afcn.be

Issued by R3

About this certificate

This digital certificate with serial number 04:34:1c:a1:c3:0b:4b:45:41:6c:db:df:0c:be:04:27:96:65 was issued on by Let's Encrypt.

With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=afcn.be

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 04:34:1c:a1:c3:0b:4b:45:41:6c:db:df:0c:be:04:27:96:65
Serial Number (int): 366181885106570666038593285419501783324261
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 38:86:ea:c6:8a:1f:9f:c0:6f:1b:ef:56:32:12:02:97:c6:ab:cf:0c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 00:c0:a8:ee:9b:46:7c:e4:5d:36:c4:e2:7a:50:40:82:3d:42:36:21
Fingerprint (sha256): c9:dd:e1:47:f0:c2:ab:fa:17:0f:ee:7a:f6:59:4f:30:54:db:47:88:a4:79:ed:c9:fe:1d:7f:29:e7:fd:50:4f

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate afcn.be

10

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for afcn.be

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

afcn.be
afcn.fgov.be
fanc.be
fanc.fgov.be
fank.fgov.be
www.afcn.be
www.afcn.fgov.be
www.fanc.be
www.fanc.fgov.be
www.fank.fgov.be

Other certificates including the domain name afcn.be

(limited to 100 certificates)
afcn.be
afcn.be
afcn.be
api.fanc.be
afcn.be
www.afcn.be
afcn.be
afcn.be
afcn.be
afcn.be
afcn.be
www.afcn.be
afcn.be
afcn.be
afcn.be
myprodose.fanc.be
afcn.be
afcn.be
afcn.be
myprodose.fanc.be
afcn.be
dxp.fanc.be

Certificate

The complete raw certificate details for afcn.be in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgGkBQCTMUGNTP5kGZUf
GGCwlpKh7kQcJl4MSijWkdUAC4+RK+4eoO4CKrnDXFAYHEWYa64fIXIL0W0VJIjW
pd5WSmNqrDDUUfGvtFwbTD1cIR+i6NUo2ZLgB1Pu7sEe5M58rVB2Ckl4ExN6tUti
rttDBaBtemYw9Bjy7gSRYTg+4/90Rthsmb2Zq0zCIe+W8teBDp0jshPXXxacK/UD
AqVHfrEMVY5AGsZWR024QlY5Y1l1KLjzRye29RzraSc6NjtBKxk0xuHJNkmIgFbG
TQK1Pcs/JHmSOw2b+CM86DcZ8AMBzIgsnOO33fwah2TbHdJdvkWNDhMoZhW3hoNb
qQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 366181885106570666038593285419501783324261
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-15 12:22:14 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-14 12:22:13 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'afcn.be'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22471227343937456545116194164624997675186256243650389503095592987250230565500631788735835730086344419858657473340688872528498150493754462748457545748856695062059354515540806148200700296410049947718514460700204687550223094974374136718428899368488967334864828344262861966474497119140485721859310354847517169998212436250659477213144540051834229087243400255230716437665911127470634951280801937071818780487267894060510762320501239151621601058911587482657547517003398510762882203657224373644979775431370932093653739477258233982402309189900222945094544719228816331909196471163636335209867250893244039785471026638525300956073
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3886eac68a1f9fc06f1bef5632120297c6abcf0c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (143 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'afcn.be'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'afcn.fgov.be'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fanc.be'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fanc.fgov.be'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fank.fgov.be'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.afcn.be'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.afcn.fgov.be'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fanc.be'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fanc.fgov.be'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fank.fgov.be'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ee1ec2aa50000040300473045022100e237f8c40fa7ed09f018f9e62e4d4e3794b08e5d1b1c0ac6da7ee162055d200502207570d645de56ba5293bb85195651ea4460c9e57133aa06b0da8b2906d7b437f0007500dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ee1ec2b69000004030046304402205c891dcddfcd946e85c35bef38cfee76991964ab6f8d6507d885f42c50e79119022010043b7d328293bbb5e6ba1bda0bcd8518748a6e60156c695a30c53a3066da5d
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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