gestaocompras.com.br

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:af:e3:df:e1:e3:8c:0f:c2:ff:40:80:0d:c3:a1:3d:1a:c8 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=gestaocompras.com.br

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:af:e3:df:e1:e3:8c:0f:c2:ff:40:80:0d:c3:a1:3d:1a:c8
Serial Number (int): 321189169225257900884146379007904012114632
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 6d:41:b0:ac:b8:47:39:22:f6:82:1e:90:3e:8c:b9:c8:f1:23:1c:71
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): b6:38:9b:13:95:d7:37:38:03:6f:99:de:44:f7:50:a8:73:ca:00:6c
Fingerprint (sha256): c4:b5:a5:04:0b:2f:59:be:35:f9:24:3f:15:e5:52:c2:62:dc:8c:a5:d2:1c:34:9a:32:c5:33:0c:8e:d1:87:5c

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate gestaocompras.com.br

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for gestaocompras.com.br

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

gestaocompras.com.br
www.gestaocompras.com.br

Other certificates including the domain name gestaocompras.com.br

(limited to 100 certificates)
gestaocompras.com.br
gestaocompras.com.br
simconx.com
gestaocompras.com.br

Certificate

The complete raw certificate details for gestaocompras.com.br in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtqjHN4OB5mxiJ4+K3D0v
16mU0ahoXed1XIeYWjLJBMI7msAtQF1KB+fBSD+O0cDz6NX9kCiAzYaETG2GhzRQ
nAURe/CoVLWughSHcjxDiO+QZ4zkz3GiL4/r8uX3sAFQoFUuQCPzotIjumwWVhfy
MYds4rkpJS4BsYeu1aGkTFGhFlgmFtvjUPxD7oF86pBDT8dMwAeCsV/BDdaqwhZy
c6C1oEzvJ5ai6d3CtYU1Mch7yvT7sfEAsZnezVC3tVvKpkwlZVzZsU6mT2qgc/A7
AkUq7gQZTHV3dc1pA9jWbYKPtkLS4h8ybkUvJ35b+c++B/6T+hdiMmCh1wDUZ9z9
uwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 321189169225257900884146379007904012114632
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-29 15:54:34 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-27 15:54:34 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gestaocompras.com.br'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23058599131653093244128977405979086506776765440333561118590407572374209416268459568828112323497146349738687166504898183831909216457555271170663455214641103273076886209706541893093179236057506673608576818984843119696300434874765013144314697957512944479003353497963967422035380925662300883369292742169184267689901620846585943027520773500118369406331191889740392640071254650864049203422959799895462398099261372803722603332986761216484442983857290131863598574962987151639208813925794975255769040227144122678333595125639996048690720770594265670938306162566906936064165662555788674259631757514055220785576755802890261298619
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6d41b0acb8473922f6821e903e8cb9c8f1231c71
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gestaocompras.com.br'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gestaocompras.com.br'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000169ca5fe2de0000040300463044022010fc1e32d13d4392752d42c3d2ee17bc820c60a12c16729f41d40e8515f2398202201e66c40c3ec771d23f61445c553c6ff4e686aa00e24d88200f87d3e82fed691300760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000169ca5fe1610000040300473045022003c150938dca6cbb8a904112d82baed4851dc49799bfb672a5f9e65ec1ab09cb022100f133c153366324d597fa0b4db23ebfedba4e2cd2d1eed2639966d2389a6ce588
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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