affida.com

Issued by R3

About this certificate

This digital certificate with serial number 03:db:a7:7d:a6:3c:dc:c7:62:c0:a6:22:a9:f5:0d:68:ec:f9 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=affida.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:db:a7:7d:a6:3c:dc:c7:62:c0:a6:22:a9:f5:0d:68:ec:f9
Serial Number (int): 336081329635071672944356850984451689737465
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 93:d7:3c:56:ea:be:67:b6:0c:0a:a5:60:5e:23:19:7d:57:2a:e6:74
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 7c:f8:4a:85:38:e3:a1:4d:8f:b4:b6:34:99:67:2b:6c:fb:35:64:78
Fingerprint (sha256): b8:ec:07:ef:a2:0a:bb:35:16:a6:7b:9c:b3:b4:39:b2:9c:04:10:b6:47:ca:db:e5:b4:c1:c1:6d:ad:a2:6e:04

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate affida.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for affida.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

affida.com

Other certificates including the domain name affida.com

(limited to 100 certificates)
www.pax38.com
contentwriter.ae
www.affida.com
www.sanantoniostemcellmedicine.com
okinawancentral.bible
sherefe.com
www.wisconsinstemcelltreatment.com
www.yoganasha.com
uscmarshall.mba
www.bharatyoga.com
crownedwithconfidence.org
34662.com
phxhousemusic.com
www.yogaprana.com
aquaphree.com
permastand.com
affida.com
www.sevenpointcollective.com
onlinecasinosh.com
stemcellsprovidence.com
www.milwaukeesportsmedicine.com
www.yoganasha.com
psilocybin.cafe
miraclebotanical.com
www.bestfreespyware.com

Certificate

The complete raw certificate details for affida.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 336081329635071672944356850984451689737465
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-19 22:17:26 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-19 22:17:25 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'affida.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 940503998625432533680491881559602318226203897570157419161082163628873528839005790801184474125358563283279482542807631787086223264406057925415483533678092660540925394742668578378076323177406846662512056451687845545572366252458332185145395927166285594727882073593198856889784144805379175844074561057721852770252707348313671865351609138580932900534334937131925691969070764333034283595894179467821204514714949121452030317193209779455387787286572110999269990356400536010926578191791770243360582802947286649864312652952026149729787709777575701097555645405122328402791307690147803417381666617220166095019820070854299490275842309733055490074514056912320850943707307906733439776044770385558114013355318174661175715691417284501595159721618020928752001777837793802511786286670917490185782394818088019494888537205819143512335036662378842581845769427191446981984251293258989912394741911084460340382444831108538172707451630571204667132794763674328521377956001499786883563522634891561443874996929141960052753736035297259555569281058776745535850042343321062955894173668819516294767849522048566456969217080641599292055214634216786426209358492838709413365894044319444237917624804646296423592887624081720146895508609361212742979651147901352730258334493
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							93d73c56eabe67b60c0aa5605e23197d572ae674
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'affida.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018dc3a8f403000004030047304502210088089246058ed5f29af8981a6ca04d9478f4c15c05bc3e957b1048229dc2b0dc0220607dfad45d817dd0e621c111da44f454191ad4e491fb61fb5f1dd042e902baa400760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018dc3a8f44e000004030047304502202c21cd1d34467dca60e3dc4b3e15d2720441ad25c9303d16425f6f9f79eecbe002210085698fcbb07c979c1bda82ebff7a28fa7653bcbca4ed94f875e76b1f4af8b61e
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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