787684422581364747297015063864448521194816363042890788033261169903524845370607587045609164689250585469161889794499720326003817545983197857324809712156160919551083207479970751543168350884443247800555289933539610153402595934584600720932386718847505838624649079494084806233225001815582494212759048588696699593576651351307451239362463667910147993189195119517653166434296761521334481024307764661309335861497344636008493824000058709835928377798901927675563838354528577172286008522308677981321061041754566897445872450977110209 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b2851348f1d6382c3094bcc81fb3d16a73b0e481 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'onedegree.az' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.onedegree.az' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f482f7499000004030046304402207cc4345c5bc30c20619030fe963bf4172b5b4dc1a4b398628b184e7c1fdd8ee902206dc129607307f9f4439f28156f3598c9829ee6ff8581af0e06241590e1cba2be007700dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018f482f75640000040300483046022100b5a0f9714ac1491b86d6d84b3cdf56615be85ede544c92ba9f6e3c2fbe39e23b022100fa809705021d563a95dec534aa4a937d75aa4721c630396c801c4ccff1d8afbe . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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