fitmov.com
Issued by R3
About this certificate
This digital certificate with serial number 04:86:f2:85:a1:30:fb:0a:a2:a2:bd:f6:95:57:d9:b5:05:2b was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=fitmov.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:86:f2:85:a1:30:fb:0a:a2:a2:bd:f6:95:57:d9:b5:05:2bSerial Number (int): 394369347914257467047257522546271910692139
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: da:53:87:56:90:0a:0e:5a:dd:5f:93:d9:05:aa:e7:9c:8d:12:47:96
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 0b:2f:eb:e1:cc:93:94:32:3b:b9:4b:ec:26:53:82:25:ac:57:de:49
Fingerprint (sha256): d3:68:01:0d:e8:ec:d8:c1:81:50:7a:8a:8d:2c:9e:79:5f:03:99:34:32:21:87:0f:d1:0d:38:3f:52:f3:d7:73
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate fitmov.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for fitmov.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
fitmov.com
Other certificates including the domain name fitmov.com
(limited to 100 certificates)
fitmov.com
sni81320.cloudflaressl.com
www.fitmov.com
sni81320.cloudflaressl.com
fitmov.com
sni81320.cloudflaressl.com
fitmov.com
www.fitmov.com
sni81320.cloudflaressl.com
sni81320.cloudflaressl.com
fitmov.com
sni81320.cloudflaressl.com
www.fitmov.com
sni81320.cloudflaressl.com
sni81320.cloudflaressl.com
www.fitmov.com
fitmov.com
www.fitmov.com
www.fitmov.com
www.fitmov.com
fitmov.com
fitmov.com
sni81320.cloudflaressl.com
sni81320.cloudflaressl.com
sni81320.cloudflaressl.com
www.fitmov.com
fitmov.com
sni81320.cloudflaressl.com
www.fitmov.com
sni81320.cloudflaressl.com
fitmov.com
sni81320.cloudflaressl.com
fitmov.com
www.fitmov.com
sni81320.cloudflaressl.com
sni81320.cloudflaressl.com
fitmov.com
sni81320.cloudflaressl.com
www.fitmov.com
sni81320.cloudflaressl.com
sni81320.cloudflaressl.com
www.fitmov.com
fitmov.com
www.fitmov.com
www.fitmov.com
www.fitmov.com
fitmov.com
fitmov.com
sni81320.cloudflaressl.com
sni81320.cloudflaressl.com
sni81320.cloudflaressl.com
www.fitmov.com
fitmov.com
Certificate
The complete raw certificate details for fitmov.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4jCCBMqgAwIBAgISBIbyhaEw+wqior32lVfZtQUrMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMTkyMjQ3MTBaFw0yNDA0MTgyMjQ3MDlaMBUxEzARBgNVBAMT CmZpdG1vdi5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDP9jq/ 4Rv4wreKG5u93+oZ6j9quxXTBon5XnNvJDE56FJUHRMV906QJC9K8NbL7MZ4KumB sZFXConOwHFsLQE/3X8BJq9syPHLtWSt7R7+StV/LTBMI7RyofOKqyH+CSBuvARq 8AgCWS0ZwYdvEKZVYKYzJwPCIC/0SsQLxSwlI6hZugtthHWlJEN0wnkQk4H9AX0w I6Oo/wvUlCJh0U6um+XFdc4AjQt+If9ffrKL8yCqi6v3EmeSG5Lo3tmXvcPyQe1l z42HDmH8FfAmTFtPH+HXVcntU7GTMe3vNOWs1vfVag1jSVXjeWlI/SL7YcSDN9T5 qpOmidU9KqXkYMFQtZj8eu/dJGaMSBAL25jXbAeN8E0OOMNyk5EbFuHsfVaVybTA B8rauzNLmOcXiEWiO+6L99vmweTbPY2+59rThqzN3GQ/fRyA55BTzjZJRXuzdcGE feAV0aoZr7gC6B0HaSfNhjX3DfvkjxDYqbHqS1QG7yQpskuSaeSGZioBOOEag/jT Aqo6EX9GdNQiuDMOymBPMqnTZtX6jaD8G/TwARPnW84ZnACs4//QiVny/52nNNzN 4yIiDeQ4uXZSU/aiWhomCdLKoyPRT8/K4yQxBgNrLz1YiYknyBrWSQDHr90jImjQ SO2bFXboDVHxONTdnimw5WcjLVdujFmB/pf9pwIDAQABo4ICDTCCAgkwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBTaU4dWkAoOWt1fk9kFquecjRJHljAfBgNVHSMEGDAW gBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUH MAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3Iz LmkubGVuY3Iub3JnLzAVBgNVHREEDjAMggpmaXRtb3YuY29tMBMGA1UdIAQMMAow CAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcASLDja9qmRzQP5WoC +p0w6xxSActW3SyB2bu/qznYhHMAAAGNJB8KHAAABAMASDBGAiEAye8DbW1nEbru /9E5BxPEhZ2To1ONgyVHYRQtqBFs9YECIQDFX6qcA66WGflCCR3GqODZ/4JAJSDD 69IfFRRbiy1SagB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAAB jSQfCpMAAAQDAEcwRQIhAMAtNuTxQzv9sL9NglnjKC0OmVeOnucB2u3sz6PgeE8Z AiBJyHM7MwQVw4BxpVaiR4C6HeMvh/Z/yovHEXRuJQ2xCzANBgkqhkiG9w0BAQsF AAOCAQEAVPby2/hPPqk236FAguVFkopXD46lAKsi1CH3qjqM4AdqjzV3+DeexbO4 kerY/0SIR5aYnC4Cc98Ze1pmqWDylAgD8QPWO7GQYkw5FuYBykfklKVoIdJvV/Wv xvOUs7QEQw/RIbI7w3QVWLs8N9CRTOaLyXFmpLoBdHyX50wXwxiy614vnVp3Azpj J1aORliCk8ICxsQo45xQvICaooEmwh2EoNkNcRQLGyreemdOHHbW9931uza6vt+8 R3ibN7McPCOZN3/jlxXLzrcFQzePhdtEZqREtuUW4vWoublQ9XBNwl/B7Y78VTGE sUwf01DgQqeo5WSfGcSkbfHBF2lkUA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAz/Y6v+Eb+MK3ihubvd/q Geo/arsV0waJ+V5zbyQxOehSVB0TFfdOkCQvSvDWy+zGeCrpgbGRVwqJzsBxbC0B P91/ASavbMjxy7Vkre0e/krVfy0wTCO0cqHziqsh/gkgbrwEavAIAlktGcGHbxCm VWCmMycDwiAv9ErEC8UsJSOoWboLbYR1pSRDdMJ5EJOB/QF9MCOjqP8L1JQiYdFO rpvlxXXOAI0LfiH/X36yi/Mgqour9xJnkhuS6N7Zl73D8kHtZc+Nhw5h/BXwJkxb Tx/h11XJ7VOxkzHt7zTlrNb31WoNY0lV43lpSP0i+2HEgzfU+aqTponVPSql5GDB ULWY/Hrv3SRmjEgQC9uY12wHjfBNDjjDcpORGxbh7H1Wlcm0wAfK2rszS5jnF4hF ojvui/fb5sHk2z2Nvufa04aszdxkP30cgOeQU842SUV7s3XBhH3gFdGqGa+4Augd B2knzYY19w375I8Q2Kmx6ktUBu8kKbJLkmnkhmYqATjhGoP40wKqOhF/RnTUIrgz DspgTzKp02bV+o2g/Bv08AET51vOGZwArOP/0IlZ8v+dpzTczeMiIg3kOLl2UlP2 oloaJgnSyqMj0U/PyuMkMQYDay89WImJJ8ga1kkAx6/dIyJo0EjtmxV26A1R8TjU 3Z4psOVnIy1XboxZgf6X/acCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 394369347914257467047257522546271910692139 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-19 22:47:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-18 22:47:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'fitmov.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 848410262235098996292977415011275490794642291371104361892168842051221994161638410176774112222079917668594768687409226955065574938163119411132301965650456610612545239743231307994308044920845696894970869239861214590574630723442609155409536531099054754729538868321353593514524141344011563065512618819533697258203713308655629101772008399980277582964372096795954495854251193446134393012864213341004161935189133609901909484681959168089961382588112156409809911843885124725865326993888473381793140700613223542404723370842897750978325885107693928334133962329460238921097041471713530112169338220246533073178376499702711943615144945968460953249411265149909707371049274893833478885282898750147226315972522933319415861244466289559961965079962943386172283156746334977914162257654295812242916857569940341234888689870439252179963760930168873879256938746975237938638415078129346810077325656918835329934285454318224962730635916012204315241750568457373247148173941101256063473869923752728128526903741672457267724269548050886804611034798428438199063115494327381089533706044868541274235085713906473454326356324252346016480643163247317319201309320043046499877772038924841887528562073928396731932872964214370293395775991912532805708680854186056086799777191 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) da538756900a0e5add5f93d905aae79c8d124796 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fitmov.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d241f0a1c0000040300483046022100c9ef036d6d6711baeeffd1390713c4859d93a3538d83254761142da8116cf581022100c55faa9c03ae9619f942091dc6a8e0d9ff82402520c3ebd21f15145b8b2d526a00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018d241f0a930000040300473045022100c02d36e4f1433bfdb0bf4d8259e3282d0e99578e9ee701daedeccfa3e0784f19022049c8733b330415c38071a556a24780ba1de32f87f67fca8bc711746e250db10b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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