friendzi.com
Issued by R3
About this certificate
This digital certificate with serial number 03:fa:0e:b1:c3:bc:2f:cf:a9:f2:50:4c:3a:4a:1f:c5:06:d3 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=friendzi.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:fa:0e:b1:c3:bc:2f:cf:a9:f2:50:4c:3a:4a:1f:c5:06:d3Serial Number (int): 346426981723979869402839778880522780214995
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ce:09:35:2b:79:fc:b5:b7:16:7b:6e:72:35:56:57:ae:64:ce:a0:fc
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 5d:76:e3:04:5b:22:99:e1:2a:57:19:90:38:e2:19:ac:68:a6:2d:7f
Fingerprint (sha256): e9:55:cb:aa:40:95:a0:e6:30:f3:ea:8e:21:eb:a4:25:2b:a2:78:d3:2d:1e:eb:be:45:76:78:cd:f0:99:ad:c4
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate friendzi.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for friendzi.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
friendzi.com
www.friendzi.com
www.friendzi.com
Other certificates including the domain name friendzi.com
(limited to 100 certificates)
friendzi.com
crispyseafood.com
friendzi.com
hellooffice.org
friendzi.com
sinefa.org
pwcvalue.com
friendzi.com
psalm87.com
steelbeach.org
forwardnetworks.org
www.medpard.com
friendzi.com
www.cryptpound.com
casinopost.co.uk
rioguadiana.com
sidesleepcomfort.org
anomali.org
elite2021.com
healthyhomemaryland.com
sledvalue.com
devinsand.com
bankcda.org
ila-nysa.com
freedomwithed.com
entropy.live
kiwanisclubofwestlakeohio.org
rimmac.com
friendzi.com
rootcd.com
friendzi.com
asklaurie.com
casinopost.co.uk
dhivya.org
www.smartyguide.com
friendzi.com
crispyseafood.com
friendzi.com
hellooffice.org
friendzi.com
sinefa.org
pwcvalue.com
friendzi.com
psalm87.com
steelbeach.org
forwardnetworks.org
www.medpard.com
friendzi.com
www.cryptpound.com
casinopost.co.uk
rioguadiana.com
sidesleepcomfort.org
anomali.org
elite2021.com
healthyhomemaryland.com
sledvalue.com
devinsand.com
bankcda.org
ila-nysa.com
freedomwithed.com
entropy.live
kiwanisclubofwestlakeohio.org
rimmac.com
friendzi.com
rootcd.com
friendzi.com
asklaurie.com
casinopost.co.uk
dhivya.org
www.smartyguide.com
friendzi.com
Certificate
The complete raw certificate details for friendzi.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgISA/oOscO8L8+p8lBMOkofxQbTMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMjcyMzEyMDZaFw0yNDA1MjcyMzEyMDVaMBcxFTATBgNVBAMT DGZyaWVuZHppLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAKfS UJuemOLnDJvRoEZ3N9sh3U91XhcI+QuaV5hxBX9ggme07Tgk+aKDEbN8s7UrG+lD ewejBRWXiTZQxNkV6LFwruERMnJXGsVliKihaSlHiHcTf1OEc87ovNraXs3uQbFe TdEm3oKU6c6GRV1Z+RBESv2T76lchjeAty23DFCJU/2K18WVK+luZyMqz0SmPNPR 9htyfVWM4KlIcs+lymHoDMeldej0RRkPzUScWzwZolFgPQ0a58iSxfrffjbjYiqG fWBV+ywvzVJ9mKcbcdLizZs2aii6cL9xbNm1W99SQx2C3TQjQ4GL1zxIJ+T+1C6C sey7tQ7jxLfm5UtxPkxoPN5cokFVubLTtxaKJT3dMFV8+5taaXnAycyDfh0z9lMy HDOvD/1ap66Fs6g1kAOPygOW2KfuO/B8Rb+DlhBwAXNqIb3mRetmrcPiBMhIGFWJ 6BMb6d2tS9BwpYAdfauAK0Wew5rwphceN6A6hIv4v1keFOXG9GoszA+BLaEam94H QIKNwhoZDMRoT2bJZC52DJ082fkpbm9Ud6JUdK7qXPbUmEKx22UaIc6ibipPKwtH /hs7XyxF36hLb/BUM6B8rx9PjnI7iSeFvs6MQurC0VQD/umJFNOJJjE+nmmG/GcP jxvLaoZS7SaiddvOYpIC4b5l3Rb+pd/zGon0Y2AJAgMBAAGjggIiMIICHjAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFM4JNSt5/LW3FntucjVWV65kzqD8MB8GA1UdIwQY MBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEF BQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8v cjMuaS5sZW5jci5vcmcvMCkGA1UdEQQiMCCCDGZyaWVuZHppLmNvbYIQd3d3LmZy aWVuZHppLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQYGCisGAQQB1nkCBAIE gfcEgfQA8gB3AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABje0N 4p0AAAQDAEgwRgIhANEd1RxsV2gtBmXOMF207Dgbqu2EtLnS+w1cJJAUjEnnAiEA hB3NilAPLpmztEHYDTUWsCrqLEqXooTH0nNByDhpjw4AdwBIsONr2qZHNA/lagL6 nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY3tDeQ8AAAEAwBIMEYCIQCVvKBgI7Fva4jI 9uOJT9naKU3IOXVMCd1f6wHDE1yOlQIhAKAybqgGWk8XDE6yUEjqdZnKPDNITNHi hN6fWzW4Tr+mMA0GCSqGSIb3DQEBCwUAA4IBAQCd9eTFO8vhFdrGykhCl9hsaJlP aRDIqrHLo2+effE888x1Y47miscPrhGRGhH1W41FljzbwZzfGGdfP+1g6TXjBEZ6 cwcnetMUxviVzWcd2JG62D7EmdeLGa+DTtJi2MM1M9EHi5m91hkkjur+Yyfdqvfc U6V4kzniowaT95LLh3zkZAx1Awikx7oL5GJ/zsCo+/u0fOCswFjduCKYZxrOWP/0 3Sfaj+OxRMpbvCGeQTi+EXjMc7MVlriPWV2OGBL3LSrakEG9m/kXFK+0NZFjgkKs ijUrWiDLrQO6X7UD0Xs5ycaYB81wGeYTsmG6HOlQhjYfTsn+nBWPs/CRbWS/ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAp9JQm56Y4ucMm9GgRnc3 2yHdT3VeFwj5C5pXmHEFf2CCZ7TtOCT5ooMRs3yztSsb6UN7B6MFFZeJNlDE2RXo sXCu4REyclcaxWWIqKFpKUeIdxN/U4Rzzui82tpeze5BsV5N0SbegpTpzoZFXVn5 EERK/ZPvqVyGN4C3LbcMUIlT/YrXxZUr6W5nIyrPRKY809H2G3J9VYzgqUhyz6XK YegMx6V16PRFGQ/NRJxbPBmiUWA9DRrnyJLF+t9+NuNiKoZ9YFX7LC/NUn2Ypxtx 0uLNmzZqKLpwv3Fs2bVb31JDHYLdNCNDgYvXPEgn5P7ULoKx7Lu1DuPEt+blS3E+ TGg83lyiQVW5stO3FoolPd0wVXz7m1ppecDJzIN+HTP2UzIcM68P/VqnroWzqDWQ A4/KA5bYp+478HxFv4OWEHABc2ohveZF62atw+IEyEgYVYnoExvp3a1L0HClgB19 q4ArRZ7DmvCmFx43oDqEi/i/WR4U5cb0aizMD4EtoRqb3gdAgo3CGhkMxGhPZslk LnYMnTzZ+Slub1R3olR0rupc9tSYQrHbZRohzqJuKk8rC0f+GztfLEXfqEtv8FQz oHyvH0+OcjuJJ4W+zoxC6sLRVAP+6YkU04kmMT6eaYb8Zw+PG8tqhlLtJqJ1285i kgLhvmXdFv6l3/MaifRjYAkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 346426981723979869402839778880522780214995 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-27 23:12:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-27 23:12:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'friendzi.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 684652160259506809988639233752240673469463840784742382506655068230530163206535114982924665830149750896502411527200528992259292085457409522492833781656344012384615924722864489196708104501021484037823338915145299087144191316821238710112245626186785662069790657392080972179227049223404810346068341213754304716966861372600543216607774270372414897734038951012887825243914453731141926211438396069719269972455418927033994519580831059841113797176823954063227032959274675163375000177476405278202977076404616493091170863201337354606155653866113461816489397804071753911575505230826477758344597760482945279689707919820730682122690878376443562705937307001530031000157109493472862643650524625168941511269791591046161933182846493649573694327605066421589871537502314089185457331177792772929244532676797263849534884418967061666686861675117696390548722156951917998857122669077473933693832565150678941496417263432335095824974341757358682004071070215086494361149748989471202830192965226321923289677317131166262996388643585389835156450487878535731992822193218624607830575083340708157478817849345075164683270601260859254896548703081758379220120423736034778612278035143160335347793276522876268685557081430148077170410998195832369957930545594534337915871241 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ce09352b79fcb5b7167b6e72355657ae64cea0fc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'friendzi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.friendzi.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f200770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ded0de29d0000040300483046022100d11dd51c6c57682d0665ce305db4ec381baaed84b4b9d2fb0d5c2490148c49e7022100841dcd8a500f2e99b3b441d80d3516b02aea2c4a97a284c7d27341c838698f0e00770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ded0de43c000004030048304602210095bca06023b16f6b88c8f6e3894fd9da294dc839754c09dd5feb01c3135c8e95022100a0326ea8065a4f170c4eb25048ea7599ca3c33484cd1e284de9f5b35b84ebfa6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 009df5e4c53bcbe115dac6ca484297d86c68994f6910c8aab1cba36f9e7df13cf3cc75638ee68ac70fae11911a11f55b8d45963cdbc19cdf18675f3fed60e935e304467a7307277ad314c6f895cd671dd891bad83ec499d78b19af834ed262d8c33533d1078b99bdd619248eeafe6327ddaaf7dc53a5789339e2a30693f792cb877ce4640c750308a4c7ba0be4627fcec0a8fbfbb47ce0acc058ddb82298671ace58fff4dd27da8fe3b144ca5bbc219e4138be1178cc73b31596b88f595d8e1812f72d2ada9041bd9bf91714afb43591638242ac8a352b5a20cbad03ba5fb503d17b39c9c69807cd7019e613b261ba1ce95086361f4ec9fe9c158fb3f0916d64bf