visualforma.pt

Issued by R3

About this certificate

This digital certificate with serial number 03:68:1e:ab:1b:e4:9a:6a:b4:6c:a4:b7:a4:b5:39:c5:a5:74 was issued on by Let's Encrypt.

With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=visualforma.pt

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:68:1e:ab:1b:e4:9a:6a:b4:6c:a4:b7:a4:b5:39:c5:a5:74
Serial Number (int): 296766989243431567113301071729300521461108
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: b5:b2:0e:83:b7:17:bd:38:35:f0:32:ac:fb:a3:0d:64:bf:50:7b:9b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): ad:6e:39:86:fc:b8:79:f2:83:53:0c:b3:d0:f4:6c:0b:ca:39:29:51
Fingerprint (sha256): fa:72:f7:6c:3b:dc:1a:4e:f3:f7:3e:65:8f:63:9f:a4:c3:61:b1:97:37:f1:df:14:8a:7d:68:eb:cb:45:08:35

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate visualforma.pt

8

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for visualforma.pt

Public Key Algorithm

RSA

Key Size

3072

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

visualforma.com
visualforma.net
visualforma.org
visualforma.pt
www.visualforma.com
www.visualforma.net
www.visualforma.org
www.visualforma.pt

Other certificates including the domain name visualforma.pt

(limited to 100 certificates)
webmail.visualforma.pt
visualforma.pt
cms.visualforma.pt
cms.visualforma.pt
cloud.visualforma.pt
cms.visualforma.pt
cms.visualforma.pt
visualforma.pt
webmail.visualforma.pt
cloud.visualforma.pt
cmsmarketing.visualforma.pt
visualforma.pt
cmsmarketing.visualforma.pt
sts1.visualforma.pt
*.visualforma.pt
cmsmarketing.visualforma.pt
visualforma.pt
cmsmarketing.visualforma.pt
visualforma.pt
visualforma.pt
*.visualforma.pt
visualforma.pt
webmail.visualforma.pt
visualforma.pt
*.visualforma.pt

Certificate

The complete raw certificate details for visualforma.pt in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 296766989243431567113301071729300521461108
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-06 08:44:36 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-05 08:44:35 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'visualforma.pt'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 3983425739423029846255756621380239639638595372727344138816643880829161531459019093734608941283606979639266890402640562561989493635826335110510071363142434709788669034282004158699151416831221324056278603367770587798533414390962699015940934668157738401302285838051039073165096225939684722510582438790979940794387114855812566290620743480216750028540730219773373385651636348343524012193569151837707195838516793722362699731747000548980329507193259012030474376246782316104947081804944871342933725626592680436941428090663441781788397224630493559404411574382936877430167316326361727712396759708684208025944078889461039902351644817773217300620550303015164735918787452780492053335151499217639742665808570639673264322903036163223838925531348063681270468293144257951947948156726501363078778288164628811157459380348535478282707471270124105271741212018713397271889875965958899160101329290535465166612358448079586066627749875931046725276967
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							b5b20e83b717bd3835f032acfba30d64bf507b9b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (153 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'visualforma.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'visualforma.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'visualforma.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'visualforma.pt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.visualforma.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.visualforma.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.visualforma.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.visualforma.pt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018cde28fa08000004030046304402203d66e617f24bf884f5948a6d8a97cb4ff241fb343b3dcd8100dc31501ec75a12022074c147e57ee78cbcd0abd5acc66d567c12ddecd2381eaa40bdc0e08889f68c10007700a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018cde28fa130000040300483046022100ce381335d0101b7c45a5e3b4b48ed186c89a3a3da6943cfa8c34d4a7433cd426022100e6529bfa3a9f5982eedb3c0908a0ea983b6207f689d383807a54483501685dd9
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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