mail.apertum.org

Issued by R3

About this certificate

This digital certificate with serial number 03:69:da:3c:f9:12:80:e8:d2:48:31:f8:2d:8c:73:12:c7:e2 was issued on by Let's Encrypt.

With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=mail.apertum.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 03:69:da:3c:f9:12:80:e8:d2:48:31:f8:2d:8c:73:12:c7:e2
Serial Number (int): 297356594614657896133075478113085096642530
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: d0:8f:e8:d0:74:f7:3a:90:57:6b:d9:32:09:7e:7b:5e:01:ca:b9:f8
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 8d:a2:cc:22:3c:19:2d:cc:b4:8a:41:93:75:eb:ec:71:fc:ed:aa:e9
Fingerprint (sha256): da:c0:86:42:3a:17:b7:69:a0:c5:0b:ad:5b:d7:00:49:b6:77:df:7e:d8:ec:9a:5f:44:81:01:0d:e6:67:6c:e7

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate mail.apertum.org

12

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for mail.apertum.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

aptsflats.net
demoseo.com
mail.apertum.org
myghana.net
myprecinctfirst.com
paranormal-obsession.net
productionspot.com
projectgowild.com
saintlouissubdivisions.com
stefanmolyneux.org
twi.co.in
uncutorcut.com

Other certificates including the domain name apertum.org

(limited to 100 certificates)
apertum.org
apertum.org
mail.apertum.org
apertum.org
mail.apertum.org
www.apertum.org
qdd.co.za
mail.apertum.org
diskjockeys.ca
mail.apertum.org
libertyisland.org
rplayer.co.za
viatravel.co.za
kanban.apertum.org
iwggw.com.jamjesusandme.org
apertum.org
mail.apertum.org
mail.apertum.org
ukr.bible

Certificate

The complete raw certificate details for mail.apertum.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvAReYWc+ewEVjD3gVBZP
zlO2gCgD/Arpbgqp6ZmqeRMyr6lc6b2YoUhH86ZkCgrNreKXOSPLilW1E+vQCDlR
ke9Voo39av8ccL3Qh0JkgIMCScKZcD7Jjw4SniaF5NS8rqdeyRCpCVJi31e/Kf3I
sgKGKC0QxVfVRykUF2baKSS3P1a1H9yIsCditfsyYHZdoSyn/ggesBX3B7Yzg9OW
od9KARwsEDicUCfx1XzHR05yi3gqrZsQ+Er15buFn2Ms1k9nndFKaiwTrIkmQ9nZ
Rzfi0j3Mf9/vUArO5iQdUyK6uLp7Sktu51wEZCjLZAYuQeeut0pxm2gKq77vbetp
SwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 297356594614657896133075478113085096642530
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-17 06:17:23 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-16 06:17:22 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mail.apertum.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23734955606939150682989521138915821856992939643389319640228796352275132476393235700922880265508920111099253441147123768507986803088379100507729155549319847202702685723577071111899063870665018575833945425173161074990776367141399957449534901776738984691526152298441344267415000358979879675186129637952929047913881275906842759251048249888649603642199049752897706812479767770342662469435683164162169722985694375032469417701255961577971092996988276994691621982002559114277703987422015062537811751360431300328845525834228118185525424432260529008741487913124817747050571962808564804624975369029403454360025566003241480317259
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d08fe8d074f73a90576bd932097e7b5e01cab9f8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (223 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aptsflats.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demoseo.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.apertum.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myghana.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myprecinctfirst.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paranormal-obsession.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'productionspot.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'projectgowild.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saintlouissubdivisions.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stefanmolyneux.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'twi.co.in'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uncutorcut.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018eeaead8420000040300473045022100b38465717612e5f4f17c023c0dae9bc00a3aebf55dfa65ec0edf185f6d8faa8502204600bc3d995bbf65ea6b3b7b7b28470cd3fa773a8e397538e61916e3f64a01a500750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018eeaead891000004030046304402203e9ee22d62ec2b3409031f66b1d164574e3cecfdacda5fac2a35f3cc2972b84e022048517c58176f8cea0aa7c59a8b47d5b965f72b114c9052200a078652d55da6d6
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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