stgroup.co.uk
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:db:32:53:14:25:37:dd:bd:90:28:f2:54:da:2c:ba:e9:5d was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=stgroup.co.uk
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:db:32:53:14:25:37:dd:bd:90:28:f2:54:da:2c:ba:e9:5dSerial Number (int): 335925588919991691452083140624077224077661
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 8a:80:0a:35:0c:d9:78:07:df:a4:92:51:f4:c6:34:d2:cf:a5:e7:03
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): b3:04:f1:d1:eb:40:0b:a2:fa:f9:10:73:4e:99:04:7f:6c:9f:a9:16
Fingerprint (sha256): c2:a1:4a:32:b1:c8:db:78:27:00:62:58:8f:27:58:e5:ff:c8:e4:21:ab:11:8b:8f:54:44:b1:7a:c8:2d:48:ab
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate stgroup.co.uk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for stgroup.co.uk
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
stgroup.co.uk
www.stgroup.co.uk
www.stgroup.co.uk
Other certificates including the domain name stgroup.co.uk
(limited to 100 certificates)
Certificate
The complete raw certificate details for stgroup.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGZTCCBU2gAwIBAgISA9syUxQlN929kCjyVNosuuldMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMTExMTIxMjRaFw0y MDA0MTAxMTIxMjRaMBgxFjAUBgNVBAMTDXN0Z3JvdXAuY28udWswggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDrfWAWhFWG8inLNTjmxyJFx97y9pZDK+Q0 6l0dTrSoEgFESKQ1FrVFR9gbaWK5lczDbm/E+51mynKlMI5S1z6gSt+pc1HNvSBu aVJLl/fCKWI2tj2r06rz2DymM5kjZi+kqPu1t/MuuMABTHAAJ5U+Q47QsO/mPaP+ G03MsTOaeT7QaQNdMHOpCGNuDZFJsKnp/gcS8aZY3z1krbGLJggTkzEj7oQA9kN1 keb3jKk+ceOSgOcEt7GLG9yIzD8duUFaa5DWzU2sJweyG8fycnFmtxrOfvM86nIB 3wc2Yr2Maf9SrUen2I/hFcy3wWNMIjdS2pe6VBGyTzUX6btN0t5e3LbYCnYW7iYu VQUPtnGjABnSuUGC4p/S5R6F9iefWw+2KPGoUGC2YbrjU0SOymUjbV7vAw+vVAit erOyKvzo4H7dVK8FtXd0YZNlVKGCBXJum+ECyKAjcd4vJr/Zo65xR+jbVI7dL85v jJX4CqVw0f+R84Lp3CtF3SmJkxD+1og/2beYbwK0FVhdFO2RZ2ifdK6D71sO7Og+ V+LnsAf+9Ek7stcYJ9Uvs7ZKilPY2PhQr7XEU+E33wuohXY/xH8hq/IRaAHZgsdF Xjtxf3C806z9LeN8mI34/S1+WLnVK3UwxXHkcdPWbm/bdg67re8QuvbZNFWfJr+P OWvcukYwKwIDAQABo4ICdTCCAnEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSKgAo1 DNl4B9+kklH0xjTSz6XnAzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMCsGA1UdEQQkMCKCDXN0Z3JvdXAuY28udWuCEXd3 dy5zdGdyb3VwLmNvLnVrMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8T AQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIB BAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQ NKawqKqOsnMAAAFvlI1GwQAABAMARzBFAiBNKVpzf/XXAhXTtEKSJN7goOE3e1yL SMipQ0sRuvAFAAIhAO9t71bhVVpJs8hQn4mHykuWx4vkUzotMySiu1tf22S9AHYA sh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFvlI1GsQAABAMARzBF AiAIaVhHCzU5U7QXJKyiepwVvqsuFpS+kU8sd8/YxHokgQIhAP6l1/q/jnUfjfXP zdfF8FhKrXUx+XYk7Z9pNMxpobbTMA0GCSqGSIb3DQEBCwUAA4IBAQB4BPsgDd3S Bp77vP2J1+wAVOK4Yf8xOXmMKpJpjl30k+W1SP7+yeQrkEPqyWT3PH/BCgJV2E/e hbGDrDfded60PQtyTvQhhBiZw+2h71G3y1uN5hnfCy5R8PYIj1EDPkqYwQFIiFwt xraiPe+SXhRUmMALpGXR2+QAQXlH42IL+RDexYiPr3SN6oSRxUPQSffk+QJfCEi5 1ykD4OCRDHMGCIhEECfy16Agl0mkc3yB/lFHXDLgRODACDg1t5pDkxqaQGVMmed4 zsP5FFYQxLAq8EwSUwhHgyDjW+ZGgczXuEfD8jsTmWGLLJzutd6Q1SdOcnQuqwRm 8JQXeju4n/Rm -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA631gFoRVhvIpyzU45sci Rcfe8vaWQyvkNOpdHU60qBIBREikNRa1RUfYG2liuZXMw25vxPudZspypTCOUtc+ oErfqXNRzb0gbmlSS5f3wiliNrY9q9Oq89g8pjOZI2YvpKj7tbfzLrjAAUxwACeV PkOO0LDv5j2j/htNzLEzmnk+0GkDXTBzqQhjbg2RSbCp6f4HEvGmWN89ZK2xiyYI E5MxI+6EAPZDdZHm94ypPnHjkoDnBLexixvciMw/HblBWmuQ1s1NrCcHshvH8nJx Zrcazn7zPOpyAd8HNmK9jGn/Uq1Hp9iP4RXMt8FjTCI3UtqXulQRsk81F+m7TdLe Xty22Ap2Fu4mLlUFD7ZxowAZ0rlBguKf0uUehfYnn1sPtijxqFBgtmG641NEjspl I21e7wMPr1QIrXqzsir86OB+3VSvBbV3dGGTZVShggVybpvhAsigI3HeLya/2aOu cUfo21SO3S/Ob4yV+AqlcNH/kfOC6dwrRd0piZMQ/taIP9m3mG8CtBVYXRTtkWdo n3Sug+9bDuzoPlfi57AH/vRJO7LXGCfVL7O2SopT2Nj4UK+1xFPhN98LqIV2P8R/ IavyEWgB2YLHRV47cX9wvNOs/S3jfJiN+P0tfli51St1MMVx5HHT1m5v23YOu63v ELr22TRVnya/jzlr3LpGMCsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 335925588919991691452083140624077224077661 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-11 11:21:24 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-10 11:21:24 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'stgroup.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 960714351206278910754039418831647570712584390514288242203340249548922681871386918167795955493122661450113252251590188761003296069663036025770563482261870977508994128897047707414432951531576622720074163323524485632216452238671459187477535820373462276752909038148432726678956528351272000695371081589166634229857938324098145663584269270512736674146457933045296521956273787013177987650776646253954706840055322223387484562264136041325914027525103754225823989745354794526944119274420026993895742106842608999331697931397278387602113400733105825945528164638314442371027849604177711684936875595475494571302001495461445565123842992076486939467438964451847643958523980909314165634752984114232012272722538137118150251720967384415134012127235696130495324301615792695570666164030718103748686310593583840054341242965882368150624375431504829731890628968596206696522121770111945839010220829308536655159527944135983849867402334574420392762355710565938068952829224211857295165088716210610871000408068988552195442345054854287220635902838162222829960499527407685727519506057311355408762693773903684777966893459957224151456102735032789859733516111690809603846471655179830816507203120776996465180695630236178245375652290258089972936576210229492878982656043 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8a800a350cd97807dfa49251f4c634d2cfa5e703 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stgroup.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.stgroup.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016f948d46c1000004030047304502204d295a737ff5d70215d3b4429224dee0a0e1377b5c8b48c8a9434b11baf00500022100ef6def56e1555a49b3c8509f8987ca4b96c78be4533a2d3324a2bb5b5fdb64bd007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f948d46b100000403004730450220086958470b353953b41724aca27a9c15beab2e1694be914f2c77cfd8c47a2481022100fea5d7fabf8e751f8df5cfcdd7c5f0584aad7531f97624ed9f6934cc69a1b6d3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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