xb1.co.za

Issued by R3

About this certificate

This digital certificate with serial number 03:35:99:c7:2b:f9:7d:6d:5a:e5:80:09:e3:cc:e8:70:8e:01 was issued on by Let's Encrypt.

With 15 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=xb1.co.za

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 03:35:99:c7:2b:f9:7d:6d:5a:e5:80:09:e3:cc:e8:70:8e:01
Serial Number (int): 279576229284430662314145081176097412910593
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: ca:b9:0a:6b:b4:5e:c5:02:09:de:2f:19:58:7d:7c:e5:0c:e7:dd:12
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): d9:f2:e8:06:d0:b8:08:43:b3:63:1c:08:5d:1e:5f:90:f1:62:e7:86
Fingerprint (sha256): d5:21:15:f5:e8:07:0f:1e:c4:46:db:ff:30:ad:80:16:b8:b0:93:a3:00:04:ce:57:5b:f5:9e:0f:3a:fe:5f:de

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate xb1.co.za

15

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for xb1.co.za

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

anthropologic.com
asphaltsand.com
caribbean4vip.com
co.netooze.com
genderequitylawyer.com
homeschoolpla.org
marketingprocess.com
masteroflaws.com
milesofsmiles.com
omeiapad.de.omeiapad.de
phoneseo.com
quebecsvaccinepassport.com
townliftcondominium.com
ujtravel.co.uk
xb1.co.za

Other certificates including the domain name xb1.co.za

(limited to 100 certificates)
www.xb1.co.za
xb1.co.za
xb1.co.za
xb1.co.za
xb1.co.za
xb1.co.za
judeconsulting.com.xb1.co.za
xb1.co.za
xb1.co.za
xb1.co.za
arbitrageur.co.nz.xb1.co.za
xb1.co.za
xb1.co.za
xb1.co.za
xb1.co.za
xb1.co.za
xb1.co.za

Certificate

The complete raw certificate details for xb1.co.za in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/yFT3/em6+SSXZB2a14
ZoGPJRt03+7GoGR66Yq6CR+u6j7sGvj3aYFb69B1odTJj42VpcokZfLwCqsi4ssl
wR2fqUwzPTNYZfj5HS2sEkZIq1pNXsMwKtPfnz6g8sTRPL25Iw9mDkEBBliZYZ6S
ZeDTyF1O6NxvlO7GXH19cMT52wFK2gLKpWDWAcI5OSWBq56B1hPOPYh/ZEQIFWK/
VVu+MjSM0vcmUGc9/uJB4lRDpoIzTXKrCKWEOAbRHA617CRDCvcqxgCUdrwonsui
ol3XrVxmY2gMMG2va9zMxdSCkWNxOnYf5ojsOhJsJsgICOUDFKR6wvCVK20IqT9+
3QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 279576229284430662314145081176097412910593
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-15 06:27:01 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-14 06:27:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'xb1.co.za'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24740992088425235035677704922663042121609729770696171541194537389483791441572699947178396939859962724934080494633152040841436954417800913676942113040836241760155581088384392618250725359981099418280933893441507793371852874981434075242793093614279077107522885266024450593926153604600982900462320401732075228007678415996665890055539742253269037774625122125453515834152466565195536517675590434107139700762918971728862203756912246872268148752672210985334137946374944671905664448967571615788539171916907358997178773909177041180081424645829843456451535085781173239084115283683633370081804606105838989094410171239865715228381
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							cab90a6bb45ec50209de2f19587d7ce50ce7dd12
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (296 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'anthropologic.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'asphaltsand.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'caribbean4vip.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'co.netooze.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'genderequitylawyer.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeschoolpla.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marketingprocess.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'masteroflaws.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'milesofsmiles.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'omeiapad.de.omeiapad.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'phoneseo.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'quebecsvaccinepassport.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'townliftcondominium.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ujtravel.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xb1.co.za'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f100770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ee0a6f4670000040300483046022100b43c6a08e9222a6e9351adc8113a4e0823332b42f2054efca2140fec17affb1d022100bfde9aec343bb476f852b596a62820d212b3b4b58a426a245544e8f96a3f523b007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ee0a6f4d90000040300473045022100ef7a78a3119c14f05fa82ec8ba77c94ab5935fab4f804945095d347feb1a68ef02203b090d00a3cb01244bc0722becf86bba066fecc0d32d1d43e06ba31eda985812
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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