discourse.gomomentum.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:14:39:5e:66:c7:b9:b5:31:bb:31:62:c5:4f:5f:08:02:d8 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:

  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

discourse.gomomentum.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 03:14:39:5e:66:c7:b9:b5:31:bb:31:62:c5:4f:5f:08:02:d8
Serial Number (int): 268218761289993609377740132460650425746136
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: ca:02:35:1e:a3:2d:4f:39:a5:9d:b3:ea:1c:1b:cf:a7:fc:a8:9c:34
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 42:83:d2:45:1e:3b:84:53:6f:bd:5b:8a:72:eb:18:f9:ec:05:aa:59
Fingerprint (sha256): 00:17:b1:8c:b7:87:8a:99:bd:72:1c:33:51:1e:46:0f:c7:86:9a:a8:84:89:06:b9:97:e8:d1:ca:a1:d4:a7:37

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate discourse.gomomentum.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for discourse.gomomentum.org


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

discourse.gomomentum.org

Certificate

The complete raw certificate details for discourse.gomomentum.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 268218761289993609377740132460650425746136
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-07-17 23:29:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-15 23:29:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'discourse.gomomentum.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 730645649518273280770794922783547817103607573008820128252593165141236728528535901014205346937249162403294934500843679245952211741886058439692114380151522777664609648265042451173375764177361699581345355470862441300005507171450897472758562541439413988809102716623125417564080897400557275783515038768529217407919371894925658803127277860961063233068011945725262002284225415542134053376218271607359959935655865053390952707238996614391613480206600054354982144806047762448941563412975090741579304778948853984123964932455493181100603960294952860692322604282263224813603836803475708414873775377812666167357075866248272607309267804483364924214885967599979700527193254707088102881414365759414054711544093210223178124223380375999295764164240846349193540874485933046266168850973373817227846943005254694543702353791614911069302839042798128880415515743092425218953919698113390447108263358082495597494356670388073137865633947404257121883695143011540436983193967997364635553963909997546401930428832511976823485730544132533366338401812459149615042733153987140960488428170192693889642080201303167831850161610288412419930115390553587226491717687987698840903899933476839836916734552041279040818165752446158299405075371124605919090884120235602585837908843
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ca02351ea32d4f39a59db3ea1c1bcfa7fca89c34
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'discourse.gomomentum.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0031ee14c98c4490c3cd39407776030cfe7c5bcd94be0661929e0cd91845cf6e3723af5c53e78730804275318822adf7caab995c5a424909e49d7e21ef9062288930518e4e01abafb1112547b5e2c68fb713dbdf5e7300870080f0915522bd63f4f465d94f6c1dc3ed7b1bcc4f558f25d3290e02b545d0807b63582ac163aff977cc894153b13e50a71f74119d85a98d46eb6efb570fe45e63adb7936c3f7fc75e353176e74291fc78b3100bf60a9f97eed9e113cfb94b4f53e5e7a65fd2b655b699295920375966ad9006a9831c319ab57f9bceb65f8225ecff21719a85c21a1939ed836dedea0e34ca46929482f74ee35595777240dc19cbb3b8b33ef12df20c