icepsc.com.br
Issued by R3
About this certificate
This digital certificate with serial number 03:88:ba:13:8e:f4:4e:7c:f4:b8:98:df:40:96:13:15:da:43 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=icepsc.com.br
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:88:ba:13:8e:f4:4e:7c:f4:b8:98:df:40:96:13:15:da:43Serial Number (int): 307862597656842803750223729337656336046659
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 67:32:20:91:56:87:f5:24:c5:66:fd:bd:f5:18:70:84:14:5a:46:b1
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d8:83:72:77:87:b8:17:f7:fe:ba:22:77:08:a2:d2:36:be:fe:8e:ec
Fingerprint (sha256): f2:50:3e:8d:b5:30:34:82:7e:1f:ae:ef:92:92:1c:39:9a:01:3a:3d:a0:49:12:bf:e2:56:2b:e7:17:77:52:41
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate icepsc.com.br
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for icepsc.com.br
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.icepsc.com.br
icepsc.com.br
icepsc.com.br
Other certificates including the domain name icepsc.com.br
(limited to 100 certificates)
icepsc.com.br
config.adapta.online
ead.icepsc.com.br
icepsc.com.br
icepsc.com.br
config.adapta.online
ead.icepsc.com.br
config.adapta.online
icepsc.com.br
config.adapta.online
ead.icepsc.com.br
ead.icepsc.com.br
icepsc.com.br
icepsc.com.br
icepsc.com.br
config.adapta.online
icepsc.com.br
docacademy.com.br
config.adapta.online
docacademy.com.br
docacademy.com.br
config.adapta.online
icepsc.com.br
icepsc.com.br
icepsc.com.br
config.adapta.online
config.adapta.online
config.adapta.online
config.adapta.online
config.adapta.online
icepsc.com.br
icepsc.com.br
config.adapta.online
config.adapta.online
icepsc.com.br
icepsc.com.br
ead.icepsc.com.br
icepsc.com.br
config.adapta.online
config.adapta.online
icepsc.com.br
docacademy.com.br
icepsc.com.br
icepsc.com.br
config.adapta.online
ead.icepsc.com.br
icepsc.com.br
icepsc.com.br
config.adapta.online
ead.icepsc.com.br
config.adapta.online
icepsc.com.br
config.adapta.online
ead.icepsc.com.br
ead.icepsc.com.br
icepsc.com.br
icepsc.com.br
icepsc.com.br
config.adapta.online
icepsc.com.br
docacademy.com.br
config.adapta.online
docacademy.com.br
docacademy.com.br
config.adapta.online
icepsc.com.br
icepsc.com.br
icepsc.com.br
config.adapta.online
config.adapta.online
config.adapta.online
config.adapta.online
config.adapta.online
icepsc.com.br
icepsc.com.br
config.adapta.online
config.adapta.online
icepsc.com.br
icepsc.com.br
ead.icepsc.com.br
icepsc.com.br
config.adapta.online
config.adapta.online
icepsc.com.br
docacademy.com.br
icepsc.com.br
icepsc.com.br
Certificate
The complete raw certificate details for icepsc.com.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgISA4i6E470Tnz0uJjfQJYTFdpDMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MjIyMTMzNTlaFw0yNDA4MjAyMTMzNThaMBgxFjAUBgNVBAMT DWljZXBzYy5jb20uYnIwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDT 4tKBeNcztM5DUSY9Y+XDLNKUzGbw7YIEzBs1NF6fDQNkbYoffnCzSP9vesX+PU0S JydRm5/DX+dklNaSQXz7JREaFt5qcd6m3YHA6Ps12yLE/0CYcWsR2Vvc61iqKC3g FVwrjPgQSfwxYiLNUfi277xdO2uW4XQ0G+duaVVOxyWZB0J9l4YjtNSQITjQum7r ics3DKU6VZJhVJ/2HKaaZgQUkCnoMyFhQWDq2Vjr6JxqA2MeYLbKtLnwsPJWR13q MNBhCUGw9P0DMQWAYQi7mGe4A6uqUeV+hpDRX6IxzoZ1vg5cdWhCMNJh2SHmVnZI OGS6Ema5f+yCuHGM36jgBR2lQnSPqDdSvoiVpy0/UbqOokYMHO+Aj4/wgZp15Eeb uukoK6BX7D52cFMJl6L4YhFsa4a2VkrQUp7JvDVIt+mLnJSia6cleBayVEmGFVeh 2NMLcOufjKWr+d2VC+vu/ZXrDb38Uxlcejg9Xe1pvzUisQv+vp1XY+2qtV0/3jlJ ky6scgh2GQqvKUA1GLm70fk1crMZFb/AtV+VfzdBvALqtx5J19mpdFpgk2fdleWH z5JhBXrWovJCponT1N1+jrDkuA5+sOXlolLJ+YtHw+nVgzk9aQjDYIzqmNyBDolG IuUrgdkgnxKAKdCYr8jBhDDD11BzZXHbhmaue26WPQIDAQABo4ICHzCCAhswDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNV HRMBAf8EAjAAMB0GA1UdDgQWBBRnMiCRVof1JMVm/b31GHCEFFpGsTAfBgNVHSME GDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYB BQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDov L3IzLmkubGVuY3Iub3JnLzApBgNVHREEIjAggg8qLmljZXBzYy5jb20uYnKCDWlj ZXBzYy5jb20uYnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEDBgorBgEEAdZ5AgQC BIH0BIHxAO8AdgAZmBBxCfDWUi4wgNKeP2S7g24ozPkPUo7u385KPxa0ygAAAY+i cJu9AAAEAwBHMEUCIG8O2m3eMr13jK/6zcV3Mr1MHB+KRlQpS5sxEi4oe1dyAiEA 3J6aFHH+QZuI9VubFwGX8fa6ESl6qdPukyuTtHCNtCQAdQB2/4g/Crb7lVHCYcz1 h7o0tKTNuyncaEIKn+ZnTFo6dAAAAY+icJuLAAAEAwBGMEQCIGeZlpjnEifxtGyK SRXFkfElxjTUMtN93rX1jjdA7yNbAiAPvixmUIxhZE4olM+abJM/w8EhQM3BYftQ FoazhooM9TANBgkqhkiG9w0BAQsFAAOCAQEAl20Md7UbGnqj+sNCRustzeYmT+mf SaFHVa6uRsbMxQGCJwkIBaOyHFrcQ4pmxiRqEM1z72B0uAKkhOuOa/4hbupXuST4 oKougP+t0SNaBaQaEuxEaK0Ck82M3Fqj8BX/T0a/l+9mRIXS8a1xM7IsXjH9yRau +SmCUgzNFMORSqXfx8uapV2E6Xs99uPzjy9boRc+4K5D1afbhncuwlOlUmpDryr0 n1IaumLLBpRwVMmq5ODZdlBjI6XfYfXm+kxnvwJok4BwSQCaprB0rv6xfXsDT2r7 K0D9UppchZXs7gfF2tf6KFDbx+q2UiJoXDLT5GtFO82zCv4EysEmrpaTDg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0+LSgXjXM7TOQ1EmPWPl wyzSlMxm8O2CBMwbNTRenw0DZG2KH35ws0j/b3rF/j1NEicnUZufw1/nZJTWkkF8 +yURGhbeanHept2BwOj7NdsixP9AmHFrEdlb3OtYqigt4BVcK4z4EEn8MWIizVH4 tu+8XTtrluF0NBvnbmlVTsclmQdCfZeGI7TUkCE40Lpu64nLNwylOlWSYVSf9hym mmYEFJAp6DMhYUFg6tlY6+icagNjHmC2yrS58LDyVkdd6jDQYQlBsPT9AzEFgGEI u5hnuAOrqlHlfoaQ0V+iMc6Gdb4OXHVoQjDSYdkh5lZ2SDhkuhJmuX/sgrhxjN+o 4AUdpUJ0j6g3Ur6IlactP1G6jqJGDBzvgI+P8IGadeRHm7rpKCugV+w+dnBTCZei +GIRbGuGtlZK0FKeybw1SLfpi5yUomunJXgWslRJhhVXodjTC3Drn4ylq/ndlQvr 7v2V6w29/FMZXHo4PV3tab81IrEL/r6dV2PtqrVdP945SZMurHIIdhkKrylANRi5 u9H5NXKzGRW/wLVflX83QbwC6rceSdfZqXRaYJNn3ZXlh8+SYQV61qLyQqaJ09Td fo6w5LgOfrDl5aJSyfmLR8Pp1YM5PWkIw2CM6pjcgQ6JRiLlK4HZIJ8SgCnQmK/I wYQww9dQc2Vx24Zmrntulj0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 307862597656842803750223729337656336046659 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-22 21:33:59 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-20 21:33:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'icepsc.com.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 864419563204147755228482204620337288830666453695987809805628382555923065983924881483964084777193967849666494479607415791454065461938708276856373190555018350979113836072479107722847573476392856513649990431725709486973133581387975565733627995200285209727291790605006452172903870695671067633723218246465220921952895474207125359014377175822915355848926876863616865162933490735942637397658989212113369268327248041367843069302836610697037151547983085799006006196313552472797077243930515222645763762387492376107359208263080367750507944319380485759750392110400071737963760164409437748892536292356734612611346231821051298085173957204582219999549133169623479664439138589952049461704000528466420454397162285319035035568099076405397716437671993554435728917073815342591176980373670886064776109974935690245524414754126026464666416374269884876561208024345184532026561329185739044525326045926499674982629069770865291368257412456200925020181257125740640815225228781100096673561280587730948858506215208888804927713801637823241022124824484080372678261394347141911751430978845402281555907162392356268538519957730400438992526972866301247946201910542659267809943125538695121288506344761032794951547322379417789060322390301345633716235715259520187940902461 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 673220915687f524c566fdbdf5187084145a46b1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.icepsc.com.br' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'icepsc.com.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018fa2709bbd000004030047304502206f0eda6dde32bd778caffacdc57732bd4c1c1f8a4654294b9b31122e287b5772022100dc9e9a1471fe419b88f55b9b170197f1f6ba11297aa9d3ee932b93b4708db42400750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018fa2709b8b0000040300463044022067999698e71227f1b46c8a4915c591f125c634d432d37ddeb5f58e3740ef235b02200fbe2c66508c61644e2894cf9a6c933fc3c12140cdc161fb501686b3868a0cf5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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