xb1.co.za
Issued by R3
About this certificate
This digital certificate with serial number 03:35:99:c7:2b:f9:7d:6d:5a:e5:80:09:e3:cc:e8:70:8e:01 was issued on by Let's Encrypt.
With 15 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=xb1.co.za
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:35:99:c7:2b:f9:7d:6d:5a:e5:80:09:e3:cc:e8:70:8e:01Serial Number (int): 279576229284430662314145081176097412910593
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ca:b9:0a:6b:b4:5e:c5:02:09:de:2f:19:58:7d:7c:e5:0c:e7:dd:12
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d9:f2:e8:06:d0:b8:08:43:b3:63:1c:08:5d:1e:5f:90:f1:62:e7:86
Fingerprint (sha256): d5:21:15:f5:e8:07:0f:1e:c4:46:db:ff:30:ad:80:16:b8:b0:93:a3:00:04:ce:57:5b:f5:9e:0f:3a:fe:5f:de
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate xb1.co.za
15
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for xb1.co.za
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
anthropologic.com
asphaltsand.com
caribbean4vip.com
co.netooze.com
genderequitylawyer.com
homeschoolpla.org
marketingprocess.com
masteroflaws.com
milesofsmiles.com
omeiapad.de.omeiapad.de
phoneseo.com
quebecsvaccinepassport.com
townliftcondominium.com
ujtravel.co.uk
xb1.co.za
asphaltsand.com
caribbean4vip.com
co.netooze.com
genderequitylawyer.com
homeschoolpla.org
marketingprocess.com
masteroflaws.com
milesofsmiles.com
omeiapad.de.omeiapad.de
phoneseo.com
quebecsvaccinepassport.com
townliftcondominium.com
ujtravel.co.uk
xb1.co.za
Other certificates including the domain name xb1.co.za
(limited to 100 certificates)
Certificate
The complete raw certificate details for xb1.co.za in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/zCCBOegAwIBAgISAzWZxyv5fW1a5YAJ48zocI4BMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTUwNjI3MDFaFw0yNDA3MTQwNjI3MDBaMBQxEjAQBgNVBAMT CXhiMS5jby56YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMP8hU9/ 3puvkkl2QdmteGaBjyUbdN/uxqBkeumKugkfruo+7Br492mBW+vQdaHUyY+NlaXK JGXy8AqrIuLLJcEdn6lMMz0zWGX4+R0trBJGSKtaTV7DMCrT358+oPLE0Ty9uSMP Zg5BAQZYmWGekmXg08hdTujcb5Tuxlx9fXDE+dsBStoCyqVg1gHCOTklgauegdYT zj2If2RECBViv1VbvjI0jNL3JlBnPf7iQeJUQ6aCM01yqwilhDgG0RwOtewkQwr3 KsYAlHa8KJ7LoqJd161cZmNoDDBtr2vczMXUgpFjcTp2H+aI7DoSbCbICAjlAxSk esLwlSttCKk/ft0CAwEAAaOCAyswggMnMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU yrkKa7RexQIJ3i8ZWH185Qzn3RIwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+v nYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5s ZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wggEx BgNVHREEggEoMIIBJIIRYW50aHJvcG9sb2dpYy5jb22CD2FzcGhhbHRzYW5kLmNv bYIRY2FyaWJiZWFuNHZpcC5jb22CDmNvLm5ldG9vemUuY29tghZnZW5kZXJlcXVp dHlsYXd5ZXIuY29tghFob21lc2Nob29scGxhLm9yZ4IUbWFya2V0aW5ncHJvY2Vz cy5jb22CEG1hc3Rlcm9mbGF3cy5jb22CEW1pbGVzb2ZzbWlsZXMuY29tghdvbWVp YXBhZC5kZS5vbWVpYXBhZC5kZYIMcGhvbmVzZW8uY29tghpxdWViZWNzdmFjY2lu ZXBhc3Nwb3J0LmNvbYIXdG93bmxpZnRjb25kb21pbml1bS5jb22CDnVqdHJhdmVs LmNvLnVrggl4YjEuY28uemEwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEE AdZ5AgQCBIH2BIHzAPEAdwB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6 dAAAAY7gpvRnAAAEAwBIMEYCIQC0PGoI6SIqbpNRrcgROk4IIzMrQvIFTvyiFA/s F6/7HQIhAL/emuw0O7R2+FK1lqYoINISs7S1ikJqJFVE6PlqP1I7AHYA3+FW66oF r7WcD4ZxjajAMk6uVtlup/WlagHRwTu+UlwAAAGO4Kb02QAABAMARzBFAiEA73p4 oxGcFPBfqC7IunfJSrWTX6tPgElFCV00f+saaO8CIDsJDQCjywEkS8ByK+z4a7oG b+zA0y0dQ+Brox7amFgSMA0GCSqGSIb3DQEBCwUAA4IBAQAfhmr+L0pAljPKi1Q2 9RFMu6jkswypWW/6N41uYVHfT7g5jnhn/3dilYGzzI0Fi4AZoJLfcbBtfq+JqlYH uDksw40owfnO2K8WYE7LA06VYACRtqAcG4A0fnByJRvnaprq6QxEMZz0oKsnTQ93 RGjPCCFRBftJQRreqhK93+7AOFh5pU4O4twgBgam41fwaZ4Fz7Nq8HFJEmVlwoWc JRv0V5wnsR0TTBcnBqHhYuCIRxOm9nuYtySaAEl4HKwDDm+MAm0K+ACIezNe4RSD vzQrMSZQYEQpo9mbVBX59ft/YTJoNVouxTIaym5Wj4qXd6Gkt43RQLL2vVzQAiWv Pw7W -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/yFT3/em6+SSXZB2a14 ZoGPJRt03+7GoGR66Yq6CR+u6j7sGvj3aYFb69B1odTJj42VpcokZfLwCqsi4ssl wR2fqUwzPTNYZfj5HS2sEkZIq1pNXsMwKtPfnz6g8sTRPL25Iw9mDkEBBliZYZ6S ZeDTyF1O6NxvlO7GXH19cMT52wFK2gLKpWDWAcI5OSWBq56B1hPOPYh/ZEQIFWK/ VVu+MjSM0vcmUGc9/uJB4lRDpoIzTXKrCKWEOAbRHA617CRDCvcqxgCUdrwonsui ol3XrVxmY2gMMG2va9zMxdSCkWNxOnYf5ojsOhJsJsgICOUDFKR6wvCVK20IqT9+ 3QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 279576229284430662314145081176097412910593 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-15 06:27:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-14 06:27:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'xb1.co.za' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24740992088425235035677704922663042121609729770696171541194537389483791441572699947178396939859962724934080494633152040841436954417800913676942113040836241760155581088384392618250725359981099418280933893441507793371852874981434075242793093614279077107522885266024450593926153604600982900462320401732075228007678415996665890055539742253269037774625122125453515834152466565195536517675590434107139700762918971728862203756912246872268148752672210985334137946374944671905664448967571615788539171916907358997178773909177041180081424645829843456451535085781173239084115283683633370081804606105838989094410171239865715228381 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cab90a6bb45ec50209de2f19587d7ce50ce7dd12 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (296 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'anthropologic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'asphaltsand.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'caribbean4vip.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'co.netooze.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'genderequitylawyer.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeschoolpla.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marketingprocess.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'masteroflaws.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'milesofsmiles.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'omeiapad.de.omeiapad.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'phoneseo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'quebecsvaccinepassport.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'townliftcondominium.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ujtravel.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xb1.co.za' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ee0a6f4670000040300483046022100b43c6a08e9222a6e9351adc8113a4e0823332b42f2054efca2140fec17affb1d022100bfde9aec343bb476f852b596a62820d212b3b4b58a426a245544e8f96a3f523b007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ee0a6f4d90000040300473045022100ef7a78a3119c14f05fa82ec8ba77c94ab5935fab4f804945095d347feb1a68ef02203b090d00a3cb01244bc0722becf86bba066fecc0d32d1d43e06ba31eda985812 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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