safras.com.br
Issued by R3
About this certificate
This digital certificate with serial number 04:70:ac:21:0b:3d:0f:54:ad:d3:01:03:73:19:c0:02:e7:f5 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=safras.com.br
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:70:ac:21:0b:3d:0f:54:ad:d3:01:03:73:19:c0:02:e7:f5Serial Number (int): 386789567611201599873161154989318002108405
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 23:91:eb:e5:b2:5f:c8:83:4c:1f:cf:5c:c1:f2:32:73:67:88:f2:64
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 47:e0:8c:c4:23:fa:cc:93:6f:1f:15:50:f6:c2:f3:71:30:c8:98:bf
Fingerprint (sha256): e1:ae:2f:9d:77:3b:20:25:84:60:7f:bd:26:3b:6f:16:68:c4:25:a5:1b:41:ed:97:ae:19:fa:ac:8d:96:dd:8f
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate safras.com.br
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for safras.com.br
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
safras.com.br
www.safras.com.br
www.safras.com.br
Other certificates including the domain name safras.com.br
(limited to 100 certificates)
pages.safras.com.br
conteudo.safras.com.br
www2.safras.com.br
dev.safras.com.br
*.safras.com.br
safras.com.br
conteudo.safras.com.br
safras.com.br
safras.com.br
sni.cloudflaressl.com
safras.com.br
sni.cloudflaressl.com
pages.safras.com.br
*.safras.com.br
pages.safras.com.br
safras.com.br
promo.safras.com.br
conteudo.safras.com.br
sni.cloudflaressl.com
promo.safras.com.br
safras.com.br
promo.safras.com.br
promo.safras.com.br
conteudo.safras.com.br
pages.safras.com.br
safras.com.br
safras.com.br
promo.safras.com.br
promo.safras.com.br
conteudo.safras.com.br
www2.safras.com.br
dev.safras.com.br
*.safras.com.br
safras.com.br
conteudo.safras.com.br
safras.com.br
safras.com.br
sni.cloudflaressl.com
safras.com.br
sni.cloudflaressl.com
pages.safras.com.br
*.safras.com.br
pages.safras.com.br
safras.com.br
promo.safras.com.br
conteudo.safras.com.br
sni.cloudflaressl.com
promo.safras.com.br
safras.com.br
promo.safras.com.br
promo.safras.com.br
conteudo.safras.com.br
pages.safras.com.br
safras.com.br
safras.com.br
promo.safras.com.br
promo.safras.com.br
Certificate
The complete raw certificate details for safras.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgISBHCsIQs9D1St0wEDcxnAAuf1MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA0MDEwODE3MDZaFw0yMzA2MzAwODE3MDVaMBgxFjAUBgNVBAMT DXNhZnJhcy5jb20uYnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk lxqD5v40R9pCM+BnrKBKQfhK57SIr2VValRh0+DUwnUIWA2ZPBxZQ6ZuTR1x2NlG 7hdbbdNEwDSmDvyccmDothYbUmbYZjcV26ppf2lfnzlUS1FeB47Jd3QlByswQy4Z fTUn3glFx7jvCPETc2a6wbZ0oTYKEMWbUnmobTYJkgFc8bHu0t6H4W6p92ORIpZa +Q9EhWlVc/JDi+P1iZT1xJ3tjdcI3rXE1O2qW4AqWiwKVOktS/qj8k2GotlRyhT5 VNeBZBK5zQoM8oLITS3FYOXMzWuUnqE3e7u+FydRtV8pyKFtH+OswHI4GNS+uaoE KH4E0RIdqgfQx9glFVChAgMBAAGjggJcMIICWDAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFCOR6+WyX8iDTB/PXMHyMnNniPJkMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MCsGA1UdEQQkMCKCDXNhZnJhcy5jb20uYnKCEXd3dy5zYWZyYXMuY29tLmJyMEwG A1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEW Gmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB 8wDxAHcAtz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGHPBstMAAA BAMASDBGAiEAxk7F0uZSPSRZ2qC0como9Yqv55YX6C5aGwIdOsOEI20CIQDqNS21 pCz3iqo9+aQ2gtECoPd4sPGlWsIhaQyfaX8t6QB2AOg+0No+9QY1MudXKLyJa8kD 08vREWvs62nhd31tBr1uAAABhzwbLToAAAQDAEcwRQIgMeZw2YLuM1/6aBVZNagM V0yC9Bn+G9fFU+VrxIE9dUsCIQC+vBnpyRMr/Y1VhUnVhyb7N3hBabFRi4gxX2T0 6dknhjANBgkqhkiG9w0BAQsFAAOCAQEAKKvaxDWk5JqRzFmjmWYvTBtlHz0cZCHh /pyq7GCYyD0DSJfktjlh19NZcG+2xpkyt9SlK8W/CCyIoZFd4WcHzliv4gryZu0A Q9U5GPl3bG6JzYcH4GwM0As+M+DJ+vdyaCicOz5fZzd2FlFqI3/fI/+mZ+fjozdO fu/8uddKJOtOb41qIitgEo/JX71l8AJ3MpKd8pDAhZrAVxYf2p3BgTWp1JR2Jy2r b5eTQhFxrjKLEbYn9iVzZqMGotoVx6DaTsfVd2avqJ+Ju1Q9sSH1OlbaJ9VACvZO zlqBxzaXVatpBfS8JOZamozD/N4awK0c5RgQyV3A6isaZR9437UMgA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJcag+b+NEfaQjPgZ6yg SkH4Sue0iK9lVWpUYdPg1MJ1CFgNmTwcWUOmbk0dcdjZRu4XW23TRMA0pg78nHJg 6LYWG1Jm2GY3FduqaX9pX585VEtRXgeOyXd0JQcrMEMuGX01J94JRce47wjxE3Nm usG2dKE2ChDFm1J5qG02CZIBXPGx7tLeh+FuqfdjkSKWWvkPRIVpVXPyQ4vj9YmU 9cSd7Y3XCN61xNTtqluAKlosClTpLUv6o/JNhqLZUcoU+VTXgWQSuc0KDPKCyE0t xWDlzM1rlJ6hN3u7vhcnUbVfKcihbR/jrMByOBjUvrmqBCh+BNESHaoH0MfYJRVQ oQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 386789567611201599873161154989318002108405 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-01 08:17:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-30 08:17:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'safras.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20777593964448162909686407762400286327479417299596403264008342227356811940842285532527910677181748398308370269771245986867201796841664388384511899082622631972132074236298635975294441058085622175631165999216255954328363172554903097514319100319429181577007061409136215993113831669070205496356650189342932296128511442997559100020519892684875210837000526154897484850828632812188391178311280670142502215359860355935052951639413342384390914637705383412274794683298737656472986049252602643499968529658457927704812708678662171849260552630344264976822046669288154858061233750543588765825240581822738041637401979374679008563361 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2391ebe5b25fc8834c1fcf5cc1f232736788f264 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'safras.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.safras.com.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb499000001873c1b2d300000040300483046022100c64ec5d2e6523d2459daa0b47289a8f58aafe79617e82e5a1b021d3ac384236d022100ea352db5a42cf78aaa3df9a43682d102a0f778b0f1a55ac221690c9f697f2de9007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e000001873c1b2d3a0000040300473045022031e670d982ee335ffa68155935a80c574c82f419fe1bd7c553e56bc4813d754b022100bebc19e9c9132bfd8d558549d58726fb37784169b1518b88315f64f4e9d92786 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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