*.criasis.com.br
Issued by R3
About this certificate
This digital certificate with serial number 03:6a:5a:7d:23:a7:72:5d:45:02:df:a2:a5:62:1e:0f:d2:61 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.criasis.com.br
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:6a:5a:7d:23:a7:72:5d:45:02:df:a2:a5:62:1e:0f:d2:61Serial Number (int): 297527068968779009663812077987865761403489
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: cc:9d:07:67:db:68:47:75:a2:d0:f4:8b:94:16:29:02:05:90:8e:a7
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 98:a3:bc:b9:80:f5:99:d9:20:3f:d8:28:e9:28:a5:b3:9c:e6:95:1a
Fingerprint (sha256): d6:67:50:b8:ce:52:10:b8:1f:c9:7f:81:97:3b:95:3d:d7:65:65:0e:de:41:54:15:1a:2c:99:0c:24:0e:96:64
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate *.criasis.com.br
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.criasis.com.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.criasis.com.br
www.artesanatodare.criasis.com.br
www.artesanatodare.criasis.com.br
Other certificates including the domain name criasis.com.br
(limited to 100 certificates)
criasis.evoluthiva.com.br
camaraviamao.criasis.com.br
criasis.evoluthiva.com.br
fluxosaude.criasis.com.br
criasis.evoluthiva.com.br
criasis.com.br
criasis.com.br
criasis.com.br
criasis.evoluthiva.com.br
criasis.com.br
criasis.com.br
artesanatodare.criasis.com.br
*.criasis.com.br
criasis.com.br
criasis.com.br
criasis.evoluthiva.com.br
criasis.evoluthiva.com.br
criasis.evoluthiva.com.br
pizzax.com.br
artesanatodare.criasis.com.br
camaraviamao.criasis.com.br
criasis.com.br
fluxosaude.criasis.com.br
artesanatodare.criasis.com.br
*.criasis.com.br
criasis.com.br
criasis.evoluthiva.com.br
criasis.com.br
fluxosaude.criasis.com.br
criasis.com.br
camaraviamao.criasis.com.br
camaraviamao.criasis.com.br
*.criasis.com.br
criasis.com.br
artesanatodare.criasis.com.br
criasis.com.br
www.artesanatodare.criasis.com.br
camaraviamao.criasis.com.br
criasis.evoluthiva.com.br
fluxosaude.criasis.com.br
criasis.evoluthiva.com.br
criasis.com.br
criasis.com.br
criasis.com.br
criasis.evoluthiva.com.br
criasis.com.br
criasis.com.br
artesanatodare.criasis.com.br
*.criasis.com.br
criasis.com.br
criasis.com.br
criasis.evoluthiva.com.br
criasis.evoluthiva.com.br
criasis.evoluthiva.com.br
pizzax.com.br
artesanatodare.criasis.com.br
camaraviamao.criasis.com.br
criasis.com.br
fluxosaude.criasis.com.br
artesanatodare.criasis.com.br
*.criasis.com.br
criasis.com.br
criasis.evoluthiva.com.br
criasis.com.br
fluxosaude.criasis.com.br
criasis.com.br
camaraviamao.criasis.com.br
camaraviamao.criasis.com.br
*.criasis.com.br
criasis.com.br
artesanatodare.criasis.com.br
criasis.com.br
www.artesanatodare.criasis.com.br
Certificate
The complete raw certificate details for *.criasis.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEHTCCAwWgAwIBAgISA2pafSOncl1FAt+ipWIeD9JhMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMDIwMjM0MzhaFw0yNDAzMDEwMjM0MzdaMBsxGTAXBgNVBAMM ECouY3JpYXNpcy5jb20uYnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwTpdiOzscuPUDSvIXkyRJezcZ4dmRByttxO772pLvSaV41IRpi9Dh6UkY/0TM rl+/+vM5B7z3pfidz6rFZLTkNN3Az0KTd1lWZdqixCbx18W78oht7BdM26pmIJz1 CZgaiHJp5vGfns9mx5dYTt3Dx3jXqCMnt5sjXgKfplez4itqgojnKDapDPNzEegF CzOm9pdYf5amF9iT4BU439X+hVoX6SuNFud/UU9c/y96MP5gvcFQzHK3Z2co5YTs HaCKGzpz7jh3l+qfuFTd+FG/6Qapc4zZvxpdPxzx9bpGsHUw54Ygr+hbZyzYyZAy gbNSqk//K7ZBr4Qns6nXqGoxAgMBAAGjggFCMIIBPjAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFMydB2fbaEd1otD0i5QWKQIFkI6nMB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMD4GA1UdEQQ3MDWCECouY3JpYXNpcy5jb20uYnKCIXd3dy5hcnRlc2FuYXRv ZGFyZS5jcmlhc2lzLmNvbS5icjATBgNVHSAEDDAKMAgGBmeBDAECATATBgorBgEE AdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkuhz6iFjUbLdzeTdyyPI QTe7FF0ot6UOfBg1eCiSlg2rVaVNTYm4pAg8BJYjBJRgQml05AzINuOWwJk1sqzj AInGgUT+x6oGQnsakcVai6ZEU67fUcvihpiq2WPOFF8pjJaulNmm6p+JP1MDK2+o DxcC0+NuiLBDm7z9A86Bhd0dCVXeiBGN9qUsIrsQ6y1MtwlC7f3bW1mD38PAC6iB asTmVDbRFB2oALhifBl6oj6v39mzDM9JXcV3q4uBbNNZOj30p4G/tDTpixkeBVT2 FVWHvgIViX0eUM8uZCGuGyDVp6qsRLo9hIrYFc2n5fT1U5n+4PL9IzYxcBKD0BCg +g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsE6XYjs7HLj1A0ryF5Mk SXs3GeHZkQcrbcTu+9qS70mleNSEaYvQ4elJGP9EzK5fv/rzOQe896X4nc+qxWS0 5DTdwM9Ck3dZVmXaosQm8dfFu/KIbewXTNuqZiCc9QmYGohyaebxn57PZseXWE7d w8d416gjJ7ebI14Cn6ZXs+IraoKI5yg2qQzzcxHoBQszpvaXWH+WphfYk+AVON/V /oVaF+krjRbnf1FPXP8vejD+YL3BUMxyt2dnKOWE7B2gihs6c+44d5fqn7hU3fhR v+kGqXOM2b8aXT8c8fW6RrB1MOeGIK/oW2cs2MmQMoGzUqpP/yu2Qa+EJ7Op16hq MQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 297527068968779009663812077987865761403489 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-02 02:34:38 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-01 02:34:37 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.criasis.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22256696509495470546347940122177679969295890062955155681396893818129046977116907873287190869775483373622580487967459550104594449317254253264179527904861355798953623353887434290047327708171315234602934629543206306054452838501830709617023053002002309227627429156800666552709096239388977420782544426508598817093970091681222126705046152280220332124159025216935586929981051786068177826820245651779373224704586839751751846328859507229185401066414612630772766113008538023611325748170784085912935223657187457061266558327126988822126588647085971161739450601090883761179669933615929567962140057655569883096496637550770717747761 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cc9d0767db684775a2d0f48b9416290205908ea7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.criasis.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.artesanatodare.criasis.com.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0092e873ea216351b2ddcde4ddcb23c84137bb145d28b7a50e7c1835782892960dab55a54d4d89b8a4083c049623049460426974e40cc836e396c09935b2ace30089c68144fec7aa06427b1a91c55a8ba64453aedf51cbe28698aad963ce145f298c96ae94d9a6ea9f893f53032b6fa80f1702d3e36e88b0439bbcfd03ce8185dd1d0955de88118df6a52c22bb10eb2d4cb70942edfddb5b5983dfc3c00ba8816ac4e65436d1141da800b8627c197aa23eafdfd9b30ccf495dc577ab8b816cd3593a3df4a781bfb434e98b191e0554f6155587be0215897d1e50cf2e6421ae1b20d5a7aaac44ba3d848ad815cda7e5f4f55399fee0f2fd233631701283d010a0fa