basicbrandless.com
Issued by R3
About this certificate
This digital certificate with serial number 03:9f:b1:da:8c:23:46:1a:ee:b0:8d:9b:df:45:4b:58:50:ec was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=basicbrandless.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:9f:b1:da:8c:23:46:1a:ee:b0:8d:9b:df:45:4b:58:50:ecSerial Number (int): 315678162254011073041647223765494908080364
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 87:2b:86:4e:13:98:2c:35:86:c1:7b:c2:19:28:3b:0f:e5:ed:7e:d0
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): be:28:d7:60:e9:ed:90:1c:fa:cb:ce:4c:dc:21:cd:fc:54:06:7e:96
Fingerprint (sha256): cf:34:93:a3:59:00:61:91:ac:16:9a:9e:fa:9e:fc:1f:ae:58:18:5f:fe:23:03:86:00:d1:f1:bd:a6:16:84:ca
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate basicbrandless.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for basicbrandless.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
basicbrandless.com
www.basicbrandless.com
www.basicbrandless.com
Other certificates including the domain name basicbrandless.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for basicbrandless.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGCjCCBPKgAwIBAgISA5+x2owjRhrusI2b30VLWFDsMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMjkxNzAzMzZaFw0yNDA0MjgxNzAzMzVaMB0xGzAZBgNVBAMT EmJhc2ljYnJhbmRsZXNzLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoC ggIBALvp75maT9KE9pImPkwJCQaJEpQMFmckSsbWT+/OWmRdM0zSlnxM7ZfiftmG Lxf7R6MVj+6ad3EnIj2u9Zj/YhGqulmRn8ZUBDgycBz0s6Hlk/IsL/gq81wm2O5h 2pdQAasCK+Zu39n2PX3qPF7mV4dIOgCa+FeMqtSKDVdUl2lEqzYV3d82D1Y6N9hi iwy2b9PadbLPWI2pFoMwrK/LvtVOjr9Oxe9zV3ghdMQFOs4XIBEpc3uejKhN/3E5 DFYpJmGgrFuR99sV5yBGXdknEUmViLBziec3zLhvHDYbfNQH71HGpr2SGz8ZfEKe RfoQ3S/YrP/RCO/E4UM8ypzWEliFRmnlt8Q35IKLHsiL7EwCC/sexSGC1+VlbsfD 07qsBg6MPslN/bME0/dYgeCcKziW20noKDv7Ms/y2oJn/8xb60kEbpOyR2gecEx1 pxgkVexuRvFEGWCLu39D4LLd70Sz9tw/bAkOREijqoEQLDmimGJg0trE/uA0eBuk GXte3JqKIqowreVTXcswkXaujBtnLQgxjNXKHvGPkHKwWcNkjBHZP95iCAI9TFUv K6J0EqNTd32PLN3seebZdVoi0XS9cVwMf4RWSELhmZkJvWPcpNQtdOxjtV/WCvgO B2pDjyaMaN8E3Pcwuzq/MQb5lBRmKGY+qThaynnwbebmTTn5AgMBAAGjggItMIIC KTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIcrhk4TmCw1hsF7whkoOw/l7X7QMB8G A1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAh BggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZo dHRwOi8vcjMuaS5sZW5jci5vcmcvMDUGA1UdEQQuMCyCEmJhc2ljYnJhbmRsZXNz LmNvbYIWd3d3LmJhc2ljYnJhbmRsZXNzLmNvbTATBgNVHSAEDDAKMAgGBmeBDAEC ATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB3AEiw42vapkc0D+VqAvqdMOscUgHL Vt0sgdm7v6s52IRzAAABjVZkFhUAAAQDAEgwRgIhAI1Nus27SoSyDTXLld4B9ac5 3BnU4iwf2K05duMytY8mAiEAp0aZc0aH7279COhAHoZHB1Cc8nSyhBj4XroCQiGT /UcAdgA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAY1WZBYcAAAE AwBHMEUCIQCDdrg+NAs7XXqI+MVfKG6DBLJssUFYuMO/bQIogy4GrwIgbnMDngdo EgbheUCzC+lIa4VzNxGvMNRkPePF9K6T+EswDQYJKoZIhvcNAQELBQADggEBAKrD sElLYfchjzpLSPfJiVJVj5sNthHOKDxj3axFqWLKkXbQ4eNBWrWc3VGXl/Lw8SXD AlY5D8mbrZjDRyrv7+cTyNiksMOPGs8Vf1HnxY2YUIfXZWzBSOHM6tYqfTKCNUUS AlpBCRcc+pmjlpb3SaVdyu69anYFn15v6Dud4GJnJxBIeh4xiQCEcPWgpSV76dmU 1b9ElwxmvzE6chFy5GSJvMIDmQWKmWPgnJ4w8FEkNvbXIUqePv8xSWHUt4FJVN/a b9qCW2JGMRjI0AezM8QugYhKIgs3NI80qCRNWXWaaOT3OacNJhQEKjvZZW+vtyA5 zWKWRrrElC/P4L5Pll0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAu+nvmZpP0oT2kiY+TAkJ BokSlAwWZyRKxtZP785aZF0zTNKWfEztl+J+2YYvF/tHoxWP7pp3cSciPa71mP9i Eaq6WZGfxlQEODJwHPSzoeWT8iwv+CrzXCbY7mHal1ABqwIr5m7f2fY9feo8XuZX h0g6AJr4V4yq1IoNV1SXaUSrNhXd3zYPVjo32GKLDLZv09p1ss9YjakWgzCsr8u+ 1U6Ov07F73NXeCF0xAU6zhcgESlze56MqE3/cTkMVikmYaCsW5H32xXnIEZd2ScR SZWIsHOJ5zfMuG8cNht81AfvUcamvZIbPxl8Qp5F+hDdL9is/9EI78ThQzzKnNYS WIVGaeW3xDfkgoseyIvsTAIL+x7FIYLX5WVux8PTuqwGDow+yU39swTT91iB4Jwr OJbbSegoO/syz/Lagmf/zFvrSQRuk7JHaB5wTHWnGCRV7G5G8UQZYIu7f0Pgst3v RLP23D9sCQ5ESKOqgRAsOaKYYmDS2sT+4DR4G6QZe17cmooiqjCt5VNdyzCRdq6M G2ctCDGM1coe8Y+QcrBZw2SMEdk/3mIIAj1MVS8ronQSo1N3fY8s3ex55tl1WiLR dL1xXAx/hFZIQuGZmQm9Y9yk1C107GO1X9YK+A4HakOPJoxo3wTc9zC7Or8xBvmU FGYoZj6pOFrKefBt5uZNOfkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 315678162254011073041647223765494908080364 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-29 17:03:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-28 17:03:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'basicbrandless.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 766621469469340655311412611178547745673910751947844143733342451047117277529906755215224095917363886994663605056859606815636294777206706022842513168286987126210017494585101782062383305683808715310817087022022287906240621829165099828783870180915553100766701000998861561479599471195206789471205728396977049149428565449051265102129059991288832239623606173640364318949320601060593588225860091818611101040846502278688957802379658158752952931462598318718203655040493772084189656909370470438750096692479033629275173265177038845969809802450749930280488241164120614427201898094941006691563411445532167494003076868469914572229371054328252023677945603787352097422581678542949491684127396447370346790195788802894650455014457641942476642727871577630132888668372796744724593092768510298201328794718990803288266251470013187640641691086913784270469647260692390711591829201365445338542184870831145626052268914621792606399876358285903321034168035839465342036362985792842825924331006139568610939691520877258505088420934984463886115458683569231309706325176526404247094578989481531971019619858494414337719736040466036563873322956107610518204289439110485707760298276116109806364524322525878684860835479371331530960556599605223170876763039207046926387984889 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 872b864e13982c3586c17bc219283b0fe5ed7ed0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'basicbrandless.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.basicbrandless.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d5664161500000403004830460221008d4dbacdbb4a84b20d35cb95de01f5a739dc19d4e22c1fd8ad3976e332b58f26022100a74699734687ef6efd08e8401e864707509cf274b28418f85eba02422193fd470076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d5664161c00000403004730450221008376b83e340b3b5d7a88f8c55f286e8304b26cb14158b8c3bf6d0228832e06af02206e73039e07681206e17940b30be9486b85733711af30d4643de3c5f4ae93f84b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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