sso.flow-insight.com
Issued by R3
About this certificate
This digital certificate with serial number 03:78:9b:36:03:10:29:e3:79:eb:0b:0d:e1:6b:3d:05:f5:8c was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sso.flow-insight.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:78:9b:36:03:10:29:e3:79:eb:0b:0d:e1:6b:3d:05:f5:8cSerial Number (int): 302377052611298221694957776307642865939852
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 31:22:3c:61:16:69:b8:c7:bb:a1:11:d5:eb:6e:e8:4b:0a:89:89:06
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 71:fc:69:99:a3:7c:05:ba:31:25:90:4a:4a:31:53:8d:b7:44:61:3e
Fingerprint (sha256): c2:5e:b0:67:f5:f0:bb:dd:c9:80:61:b2:fe:a9:04:a5:20:a7:8a:62:c0:49:a0:4f:0f:1b:d7:c2:56:34:b5:ef
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate sso.flow-insight.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sso.flow-insight.com
Public Key Algorithm
ECDSA
Key Size
256
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sso.flow-insight.com
Other certificates including the domain name flow-insight.com
(limited to 100 certificates)
ibmvisitoroffice.flow-insight.com
sandbox.byhook.com
adastria.flow-insight.com
jasdec.flow-insight.com
tokyo.ibmvisitoroffice.flow-insight.com
aoyama.flow-insight.com
jasdec.flow-insight.com
www.ujjaintourist.in
static-temp.flow-insight.com
faq.flow-insight.com
*.flow-insight.com
aoyama.flow-insight.com
www.ujjaintourist.in
www.gapparatus.com
fondet.tihlde.org
thedesserthouse.posify.in
markvigeant.com
www.ecolier.eu
www.zogacatalogo.com
konrad-tec.com
aoyama.flow-insight.com
demo.flow-insight.com
*.flow-insight.com
pharmastaging.healthdocs.co.za
aoyama.flow-insight.com
aoyama.flow-insight.com
faq.flow-insight.com
flow-insight.com
adastria.flow-insight.com
aoyama.flow-insight.com
aoyama.flow-insight.com
staging-redshift.flow-insight.com
aoyama.flow-insight.com
g.lykqq.com
www.citinstitute.tech
osaka.ibmvisitoroffice.flow-insight.com
adastria.flow-insight.com
volcom.flow-insight.com
demo.flow-insight.com
app.hiblocks.io
aoyama.flow-insight.com
aoyama.flow-insight.com
*.flow-insight.com
faq.flow-insight.com
aoyama.flow-insight.com
adastria.flow-insight.com
www.citinstitute.tech
staging.flow-insight.com
aoyama.flow-insight.com
aoyama.flow-insight.com
aoyama.flow-insight.com
demo.flow-insight.com
www.backtopress.lu
sso.flow-insight.com
jasdec.flow-insight.com
aoyama.flow-insight.com
adastria.flow-insight.com
vv-sistema-prove-sso.plugins.skore.io
aoyama.flow-insight.com
musicminer.co.in
www.apsorteio.com
seenamibia.org
ams.flow-insight.com
faq.flow-insight.com
vv-sistema-prove-sso.plugins.skore.io
aoyama.flow-insight.com
sandbox.byhook.com
testing.flow-insight.com
demo.flow-insight.com
ssl.wishlist.excellenc.pw
tokyo.ibmvisitoroffice.flow-insight.com
www.fellowise.com
sandbox.byhook.com
adastria.flow-insight.com
jasdec.flow-insight.com
tokyo.ibmvisitoroffice.flow-insight.com
aoyama.flow-insight.com
jasdec.flow-insight.com
www.ujjaintourist.in
static-temp.flow-insight.com
faq.flow-insight.com
*.flow-insight.com
aoyama.flow-insight.com
www.ujjaintourist.in
www.gapparatus.com
fondet.tihlde.org
thedesserthouse.posify.in
markvigeant.com
www.ecolier.eu
www.zogacatalogo.com
konrad-tec.com
aoyama.flow-insight.com
demo.flow-insight.com
*.flow-insight.com
pharmastaging.healthdocs.co.za
aoyama.flow-insight.com
aoyama.flow-insight.com
faq.flow-insight.com
flow-insight.com
adastria.flow-insight.com
aoyama.flow-insight.com
aoyama.flow-insight.com
staging-redshift.flow-insight.com
aoyama.flow-insight.com
g.lykqq.com
www.citinstitute.tech
osaka.ibmvisitoroffice.flow-insight.com
adastria.flow-insight.com
volcom.flow-insight.com
demo.flow-insight.com
app.hiblocks.io
aoyama.flow-insight.com
aoyama.flow-insight.com
*.flow-insight.com
faq.flow-insight.com
aoyama.flow-insight.com
adastria.flow-insight.com
www.citinstitute.tech
staging.flow-insight.com
aoyama.flow-insight.com
aoyama.flow-insight.com
aoyama.flow-insight.com
demo.flow-insight.com
www.backtopress.lu
sso.flow-insight.com
jasdec.flow-insight.com
aoyama.flow-insight.com
adastria.flow-insight.com
vv-sistema-prove-sso.plugins.skore.io
aoyama.flow-insight.com
musicminer.co.in
www.apsorteio.com
seenamibia.org
ams.flow-insight.com
faq.flow-insight.com
vv-sistema-prove-sso.plugins.skore.io
aoyama.flow-insight.com
sandbox.byhook.com
testing.flow-insight.com
demo.flow-insight.com
ssl.wishlist.excellenc.pw
tokyo.ibmvisitoroffice.flow-insight.com
www.fellowise.com
Certificate
The complete raw certificate details for sso.flow-insight.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEKzCCAxOgAwIBAgISA3ibNgMQKeN56wsN4Ws9BfWMMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MDcwMzI4MThaFw0yNDA4MDUwMzI4MTdaMB8xHTAbBgNVBAMT FHNzby5mbG93LWluc2lnaHQuY29tMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE 9VMUYvl22OXOs+/mb8uZu9lJS6FpTbQ+314COlXE56CQDTZIuqamvbXBE0G36jZ5 //aDfCD6eyQKWBQCxOJldqOCAhcwggITMA4GA1UdDwEB/wQEAwIHgDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU MSI8YRZpuMe7oRHV627oSwqJiQYwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+v nYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5s ZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wHwYD VR0RBBgwFoIUc3NvLmZsb3ctaW5zaWdodC5jb20wEwYDVR0gBAwwCjAIBgZngQwB AgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwBIsONr2qZHNA/lagL6nTDrHFIB y1bdLIHZu7+rOdiEcwAAAY9RTzuHAAAEAwBIMEYCIQCR70nRmqi7PymROkiclHh9 nEr1OlmooYjjCqzARPisCAIhAON0nKcjwbXUethUxsXhGANCzU11W7RQqZju++l3 1sefAHYAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGPUU87kwAA BAMARzBFAiBQ5XCAQZYBL/ixOGMqwESKEJtvCffAhbS6TibNze9KzgIhAMQB/Sv1 EVI8U4fZv1zcPYWK9hQ4v4V3VeVcQinzjLlHMA0GCSqGSIb3DQEBCwUAA4IBAQCI TwvqNNX3pqQ402HK4JSw/2HeuI6QSIwx5s/sNw32ErpRx9aNHPXu1GUAoPF2TfGx aVk13sGo7VHjzWwL8wd7eUjS7Gr1gYTOpn/6Gm+PQfbf0s+bz30Wqif1/0CK15F1 B6RX1xxPyCflQqNYUsYWNJeUNmTrzNeNA++t3LKhkOa/Tktj7Oe3UxtJ5xYHRzdP G5kHKT6UQ4m1GR9UBGXP63c08fwf4tNq/ZYiCjBM0x4ohjJeHu5Z+BmLycvfezB8 RrrQAm34I9pdoS7/kYXEz5QTdSKRZH9VYPe/r8X7xY4FIiM+31bcP6zXdzZCe0xh 0WWbqA/FnCjqp9ao1Zlf -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE9VMUYvl22OXOs+/mb8uZu9lJS6Fp TbQ+314COlXE56CQDTZIuqamvbXBE0G36jZ5//aDfCD6eyQKWBQCxOJldg== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 302377052611298221694957776307642865939852 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-07 03:28:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-05 03:28:17 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sso.flow-insight.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.2.1 (ecPublicKey) . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.3.1.7 (prime256v1) . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (520 bits) 0004f5531462f976d8e5ceb3efe66fcb99bbd9494ba1694db43edf5e023a55c4e7a0900d3648baa6a6bdb5c11341b7ea3679fff6837c20fa7b240a581402c4e26576 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1 bits) 0780 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 31223c611669b8c7bba111d5eb6ee84b0a898906 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sso.flow-insight.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f514f3b87000004030048304602210091ef49d19aa8bb3f29913a489c94787d9c4af53a59a8a188e30aacc044f8ac08022100e3749ca723c1b5d47ad854c6c5e1180342cd4d755bb450a998eefbe977d6c79f0076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f514f3b930000040300473045022050e570804196012ff8b138632ac0448a109b6f09f7c085b4ba4e26cdcdef4ace022100c401fd2bf511523c5387d9bf5cdc3d858af61438bf857755e55c4229f38cb947 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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