affida.com
Issued by R3
About this certificate
This digital certificate with serial number 03:db:a7:7d:a6:3c:dc:c7:62:c0:a6:22:a9:f5:0d:68:ec:f9 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=affida.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:db:a7:7d:a6:3c:dc:c7:62:c0:a6:22:a9:f5:0d:68:ec:f9Serial Number (int): 336081329635071672944356850984451689737465
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 93:d7:3c:56:ea:be:67:b6:0c:0a:a5:60:5e:23:19:7d:57:2a:e6:74
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 7c:f8:4a:85:38:e3:a1:4d:8f:b4:b6:34:99:67:2b:6c:fb:35:64:78
Fingerprint (sha256): b8:ec:07:ef:a2:0a:bb:35:16:a6:7b:9c:b3:b4:39:b2:9c:04:10:b6:47:ca:db:e5:b4:c1:c1:6d:ad:a2:6e:04
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate affida.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for affida.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
affida.com
Other certificates including the domain name affida.com
(limited to 100 certificates)
www.pax38.com
contentwriter.ae
www.affida.com
www.sanantoniostemcellmedicine.com
okinawancentral.bible
sherefe.com
www.wisconsinstemcelltreatment.com
www.yoganasha.com
uscmarshall.mba
www.bharatyoga.com
crownedwithconfidence.org
34662.com
phxhousemusic.com
www.yogaprana.com
aquaphree.com
permastand.com
affida.com
www.sevenpointcollective.com
onlinecasinosh.com
stemcellsprovidence.com
www.milwaukeesportsmedicine.com
www.yoganasha.com
psilocybin.cafe
miraclebotanical.com
www.bestfreespyware.com
contentwriter.ae
www.affida.com
www.sanantoniostemcellmedicine.com
okinawancentral.bible
sherefe.com
www.wisconsinstemcelltreatment.com
www.yoganasha.com
uscmarshall.mba
www.bharatyoga.com
crownedwithconfidence.org
34662.com
phxhousemusic.com
www.yogaprana.com
aquaphree.com
permastand.com
affida.com
www.sevenpointcollective.com
onlinecasinosh.com
stemcellsprovidence.com
www.milwaukeesportsmedicine.com
www.yoganasha.com
psilocybin.cafe
miraclebotanical.com
www.bestfreespyware.com
Certificate
The complete raw certificate details for affida.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4TCCBMmgAwIBAgISA9unfaY83MdiwKYiqfUNaOz5MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMTkyMjE3MjZaFw0yNDA1MTkyMjE3MjVaMBUxEzARBgNVBAMT CmFmZmlkYS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDmiSoF 7iZR3Z8caweVxjXvqAt5fUfEPLxMjEuuFDUBzdyMhZYgUfTkVUtElLfAlfLzRml8 oeAcWJMJ9mcAGp1ua7QUMTp+nQ2edBGQiAe0aYpfBkHsORCMdpJfNyOzYkFEG9RO A5naykLvCtzdkcwkls6c3ycCzHcQkPyY8r2sj2oII9F2Rj4Gbensy+LxtArekSV3 o/xCkVnTdYzCtFi9znr2fMGgY1DNk4Ed/TOorL2q3rP7ptRYxnzRh7J/ANAMK0u/ PdNskRap+epkc9uIXU8SqUnLrh1pHao1NotWGmu8ZT/yz4byeUo8VRsOJ/Dj/y8W eBZqIXm0uQai4LFuuNpU6H8YJVCEMxLfrlyJuMy4yILzAXdK9xxl09LkojmCAnvz +NeHWxa8F6WoaUjgtkKzl3dabaGDi+dBEBCXLSo0d1MAd27La5a50uUAqb1+zyYa y4Bid3lG6CjXcE+4oDONp54KnXsZHHccOgQSNCyLYoOb8tCiJwcQNLl/oiygxTNw qzKmuLyP6l164Z9/RKDFJBqZxue47GmwlHN5lZNDIqNX5Pqx/5qyoJhOLi/mNiL/ NPk3gcbUY8NHJ78tgzLi6oovd/niLwhku/Rf9edFit3dCP/52vXtYx2SvmyuSlWo jLHXCilqVQjX0rteLLWGKSxdsf33zD5MuqxjHQIDAQABo4ICDDCCAggwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBST1zxW6r5ntgwKpWBeIxl9VyrmdDAfBgNVHSMEGDAW gBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUH MAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3Iz LmkubGVuY3Iub3JnLzAVBgNVHREEDjAMggphZmZpZGEuY29tMBMGA1UdIAQMMAow CAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC +p0w6xxSActW3SyB2bu/qznYhHMAAAGNw6j0AwAABAMARzBFAiEAiAiSRgWO1fKa +JgabKBNlHj0wVwFvD6VexBIIp3CsNwCIGB9+tRdgX3Q5iHBEdpE9FQZGtTkkfth +18d0ELpArqkAHYAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGN w6j0TgAABAMARzBFAiAsIc0dNEZ9ymDj3Es+FdJyBEGtJckwPRZCX2+fee7L4AIh AIVpj8uwfJecG9qC6/96KPp2U7y8pO2U+HXnax9K+LYeMA0GCSqGSIb3DQEBCwUA A4IBAQAYELsBs31+YDrRXb6rVNFK9U7GSdTR1RqFvGBnSXd+mb81uzklv7ZyZ74S eNFFc+7OzOQIAHDAsk1/FoETP0gSGst2iEwq+Q4eZ6J0XWg7gVjQ3jDOvX1BrPTX 6qTlA65xtP5i/nhDpbaQB7TQQceluW0J1Y0y7Z/lJJosk2YDi3yCYdAqz2bfnmuv 41HOAyPFJGYpCk2rMXe1EfJ0UBEm2Vt3/hvLgS3SbB/39Z1Ikdi8C9a/PpbZ62b3 5yEcSCuoFrvFBWo018FovCTt9SSvpVIoe64AP5ESB8D9acAN3AqkIE04aMtUv4Af sT3cIHTakSB8/0eKDW3HfvPRRG9r -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA5okqBe4mUd2fHGsHlcY1 76gLeX1HxDy8TIxLrhQ1Ac3cjIWWIFH05FVLRJS3wJXy80ZpfKHgHFiTCfZnABqd bmu0FDE6fp0NnnQRkIgHtGmKXwZB7DkQjHaSXzcjs2JBRBvUTgOZ2spC7wrc3ZHM JJbOnN8nAsx3EJD8mPK9rI9qCCPRdkY+Bm3p7Mvi8bQK3pEld6P8QpFZ03WMwrRY vc569nzBoGNQzZOBHf0zqKy9qt6z+6bUWMZ80YeyfwDQDCtLvz3TbJEWqfnqZHPb iF1PEqlJy64daR2qNTaLVhprvGU/8s+G8nlKPFUbDifw4/8vFngWaiF5tLkGouCx brjaVOh/GCVQhDMS365cibjMuMiC8wF3SvccZdPS5KI5ggJ78/jXh1sWvBelqGlI 4LZCs5d3Wm2hg4vnQRAQly0qNHdTAHduy2uWudLlAKm9fs8mGsuAYnd5Rugo13BP uKAzjaeeCp17GRx3HDoEEjQsi2KDm/LQoicHEDS5f6IsoMUzcKsypri8j+pdeuGf f0SgxSQamcbnuOxpsJRzeZWTQyKjV+T6sf+asqCYTi4v5jYi/zT5N4HG1GPDRye/ LYMy4uqKL3f54i8IZLv0X/XnRYrd3Qj/+dr17WMdkr5srkpVqIyx1wopalUI19K7 Xiy1hiksXbH998w+TLqsYx0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 336081329635071672944356850984451689737465 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-19 22:17:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-19 22:17:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'affida.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 940503998625432533680491881559602318226203897570157419161082163628873528839005790801184474125358563283279482542807631787086223264406057925415483533678092660540925394742668578378076323177406846662512056451687845545572366252458332185145395927166285594727882073593198856889784144805379175844074561057721852770252707348313671865351609138580932900534334937131925691969070764333034283595894179467821204514714949121452030317193209779455387787286572110999269990356400536010926578191791770243360582802947286649864312652952026149729787709777575701097555645405122328402791307690147803417381666617220166095019820070854299490275842309733055490074514056912320850943707307906733439776044770385558114013355318174661175715691417284501595159721618020928752001777837793802511786286670917490185782394818088019494888537205819143512335036662378842581845769427191446981984251293258989912394741911084460340382444831108538172707451630571204667132794763674328521377956001499786883563522634891561443874996929141960052753736035297259555569281058776745535850042343321062955894173668819516294767849522048566456969217080641599292055214634216786426209358492838709413365894044319444237917624804646296423592887624081720146895508609361212742979651147901352730258334493 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 93d73c56eabe67b60c0aa5605e23197d572ae674 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'affida.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018dc3a8f403000004030047304502210088089246058ed5f29af8981a6ca04d9478f4c15c05bc3e957b1048229dc2b0dc0220607dfad45d817dd0e621c111da44f454191ad4e491fb61fb5f1dd042e902baa400760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018dc3a8f44e000004030047304502202c21cd1d34467dca60e3dc4b3e15d2720441ad25c9303d16425f6f9f79eecbe002210085698fcbb07c979c1bda82ebff7a28fa7653bcbca4ed94f875e76b1f4af8b61e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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