*.fizi.co.il
Issued by R3
About this certificate
This digital certificate with serial number 04:4f:5d:cd:5d:b8:79:af:e0:81:e9:26:57:2e:57:89:af:d0 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.fizi.co.il
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:4f:5d:cd:5d:b8:79:af:e0:81:e9:26:57:2e:57:89:af:d0Serial Number (int): 375456135239138857366589420022947188944848
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 83:b4:16:5f:ab:2c:7a:40:90:9c:4e:e4:05:1d:8a:9a:a4:c8:bb:89
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 01:6e:84:35:08:d7:d0:ca:d9:56:dd:c5:b7:98:62:29:4e:2f:5a:0c
Fingerprint (sha256): c6:2b:5a:ae:3e:c9:cb:99:19:aa:cc:ab:ac:69:09:b8:ca:b1:4b:52:ca:37:51:c6:75:cb:85:0e:85:f0:51:02
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate *.fizi.co.il
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.fizi.co.il
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.fizi.co.il
fizi.co.il
fizi.co.il
Other certificates including the domain name fizi.co.il
(limited to 100 certificates)
Certificate
The complete raw certificate details for *.fizi.co.il in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgISBE9dzV24ea/ggekmVy5Xia/QMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDYyMTMzMThaFw0yNDA3MDUyMTMzMTdaMBcxFTATBgNVBAMM DCouZml6aS5jby5pbDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKNX YiW8lsUWBDt/lbrRjW0lekjPTezjdnxDx9GJMKIOTtX0WOU27fnVhTTy6l4f0Ogj 7PpYE8pV8ZDCRt9TodB6jTY3szKSsfLscBoTVC9ocHD4SFEXwW2J9e93UhgA2g+w XLXeFobOKdXaLg+DuLbqIGo7kmKTyZsLTFSDH9tMz3gmAXl1C2rvDc4eyd1ypRmV UpcI8CROY2zTzXpPWuEXAzY1zyOY3y386C6fJk0SMHwq6ViVYe4GpF1dIoRS2eox se/iloRTiM1XzXUTU7DjksWf8blh5wyPhmmrp/NJTszVr/mhF0L2ONUdSPG5e8ZM nlucxsTHIHx1M7Uq9PkCAwEAAaOCAhwwggIYMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUg7QWX6ssekCQnE7kBR2KmqTIu4kwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w IwYDVR0RBBwwGoIMKi5maXppLmNvLmlsggpmaXppLmNvLmlsMBMGA1UdIAQMMAow CAYGZ4EMAQIBMIIBBgYKKwYBBAHWeQIEAgSB9wSB9ADyAHcASLDja9qmRzQP5WoC +p0w6xxSActW3SyB2bu/qznYhHMAAAGOtYtxuAAABAMASDBGAiEA4ie1CQfT6mdb PXKhyhYMprBZu4tXezkYBiVZm1dHFF4CIQC0J3J/6hd+1GsU73mef1Z62Sgl1x4k dg0kaeWL5BipVAB3AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAAB jrWLcjEAAAQDAEgwRgIhAMr9CSIYz2nufpuT3McERZZmSZp1f/XegVB2Cb3WH2Zt AiEAqqe/0DpyYCdVo8D1h8cFJ1ls9q8LC2VyjBdDNukKBMEwDQYJKoZIhvcNAQEL BQADggEBAKcADDdMeH3iGFkzBZPPypG7T0Dvjlxi7LBhwFrSRtw6N5rbfQVvigJH DfBWa+UbMA2tHgnn57P/odYKXIybzgBG0LkDW78/6aUYP0Uy0l6d8CvCdwTz+D5Z sPyO5Ek8IMxAf3w9giDpo2km7EK/bbH9J/+h+aY+4UaJHPR0ZX+w8pItg48QlQgc rBy1AXx1IJY3q1slIcf6B6DVXFs6V1aheUakGGbFm5tT27bHZjFO8glRtP9ZgZJ7 TAz6nwdjpS3jUJtkZIz+YKDrOp4I6xFadGRhmizSdUZI83W9cecOKZssg52qYhi+ ZnBYmpndGOoFLMa1vP4LYuMzBJxh4N4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1diJbyWxRYEO3+VutGN bSV6SM9N7ON2fEPH0Ykwog5O1fRY5Tbt+dWFNPLqXh/Q6CPs+lgTylXxkMJG31Oh 0HqNNjezMpKx8uxwGhNUL2hwcPhIURfBbYn173dSGADaD7Bctd4Whs4p1douD4O4 tuogajuSYpPJmwtMVIMf20zPeCYBeXULau8Nzh7J3XKlGZVSlwjwJE5jbNPNek9a 4RcDNjXPI5jfLfzoLp8mTRIwfCrpWJVh7gakXV0ihFLZ6jGx7+KWhFOIzVfNdRNT sOOSxZ/xuWHnDI+Gaaun80lOzNWv+aEXQvY41R1I8bl7xkyeW5zGxMcgfHUztSr0 +QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 375456135239138857366589420022947188944848 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-06 21:33:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-05 21:33:17 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.fizi.co.il' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20619934064245677478655044314042188386778303313132596381668344493525961796851803316496025437050993344412450664496238655230069944567292941109636906628908648173079451757712184481234206222721823238451534245732396278172690658441896270064837696885574629359633368857109865253709161055261158361639327777976054419677436965604795823545448445692486641858412658239439338439791058720841035820732255071128944892054822302865745021311265107232618265715790918753752313275277274884440065270239808528511482317159671464276286112563048156238676985169870626996174638522382593602755525112110983142053641957288581037501826754130012145382649 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 83b4165fab2c7a40909c4ee4051d8a9aa4c8bb89 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.fizi.co.il' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fizi.co.il' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f200770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018eb58b71b80000040300483046022100e227b50907d3ea675b3d72a1ca160ca6b059bb8b577b39180625599b5747145e022100b427727fea177ed46b14ef799e7f567ad92825d71e24760d2469e58be418a95400770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018eb58b72310000040300483046022100cafd092218cf69ee7e9b93dcc704459666499a757ff5de81507609bdd61f666d022100aaa7bfd03a72602755a3c0f587c70527596cf6af0b0b65728c174336e90a04c1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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