bryanc.co.nz

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:4d:eb:ec:20:5f:90:33:07:03:38:37:0c:d6:f1:87:ae:1e was issued on by Let's Encrypt.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=bryanc.co.nz

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:4d:eb:ec:20:5f:90:33:07:03:38:37:0c:d6:f1:87:ae:1e
Serial Number (int): 287852194665869481361459867142642513456670
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: ea:76:d8:61:3f:2f:0e:5a:f4:61:15:1b:02:8e:37:ae:5c:4b:46:7d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 4e:06:28:29:14:4d:ed:95:39:6f:4f:05:58:66:55:c9:c1:da:85:e8
Fingerprint (sha256): 00:00:20:1c:9e:5d:60:8d:8d:6d:a5:30:c7:85:a1:0e:4c:47:66:77:10:7e:21:86:03:54:48:6c:9f:27:2c:60

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org/

Check the revocation status for certificate bryanc.co.nz

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for bryanc.co.nz

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

bryanc.co.nz
webmail.bryanc.co.nz
webmail.whatroute.net

Other certificates including the domain name bryanc.co.nz

(limited to 100 certificates)
bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
webmail.bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
www.whatroute.net
webmail.bryanc.co.nz
webmail.bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
webmail.whatroute.net
www.theremarkablesmusic.com
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
webmail.whatroute.net
www.whatroute.net
www.whatroute.net
bryanc.co.nz
bryanc.co.nz
webmail.bryanc.co.nz
bryanc.co.nz
webmail.bryanc.co.nz
bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz
webmail.bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
www.bryanc.co.nz
bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz
webmail.bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
www.theremarkablesmusic.com
webmail.bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
www.theremarkablesmusic.com
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
www.whatroute.net
bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz
bryanc.co.nz
bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz
webmail.whatroute.net
bryanc.co.nz

Certificate

The complete raw certificate details for bryanc.co.nz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2PXm+EeY/lMe4jEFz9g9
nVJgYGmmtO4Xv5wipKwe7m/gHBj/Vt5x5BV5Gi+JFFBavw1ih+H4tvxun4oVmOrB
ju9seOxX1c5iHaSfCnESeDzFPRb5XJ1SOTu5l6jvgAXOwNK3L0MG3Oc2Qhay+fnE
9nzdo9dshqZfPBsAAC/lKKNoRGeeosr/0eWbK6LdUko5eZTFI1sa+v1ZBGnPfvf4
yV9JIKzPRdEpmk8yWgsTmRPkSLvd88miMHXADBT01QEP8NPnjepItynfXbmyYFq+
aMMPFQ6NFOdHH0T0dTz/ePOnrI9QUk2Or3JtDnxqozdlx4Wi1uGTDrMJyXX5lPIR
kwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 287852194665869481361459867142642513456670
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-07-02 10:23:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-30 10:23:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bryanc.co.nz'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27388732779664600655061740700271953781606573848033562322369720347717762785122938777190119036928096247442179510391442505685776650997649664427849299349092274445656204109138774477503071969945280221858368994721927530777698865907332138974448284113078287525163791028045359468352669514758193633155172813230114803527045919852208262265880895275664789389436757199555735582711824793790163203098086777218917212167322015377952815728441761519222967833925098660265537837557737266787005001103650112963870422314511076606035672169447876028582256422043581414077250195432631862773922608924898384933607578088298029343422519879175549096339
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ea76d8613f2f0e5af461151b028e37ae5c4b467d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bryanc.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.bryanc.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.whatroute.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		007f1632e5540650c8e214bb1581014be24da7eea297c658b8a12c8ced1e3675d432f1a1a78a66a09b3721286befed6ac2fb353f848d0a08c4e34453081096f3b05bdd1ee3d5033ec51a1fc984237603943b1e1aaee54b4aa0447e723e9600da4e922c7c99e8f63775228024a7d29d3c78a036a9e3810b1fb709949ebd51ed5dc298f73c89460e5f9939d5d2135b3517bcd13137151a33b2463ec091e45b1f8e566a8aa7deaa48953904703a1d459b15b42cd2480e020b1f4c1ec568a2479698d7dbddefb16fee5a48a610e25695d3f1a8dfe27fff7f8ff4920ea360545da40da21367d60920a8fa0a0810cac898ddf0bccb96706a3e11943a47b76185340eb2c4