camagroup.com
Issued by R3
About this certificate
This digital certificate with serial number 04:ce:3d:46:02:60:b2:b6:62:a2:06:fd:c9:62:33:14:ae:cf was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=camagroup.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:ce:3d:46:02:60:b2:b6:62:a2:06:fd:c9:62:33:14:ae:cfSerial Number (int): 418628757729503318996832774689435690512079
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e0:c9:d4:e8:ff:8a:d6:c8:bd:bb:5b:14:66:eb:e2:71:32:96:ad:14
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): bd:02:03:05:c8:bd:45:bc:60:53:0e:3b:b9:c5:38:9c:4e:70:6e:38
Fingerprint (sha256): fa:d2:9c:19:e6:b0:2f:9d:82:f5:7b:ab:67:9d:1d:a4:2a:5e:64:3d:6e:3d:86:0b:a3:f4:02:a3:0b:e5:e3:13
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate camagroup.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for camagroup.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
camagroup.com
www.camagroup.com
www.camagroup.com
Other certificates including the domain name camagroup.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for camagroup.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgISBM49RgJgsrZiogb9yWIzFK7PMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MjMyMTUxMTJaFw0yMzEyMjIyMTUxMTFaMBgxFjAUBgNVBAMT DWNhbWFncm91cC5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCZ q8IABASvhKFMweRXgT32J8GesYKjJ5E9yKRzAK2Gsp7W2/7zvkOjxJkQDF+Yt1AC 5qoRitEmi4iIeZi9KYT5vAdUE6eJCp0oAHkZiekSKB/jgLVKUYToDt17qo5CFATB rATK7Qkyin/E5yMxBwBV8+jFLCNgdZSXygKVU38gygmWHNzLQXUfb8jb2xBfj/1P szJN4PPdtCRT/nEm+v9AhgCjTAAGZ6vmA0qPeEDs4gtdiiHxBpL4C6kMZo4TEcQR CUD9F16KMmZn7wRBHO3nb1tuLXS9adYky1Ti8TdpB1jpmv5acDkT5W/lwgu/95ps W2dDtb3akApxShSEmyZmZXOuldxRcpPY9uWE3bLUNYgjDH/8/feciDXHLfsAwr2l 0EI9HLLlt7M2WWiZOOauLfqM2NKU7bxPwsGJlLo5oXdUR7DskNsWPyYXHjxUG6db 2We6gaFQlgh98xuns5F03E3jqjsS5Kj7JcmlwuLs6ra+1dnThlg6OEZLtuR6O7ww XZADDsjMtoyd6od1oZMgqwHegsE2bXCii80Z4N2QldFtseLXufoJW85hAEJ6GFrK mjDu9MGbWp2+a7OcI126pox03DBOejSF4vsACv+UUTjo7BKZQLy9Gn/suKAVdJB2 AqcINS2S0EgiseuAn/Xc9a9fSXOwN2Ol6grlGmxhrQIDAQABo4ICIzCCAh8wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNV HRMBAf8EAjAAMB0GA1UdDgQWBBTgydTo/4rWyL27WxRm6+JxMpatFDAfBgNVHSME GDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYB BQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDov L3IzLmkubGVuY3Iub3JnLzArBgNVHREEJDAigg1jYW1hZ3JvdXAuY29tghF3d3cu Y2FtYWdyb3VwLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkC BAIEgfYEgfMA8QB2AHoyjFTYty22IOo44FIe6YQWcDIThU070ivBOlejUutSAAAB isQ9Z7YAAAQDAEcwRQIhANntHLQ3rIc2wG1Y/1hBlYID/euiKMN8AsnrU/DsvUzl AiALYnwBcTzdWkvb1kYFelMDNpUBj3FzLoQkZMy+WPqNHgB3AK33vvp8/xDIi509 nB4+GGq0Zyldz7EMJMqFhjTr3IKKAAABisQ9aBIAAAQDAEgwRgIhAPTr7SkfWkwA EWbPCXu6UV8O7Ztt91XtdOK0GB3Q9Gm0AiEAshfcNbM1/bmB46Ny5kMay83ZcoEn 5TA+P5RTadhCNSswDQYJKoZIhvcNAQELBQADggEBABBOQ+umVsiVXTXYAfoR4rxN f1nKL9HUOHeDy6zq1DZLfKGkkgYYucU2N1XxIcg+quSd/6OdiXvi5COunx+VXXZ+ nSsv6hInt7T5shfbX5NO42H43O9EZRMq+vz1AXFyaQpjo0s6SsPk2cUdZAQEMXjP z1va4mvhvd75BOfuKeHQHf/0vMlFh7P9H0+Q9O/7qyuumJkJ4pMceqWh7cvuWyjY AZj04dKB5QPWQOgFGPxAGs1ZGyl5NRdKoFhD+Xc2emaFtK+ncIp31s/bcalf9J59 aGS/jMeRemCgWcvvrKrhj3MSuviOelAzq+RCdaZrwa0JkitsDH5wZnxeXDxoiWw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAmavCAAQEr4ShTMHkV4E9 9ifBnrGCoyeRPcikcwCthrKe1tv+875Do8SZEAxfmLdQAuaqEYrRJouIiHmYvSmE +bwHVBOniQqdKAB5GYnpEigf44C1SlGE6A7de6qOQhQEwawEyu0JMop/xOcjMQcA VfPoxSwjYHWUl8oClVN/IMoJlhzcy0F1H2/I29sQX4/9T7MyTeDz3bQkU/5xJvr/ QIYAo0wABmer5gNKj3hA7OILXYoh8QaS+AupDGaOExHEEQlA/RdeijJmZ+8EQRzt 529bbi10vWnWJMtU4vE3aQdY6Zr+WnA5E+Vv5cILv/eabFtnQ7W92pAKcUoUhJsm ZmVzrpXcUXKT2PblhN2y1DWIIwx//P33nIg1xy37AMK9pdBCPRyy5bezNllomTjm ri36jNjSlO28T8LBiZS6OaF3VEew7JDbFj8mFx48VBunW9lnuoGhUJYIffMbp7OR dNxN46o7EuSo+yXJpcLi7Oq2vtXZ04ZYOjhGS7bkeju8MF2QAw7IzLaMneqHdaGT IKsB3oLBNm1woovNGeDdkJXRbbHi17n6CVvOYQBCehhaypow7vTBm1qdvmuznCNd uqaMdNwwTno0heL7AAr/lFE46OwSmUC8vRp/7LigFXSQdgKnCDUtktBIIrHrgJ/1 3PWvX0lzsDdjpeoK5RpsYa0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 418628757729503318996832774689435690512079 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-23 21:51:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-22 21:51:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'camagroup.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 626922693742543692934392464210107197436660093284676543711606774723698964266426565469022856664676708960861331897791021546520636468334207199916244191646496209089063055281398917726127158076893567080459366628228854581068670650434676570641988044098852121885355305362888869627121744078243400027109078636612905568424306421322473833018185252643935925886364811149935031413095826043318885239909481979915066837823211203949504407360454903720300192398238257821640322402719107203020043867276586561157354597866435486261966409144146260993770296025156535665162625547262928384422825036672653873183559310610242733965655697350410465771187473899989598669392051588250904486980753727214033142096377270829347798602477862774388991230222411947036203106017357178239558394792746182041646173546226380952806201598266773163660033787919189035623985667723862385428358163341664870922638774840264456431251965121536389122563782209026403282596019767451405834413771142003264521031614701715669012640498360131494406385573330773528584108249161835864572444742348488176374488964578764923362017114875845050910692879480311343175741309563257730450759549736430603382199450704355910658480274209939608128715968872564351450016563394386902825176215252708077502913066113321683393470893 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e0c9d4e8ff8ad6c8bdbb5b1466ebe2713296ad14 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'camagroup.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.camagroup.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018ac43d67b60000040300473045022100d9ed1cb437ac8736c06d58ff5841958203fdeba228c37c02c9eb53f0ecbd4ce502200b627c01713cdd5a4bdbd646057a53033695018f71732e842464ccbe58fa8d1e007700adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a0000018ac43d68120000040300483046022100f4ebed291f5a4c001166cf097bba515f0eed9b6df755ed74e2b4181dd0f469b4022100b217dc35b335fdb981e3a372e6431acbcdd9728127e5303e3f945369d842352b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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