afcn.be
Issued by R3
About this certificate
This digital certificate with serial number 04:34:1c:a1:c3:0b:4b:45:41:6c:db:df:0c:be:04:27:96:65 was issued on by Let's Encrypt.
With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=afcn.be
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:34:1c:a1:c3:0b:4b:45:41:6c:db:df:0c:be:04:27:96:65Serial Number (int): 366181885106570666038593285419501783324261
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 38:86:ea:c6:8a:1f:9f:c0:6f:1b:ef:56:32:12:02:97:c6:ab:cf:0c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 00:c0:a8:ee:9b:46:7c:e4:5d:36:c4:e2:7a:50:40:82:3d:42:36:21
Fingerprint (sha256): c9:dd:e1:47:f0:c2:ab:fa:17:0f:ee:7a:f6:59:4f:30:54:db:47:88:a4:79:ed:c9:fe:1d:7f:29:e7:fd:50:4f
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate afcn.be
10
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for afcn.be
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
afcn.be
afcn.fgov.be
fanc.be
fanc.fgov.be
fank.fgov.be
www.afcn.be
www.afcn.fgov.be
www.fanc.be
www.fanc.fgov.be
www.fank.fgov.be
afcn.fgov.be
fanc.be
fanc.fgov.be
fank.fgov.be
www.afcn.be
www.afcn.fgov.be
www.fanc.be
www.fanc.fgov.be
www.fank.fgov.be
Other certificates including the domain name afcn.be
(limited to 100 certificates)
Certificate
The complete raw certificate details for afcn.be in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgISBDQcocMLS0VBbNvfDL4EJ5ZlMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTUxMjIyMTRaFw0yNDA3MTQxMjIyMTNaMBIxEDAOBgNVBAMT B2FmY24uYmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyAaQFAJMx QY1M/mQZlR8YYLCWkqHuRBwmXgxKKNaR1QALj5Er7h6g7gIqucNcUBgcRZhrrh8h cgvRbRUkiNal3lZKY2qsMNRR8a+0XBtMPVwhH6Lo1SjZkuAHU+7uwR7kznytUHYK SXgTE3q1S2Ku20MFoG16ZjD0GPLuBJFhOD7j/3RG2GyZvZmrTMIh75by14EOnSOy E9dfFpwr9QMCpUd+sQxVjkAaxlZHTbhCVjljWXUouPNHJ7b1HOtpJzo2O0ErGTTG 4ck2SYiAVsZNArU9yz8keZI7DZv4IzzoNxnwAwHMiCyc47fd/BqHZNsd0l2+RY0O EyhmFbeGg1upAgMBAAGjggKOMIICijAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFDiG 6saKH5/AbxvvVjISApfGq88MMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52L FMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVu Y3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMIGXBgNV HREEgY8wgYyCB2FmY24uYmWCDGFmY24uZmdvdi5iZYIHZmFuYy5iZYIMZmFuYy5m Z292LmJlggxmYW5rLmZnb3YuYmWCC3d3dy5hZmNuLmJlghB3d3cuYWZjbi5mZ292 LmJlggt3d3cuZmFuYy5iZYIQd3d3LmZhbmMuZmdvdi5iZYIQd3d3LmZhbmsuZmdv di5iZTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA 7wB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjuHsKqUAAAQD AEcwRQIhAOI3+MQPp+0J8Bj55i5NTjeUsI5dGxwKxtp+4WIFXSAFAiB1cNZF3la6 UpO7hRlWUepEYMnlcTOqBrDaiykG17Q38AB1AN/hVuuqBa+1nA+GcY2owDJOrlbZ bqf1pWoB0cE7vlJcAAABjuHsK2kAAAQDAEYwRAIgXIkdzd/NlG6Fw1vvOM/udpkZ ZKtvjWUH2IX0LFDnkRkCIBAEO30ygpO7tea6G9oLzYUYdIpuYBVsaVowxTowZtpd MA0GCSqGSIb3DQEBCwUAA4IBAQB2sAncfWPrXqjlRdMM+Ma3UsrcucDSehBOHq0G mWuq5oSGHFcafbd51v6iJk4dDjIF5JI3bSH2XI6ZPlhtAqV6M1W0VgsPZqNln3U9 aVCVBPyskH4XrXwxfuHsdkaNQvoO6/C/Y+SrfdOdDhnWDcCVwXFPG8SJShqhm8Yh rHyYvhYr2tA0w3fewkYrYR+KRC8Z9ufovMmbzuxyOZ3B/Xu4xJGVcYn0YXTQLeX5 iE4Upxt9T1uXKGzdklegHKSwF04nuVGVTa8+FlFORVUi7F7LtEoaHlV0EO7t3rrv ljHkV2M9+GDXZ0YS0cRwVsY5UH0LQAgT9sfffczqkpTa+EtZ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgGkBQCTMUGNTP5kGZUf GGCwlpKh7kQcJl4MSijWkdUAC4+RK+4eoO4CKrnDXFAYHEWYa64fIXIL0W0VJIjW pd5WSmNqrDDUUfGvtFwbTD1cIR+i6NUo2ZLgB1Pu7sEe5M58rVB2Ckl4ExN6tUti rttDBaBtemYw9Bjy7gSRYTg+4/90Rthsmb2Zq0zCIe+W8teBDp0jshPXXxacK/UD AqVHfrEMVY5AGsZWR024QlY5Y1l1KLjzRye29RzraSc6NjtBKxk0xuHJNkmIgFbG TQK1Pcs/JHmSOw2b+CM86DcZ8AMBzIgsnOO33fwah2TbHdJdvkWNDhMoZhW3hoNb qQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 366181885106570666038593285419501783324261 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-15 12:22:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-14 12:22:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'afcn.be' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22471227343937456545116194164624997675186256243650389503095592987250230565500631788735835730086344419858657473340688872528498150493754462748457545748856695062059354515540806148200700296410049947718514460700204687550223094974374136718428899368488967334864828344262861966474497119140485721859310354847517169998212436250659477213144540051834229087243400255230716437665911127470634951280801937071818780487267894060510762320501239151621601058911587482657547517003398510762882203657224373644979775431370932093653739477258233982402309189900222945094544719228816331909196471163636335209867250893244039785471026638525300956073 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3886eac68a1f9fc06f1bef5632120297c6abcf0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (143 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'afcn.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'afcn.fgov.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fanc.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fanc.fgov.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fank.fgov.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.afcn.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.afcn.fgov.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fanc.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fanc.fgov.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fank.fgov.be' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ee1ec2aa50000040300473045022100e237f8c40fa7ed09f018f9e62e4d4e3794b08e5d1b1c0ac6da7ee162055d200502207570d645de56ba5293bb85195651ea4460c9e57133aa06b0da8b2906d7b437f0007500dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ee1ec2b69000004030046304402205c891dcddfcd946e85c35bef38cfee76991964ab6f8d6507d885f42c50e79119022010043b7d328293bbb5e6ba1bda0bcd8518748a6e60156c695a30c53a3066da5d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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