ui-america.com

Issued by R3

About this certificate

This digital certificate with serial number 04:dd:e0:98:2c:3e:24:43:17:e3:2d:83:d5:45:64:8e:3c:2a was issued on by Let's Encrypt.

With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=ui-america.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 04:dd:e0:98:2c:3e:24:43:17:e3:2d:83:d5:45:64:8e:3c:2a
Serial Number (int): 423950084014096096668977865566785421327402
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: a8:e0:25:ed:ee:3d:30:c9:e1:77:cb:e9:80:93:3c:71:17:c2:b9:55
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 05:81:2c:ff:6d:14:9a:41:86:a1:c4:48:20:e7:14:60:6a:2d:3d:07
Fingerprint (sha256): d3:11:73:f6:44:a7:2d:ef:88:80:84:97:77:8e:28:9e:ce:f7:c5:02:6d:de:ac:c7:b7:ea:c7:72:7b:42:ea:70

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate ui-america.com

9

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ui-america.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

autodiscover.ui-america.com
cpanel.ui-america.com
cpcalendars.ui-america.com
cpcontacts.ui-america.com
mail.ui-america.com
ui-america.com
webdisk.ui-america.com
webmail.ui-america.com
www.ui-america.com

Other certificates including the domain name ui-america.com

(limited to 100 certificates)
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com

Certificate

The complete raw certificate details for ui-america.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz9jEJjkn7diqadXIZf6p
uI+8mfA7XAQNRA/8lcCROVdw+2nOpcCz5YmygaccNhDt5R04nT1vKDCK1PriIRzL
x4ncgxLvAp4qHhSGXE09ajCoE+nCESer/0rZO5X94j5djEAJEc7dFgWVFGp2fJyC
P+qzBOcwxfnRJvjranGlPtMM/7LDVNBBgCatoTUhrN7yd6D7lFIV1Nb8wRRcbZlb
gO0VCVx46VAMK6Y0ZGwcgbYl/HgrCI4JXadZQsD8avTRWewe6qKD0TKZY2DywYT0
u1V+psob+UJlL14Hpa32MqpyDnFJ3DXpyqovi6r3BM7A9JHqTmiOotI8+PgSOiiH
AQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 423950084014096096668977865566785421327402
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-13 23:57:17 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-11 23:57:16 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ui-america.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26238220529154726385006957547777790034100896580907078570068637906185211382786489321623347111681125085415563513351827770541349683562743638142887795010631357316642254562303279487871003649339525739493557468893250781310023623722315915868761270373250981432112932595178158479236484224587986134223630737127310916259416055922322056201982549314258748709368234726118407858984432215635355768093733908625006109628852883789648869304020039964991777494645597407053990986447468631684811696698530921850638407136001826419251694543299799849200080552250939077650214080628838028047890155542732815318918148275316503369330518091417002739457
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a8e025edee3d30c9e177cbe980933c7117c2b955
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (215 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.ui-america.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.ui-america.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcalendars.ui-america.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcontacts.ui-america.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.ui-america.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ui-america.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.ui-america.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.ui-america.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ui-america.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e3a76a48a0000040300473045022100f4ba3c1822acfde55bb97df9b6d14ab3f92b7e7bc662d03206f301752e53dcc102205c81e6b22e42f8fbe093ee01bde2b7e1a4dc35c4f492d00aae5ce88708fd6c0b00770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e3a76a4f30000040300483046022100beb4e15c0eb66424add03eafa20fdb45b7e322f5808f8490016f4b890e8ace94022100d3781177d06f28b2cc3ff568010d5d963f4bec32ca4a19eeb81631f82501374c
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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