ui-america.com
Issued by R3
About this certificate
This digital certificate with serial number 04:dd:e0:98:2c:3e:24:43:17:e3:2d:83:d5:45:64:8e:3c:2a was issued on by Let's Encrypt.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ui-america.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:dd:e0:98:2c:3e:24:43:17:e3:2d:83:d5:45:64:8e:3c:2aSerial Number (int): 423950084014096096668977865566785421327402
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a8:e0:25:ed:ee:3d:30:c9:e1:77:cb:e9:80:93:3c:71:17:c2:b9:55
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 05:81:2c:ff:6d:14:9a:41:86:a1:c4:48:20:e7:14:60:6a:2d:3d:07
Fingerprint (sha256): d3:11:73:f6:44:a7:2d:ef:88:80:84:97:77:8e:28:9e:ce:f7:c5:02:6d:de:ac:c7:b7:ea:c7:72:7b:42:ea:70
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate ui-america.com
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ui-america.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
autodiscover.ui-america.com
cpanel.ui-america.com
cpcalendars.ui-america.com
cpcontacts.ui-america.com
mail.ui-america.com
ui-america.com
webdisk.ui-america.com
webmail.ui-america.com
www.ui-america.com
cpanel.ui-america.com
cpcalendars.ui-america.com
cpcontacts.ui-america.com
mail.ui-america.com
ui-america.com
webdisk.ui-america.com
webmail.ui-america.com
www.ui-america.com
Other certificates including the domain name ui-america.com
(limited to 100 certificates)
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
ui-america.com
Certificate
The complete raw certificate details for ui-america.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFsTCCBJmgAwIBAgISBN3gmCw+JEMX4y2D1UVkjjwqMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMTMyMzU3MTdaFw0yNDA2MTEyMzU3MTZaMBkxFzAVBgNVBAMT DnVpLWFtZXJpY2EuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA z9jEJjkn7diqadXIZf6puI+8mfA7XAQNRA/8lcCROVdw+2nOpcCz5YmygaccNhDt 5R04nT1vKDCK1PriIRzLx4ncgxLvAp4qHhSGXE09ajCoE+nCESer/0rZO5X94j5d jEAJEc7dFgWVFGp2fJyCP+qzBOcwxfnRJvjranGlPtMM/7LDVNBBgCatoTUhrN7y d6D7lFIV1Nb8wRRcbZlbgO0VCVx46VAMK6Y0ZGwcgbYl/HgrCI4JXadZQsD8avTR Wewe6qKD0TKZY2DywYT0u1V+psob+UJlL14Hpa32MqpyDnFJ3DXpyqovi6r3BM7A 9JHqTmiOotI8+PgSOiiHAQIDAQABo4IC2DCCAtQwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBSo4CXt7j0wyeF3y+mAkzxxF8K5VTAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzCB3wYDVR0RBIHXMIHUghthdXRvZGlzY292ZXIudWktYW1lcmljYS5jb22CFWNw YW5lbC51aS1hbWVyaWNhLmNvbYIaY3BjYWxlbmRhcnMudWktYW1lcmljYS5jb22C GWNwY29udGFjdHMudWktYW1lcmljYS5jb22CE21haWwudWktYW1lcmljYS5jb22C DnVpLWFtZXJpY2EuY29tghZ3ZWJkaXNrLnVpLWFtZXJpY2EuY29tghZ3ZWJtYWls LnVpLWFtZXJpY2EuY29tghJ3d3cudWktYW1lcmljYS5jb20wEwYDVR0gBAwwCjAI BgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgA7U3d1Pi25gE6LMFsG /kA7Z9hPw/THvQANLXJv4frUFwAAAY46dqSKAAAEAwBHMEUCIQD0ujwYIqz95Vu5 ffm20Uqz+St+e8Zi0DIG8wF1LlPcwQIgXIHmsi5C+Pvgk+4BveK34aTcNcT0ktAK rlzohwj9bAsAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY46 dqTzAAAEAwBIMEYCIQC+tOFcDrZkJK3QPq+iD9tFt+Mi9YCPhJABb0uJDorOlAIh ANN4EXfQbyiyzD/1aAENXZY/S+wyykoZ7rgWMfglATdMMA0GCSqGSIb3DQEBCwUA A4IBAQAbabEBFvg9iiH24v6L4oxSf6EL+oTZsHWNxW8aTjLWsyZv/3FNMqKWNYAm Sl7xcJ/I0F0dTgwX9R6ZpSB1x61gEbYKcbuwzS57ThZcs4F5QoZVdpY5shQ0uGNX 9tgmVOzV2lcPL1qsD1zAnguArhbUy2wXUrTkxHQ0bgNTssW1C/J4QXG650vMC6by 1skXh3wW376e8r9xZp6cT9GCDxFXYr9HXTItrX9Tiaf7A+X/kSNsBtgjwyjfaXRc 1C1phvB5kYZCMpp70Ahpa3JBn09lb9UKV9k0YZUHcLPvGrkvdlGOvYrq0Qf9rTZH zHF3XFw2wrfI7ily911tHvbWu3zU -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz9jEJjkn7diqadXIZf6p uI+8mfA7XAQNRA/8lcCROVdw+2nOpcCz5YmygaccNhDt5R04nT1vKDCK1PriIRzL x4ncgxLvAp4qHhSGXE09ajCoE+nCESer/0rZO5X94j5djEAJEc7dFgWVFGp2fJyC P+qzBOcwxfnRJvjranGlPtMM/7LDVNBBgCatoTUhrN7yd6D7lFIV1Nb8wRRcbZlb gO0VCVx46VAMK6Y0ZGwcgbYl/HgrCI4JXadZQsD8avTRWewe6qKD0TKZY2DywYT0 u1V+psob+UJlL14Hpa32MqpyDnFJ3DXpyqovi6r3BM7A9JHqTmiOotI8+PgSOiiH AQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 423950084014096096668977865566785421327402 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-13 23:57:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-11 23:57:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ui-america.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26238220529154726385006957547777790034100896580907078570068637906185211382786489321623347111681125085415563513351827770541349683562743638142887795010631357316642254562303279487871003649339525739493557468893250781310023623722315915868761270373250981432112932595178158479236484224587986134223630737127310916259416055922322056201982549314258748709368234726118407858984432215635355768093733908625006109628852883789648869304020039964991777494645597407053990986447468631684811696698530921850638407136001826419251694543299799849200080552250939077650214080628838028047890155542732815318918148275316503369330518091417002739457 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a8e025edee3d30c9e177cbe980933c7117c2b955 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (215 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.ui-america.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.ui-america.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcalendars.ui-america.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpcontacts.ui-america.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.ui-america.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ui-america.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.ui-america.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.ui-america.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ui-america.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e3a76a48a0000040300473045022100f4ba3c1822acfde55bb97df9b6d14ab3f92b7e7bc662d03206f301752e53dcc102205c81e6b22e42f8fbe093ee01bde2b7e1a4dc35c4f492d00aae5ce88708fd6c0b00770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e3a76a4f30000040300483046022100beb4e15c0eb66424add03eafa20fdb45b7e322f5808f8490016f4b890e8ace94022100d3781177d06f28b2cc3ff568010d5d963f4bec32ca4a19eeb81631f82501374c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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