mail.apertum.org
Issued by R3
About this certificate
This digital certificate with serial number 03:69:da:3c:f9:12:80:e8:d2:48:31:f8:2d:8c:73:12:c7:e2 was issued on by Let's Encrypt.
With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=mail.apertum.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:69:da:3c:f9:12:80:e8:d2:48:31:f8:2d:8c:73:12:c7:e2Serial Number (int): 297356594614657896133075478113085096642530
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d0:8f:e8:d0:74:f7:3a:90:57:6b:d9:32:09:7e:7b:5e:01:ca:b9:f8
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 8d:a2:cc:22:3c:19:2d:cc:b4:8a:41:93:75:eb:ec:71:fc:ed:aa:e9
Fingerprint (sha256): da:c0:86:42:3a:17:b7:69:a0:c5:0b:ad:5b:d7:00:49:b6:77:df:7e:d8:ec:9a:5f:44:81:01:0d:e6:67:6c:e7
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate mail.apertum.org
12
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mail.apertum.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aptsflats.net
demoseo.com
mail.apertum.org
myghana.net
myprecinctfirst.com
paranormal-obsession.net
productionspot.com
projectgowild.com
saintlouissubdivisions.com
stefanmolyneux.org
twi.co.in
uncutorcut.com
demoseo.com
mail.apertum.org
myghana.net
myprecinctfirst.com
paranormal-obsession.net
productionspot.com
projectgowild.com
saintlouissubdivisions.com
stefanmolyneux.org
twi.co.in
uncutorcut.com
Other certificates including the domain name apertum.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for mail.apertum.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFuTCCBKGgAwIBAgISA2naPPkSgOjSSDH4LYxzEsfiMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTcwNjE3MjNaFw0yNDA3MTYwNjE3MjJaMBsxGTAXBgNVBAMT EG1haWwuYXBlcnR1bS5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8BF5hZz57ARWMPeBUFk/OU7aAKAP8CuluCqnpmap5EzKvqVzpvZihSEfzpmQK Cs2t4pc5I8uKVbUT69AIOVGR71Wijf1q/xxwvdCHQmSAgwJJwplwPsmPDhKeJoXk 1Lyup17JEKkJUmLfV78p/ciyAoYoLRDFV9VHKRQXZtopJLc/VrUf3IiwJ2K1+zJg dl2hLKf+CB6wFfcHtjOD05ah30oBHCwQOJxQJ/HVfMdHTnKLeCqtmxD4SvXlu4Wf YyzWT2ed0UpqLBOsiSZD2dlHN+LSPcx/3+9QCs7mJB1TIrq4untKS27nXARkKMtk Bi5B5663SnGbaAqrvu9t62lLAgMBAAGjggLeMIIC2jAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFNCP6NB09zqQV2vZMgl+e14Byrn4MB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMIHnBgNVHREEgd8wgdyCDWFwdHNmbGF0cy5uZXSCC2RlbW9zZW8uY29tghBt YWlsLmFwZXJ0dW0ub3JnggtteWdoYW5hLm5ldIITbXlwcmVjaW5jdGZpcnN0LmNv bYIYcGFyYW5vcm1hbC1vYnNlc3Npb24ubmV0ghJwcm9kdWN0aW9uc3BvdC5jb22C EXByb2plY3Rnb3dpbGQuY29tghpzYWludGxvdWlzc3ViZGl2aXNpb25zLmNvbYIS c3RlZmFubW9seW5ldXgub3Jnggl0d2kuY28uaW6CDnVuY3V0b3JjdXQuY29tMBMG A1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAO1N3 dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGO6urYQgAABAMARzBFAiEA s4RlcXYS5fTxfAI8Da6bwAo66/Vd+mXsDt8YX22PqoUCIEYAvD2ZW79l6ms7e3so RwzT+nc6jjl1OOYZFuP2SgGlAHUAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/m Z0xaOnQAAAGO6urYkQAABAMARjBEAiA+nuItYuwrNAkDH2ax0WRXTjzs/azaX6wq NfPMKXK4TgIgSFF8WBdvjOoKp8Wai0fVuWX3KxFMkFIgCgeGUtVdptYwDQYJKoZI hvcNAQELBQADggEBADVcgOZsizHhO/4nLjz8IfFIhEVstUoBfS1KV/R8TNHa3j4N R3IxBKZu8bhCROuL4Ea4ORcqpO6Tpou4GkDJTwqPFX4bf1br4rvdnlMIffY9ceXL SgU2uhMTLrvB7wtQUsCK6kOv6m6C38XDjSbZVnGg/SnO9F/b+UqJ2GMoXfIDfuhO J/QLWNMbhW1jK6b4VsH5XcY0ohexlBuvETwsZrcaVZxivV7T/pZP8TGnz03vHTiM q5MNWLRXaXQAO/JX7i5IfqIKmG02XMUSax2oE604cB/2NQPDlTVjveJWMm7tKz8A Ka6lU6BgEPExkThz8GNdn6QfItx5/ez2c5k0OuE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvAReYWc+ewEVjD3gVBZP zlO2gCgD/Arpbgqp6ZmqeRMyr6lc6b2YoUhH86ZkCgrNreKXOSPLilW1E+vQCDlR ke9Voo39av8ccL3Qh0JkgIMCScKZcD7Jjw4SniaF5NS8rqdeyRCpCVJi31e/Kf3I sgKGKC0QxVfVRykUF2baKSS3P1a1H9yIsCditfsyYHZdoSyn/ggesBX3B7Yzg9OW od9KARwsEDicUCfx1XzHR05yi3gqrZsQ+Er15buFn2Ms1k9nndFKaiwTrIkmQ9nZ Rzfi0j3Mf9/vUArO5iQdUyK6uLp7Sktu51wEZCjLZAYuQeeut0pxm2gKq77vbetp SwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 297356594614657896133075478113085096642530 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-17 06:17:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-16 06:17:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mail.apertum.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23734955606939150682989521138915821856992939643389319640228796352275132476393235700922880265508920111099253441147123768507986803088379100507729155549319847202702685723577071111899063870665018575833945425173161074990776367141399957449534901776738984691526152298441344267415000358979879675186129637952929047913881275906842759251048249888649603642199049752897706812479767770342662469435683164162169722985694375032469417701255961577971092996988276994691621982002559114277703987422015062537811751360431300328845525834228118185525424432260529008741487913124817747050571962808564804624975369029403454360025566003241480317259 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d08fe8d074f73a90576bd932097e7b5e01cab9f8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (223 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aptsflats.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demoseo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.apertum.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myghana.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myprecinctfirst.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paranormal-obsession.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'productionspot.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'projectgowild.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saintlouissubdivisions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stefanmolyneux.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'twi.co.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uncutorcut.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018eeaead8420000040300473045022100b38465717612e5f4f17c023c0dae9bc00a3aebf55dfa65ec0edf185f6d8faa8502204600bc3d995bbf65ea6b3b7b7b28470cd3fa773a8e397538e61916e3f64a01a500750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018eeaead891000004030046304402203e9ee22d62ec2b3409031f66b1d164574e3cecfdacda5fac2a35f3cc2972b84e022048517c58176f8cea0aa7c59a8b47d5b965f72b114c9052200a078652d55da6d6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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