giedre.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:de:39:91:92:cb:b1:ea:d4:9d:93:75:86:f7:11:38:05:4e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=giedre.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:de:39:91:92:cb:b1:ea:d4:9d:93:75:86:f7:11:38:05:4eSerial Number (int): 336956065107903488446470684345262262453582
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ff:83:28:dc:4a:4d:3e:38:b4:02:ff:0b:d4:4d:89:e2:8d:7e:db:2a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 1d:79:53:bb:e0:76:79:a6:ed:e7:81:80:c2:6d:bb:d0:6d:f1:50:58
Fingerprint (sha256): 00:da:fa:e6:3c:69:3e:ac:a0:b2:9f:c8:28:f7:3c:af:e3:ab:8c:b5:05:1c:46:56:e7:cd:9c:91:e9:2c:e6:8b
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate giedre.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for giedre.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
giedre.org
Other certificates including the domain name giedre.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for giedre.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSzCCBTOgAwIBAgISA945kZLLserUnZN1hvcROAVOMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MTgxMjA3MTZaFw0x OTA5MTYxMjA3MTZaMBUxEzARBgNVBAMTCmdpZWRyZS5vcmcwggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQCtMLEapw8HAs5vzJS016nlqqUWZcOWcLTqyiG4 bN4UMfAvX96ptlBPm7C9d2qNmpWGEUHjQGWk2D0mLVqxJy6A3ypg/z9GxRxL/o1L 5uIBwPV8Er30w1pMlq9E9MXo6hTsM/LnyYtlV+4mDE4QVrGT+GOloH04gOylXhDe 7LB+/xF0zkOEO3ILXoTI7mZwS8Ok3FNfMKzkdf4LqcZMppl8Z9TW38F9m3ZreCok kcf3qMob6nLgd+BWyv/Jm/AEhGWBq8pZO/mkDmK+/bR1zgeB4dQHLuLwxa5ptuL2 9/8CWGl/XtivWThhKT/12cnJfEu0NnycrB+UvOI3zYtXSvTXORawi5JkxiTpyUDM w2InpuffUc4QnUsdXYdua4srs+CnDA12xMsVBnZkjHDcZRXmTLF7NDtvdwE4Mu5y F5oDTLduMLelQDxgBq1Wct5/4BICAvdspCppDbbg8VR4ovxKm/OHe50ukvHdx4BZ UczXVWFRqTf6s8RuRmzkPQQGJ6hOn3teksMVMIPJV0yeMwQcnZwqSP+C15TXkhTv 4V9RcvIO0cvx7Ga3ljwLSi4+vKHib2nWjLIaD30LBdpMu4ql4hCk1lIkvb1cvF+V 3eXPyx06DSrGSzcAsGZvTU0BF1iaD9AK4rt5KOuQaWsaHQHXUghi2d96bABq93Lp 7CK+fwIDAQABo4ICXjCCAlowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT/gyjcSk0+ OLQC/wvUTYnijX7bKjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMBUGA1UdEQQOMAyCCmdpZWRyZS5vcmcwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdgDi aUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWtqsuI2AAAEAwBHMEUC IQD9lBveVsJcqcDEFjn31eUnX2L4CRwdv7Bxm+JaEmrcbgIgHikn645Ziejnl2DW 8+fyHEdvpdosPf14gHkcuuDzl7kAdQApPFGWVMg5ZbqqUPxYB9S3b79Yeily3KTD DPTlRUf0eAAAAWtqsuI4AAAEAwBGMEQCIEL54cLyy2XdMcDbuQjayk3Fva3cg9cq cPBg5ba252J2AiAf1tita+9fq/c9PPBL5hSiLMR9K/8EuXmaCC/s7qZ4fzANBgkq hkiG9w0BAQsFAAOCAQEAf9HvNEgSk9cE7q6mUgl1duldBLb67oeLSpxTveKGsjxO kpx9LWqJlVgtCye++H7cdHdUG0Iq/n/3VYWdzwTvAXA8vRjE7uEZNU/YYkXaspPE VBld0JfHsUM79ihG9sm5t7EOViZAXw5UnX+88/+8eCyHFqUkHL7Kha7w/bGil75I BBHM0iFHp6u2IKpAaTuCMyfLC42jfCcTpCqwQiFe1rxHPXgo0X82KTjs6xGV8dA0 g+MQz8Iw9V0kKOyPoyNsmaNYf6PP0UniRxMiPUbCFIn7HEkii95fhi5mhp5MuPMr WQYbjSHXKu1fz310aDyik3NDMJHex/vH3HbJbX7Pjw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArTCxGqcPBwLOb8yUtNep 5aqlFmXDlnC06sohuGzeFDHwL1/eqbZQT5uwvXdqjZqVhhFB40BlpNg9Ji1asScu gN8qYP8/RsUcS/6NS+biAcD1fBK99MNaTJavRPTF6OoU7DPy58mLZVfuJgxOEFax k/hjpaB9OIDspV4Q3uywfv8RdM5DhDtyC16EyO5mcEvDpNxTXzCs5HX+C6nGTKaZ fGfU1t/BfZt2a3gqJJHH96jKG+py4HfgVsr/yZvwBIRlgavKWTv5pA5ivv20dc4H geHUBy7i8MWuabbi9vf/Alhpf17Yr1k4YSk/9dnJyXxLtDZ8nKwflLziN82LV0r0 1zkWsIuSZMYk6clAzMNiJ6bn31HOEJ1LHV2HbmuLK7PgpwwNdsTLFQZ2ZIxw3GUV 5kyxezQ7b3cBODLucheaA0y3bjC3pUA8YAatVnLef+ASAgL3bKQqaQ224PFUeKL8 Spvzh3udLpLx3ceAWVHM11VhUak3+rPEbkZs5D0EBieoTp97XpLDFTCDyVdMnjME HJ2cKkj/gteU15IU7+FfUXLyDtHL8exmt5Y8C0ouPryh4m9p1oyyGg99CwXaTLuK peIQpNZSJL29XLxfld3lz8sdOg0qxks3ALBmb01NARdYmg/QCuK7eSjrkGlrGh0B 11IIYtnfemwAavdy6ewivn8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 336956065107903488446470684345262262453582 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-18 12:07:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-16 12:07:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'giedre.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 706554381837034537145858850360101786850208221125254441466985098068792777050097007160541235018148273926940470284984366241304615336827310231883800070271903238369569802633839658722754177418520541796184619940188797044475164289890729213492542403862392509094868749421883533840939730337315954863390561719248543026481537682340711206096023267347550819178707793959956952581394097464165954334941572789175404787093255385599205372599855898967609555600627283097883239685520022118786841177742328465918068824931376115065719729439272579911691633088772741614321450766395685236942853364072879613666178944326896373497822629572874834728974276001575077550509038960482888655590383599801403218062076222231563131013737206162692227195742215630099053922693594541606650673486245325263258967371216868059711010221732729985310783943761185534063777512490683476449626521034471901145777681983689080070581528878923687069042501209629380846421719444056100150644572428880333741300150400991359012404008835145328630117565144693274892827886983197069761651508362005058678450720621146864738267654657010386225886618732827538352540002164817704073813203873836340897979892539042540743924514057694603233442395343344610748746476864805390186176605862821373981714686010902264301141631 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ff8328dc4a4d3e38b402ff0bd44d89e28d7edb2a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giedre.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016b6ab2e2360000040300473045022100fd941bde56c25ca9c0c41639f7d5e5275f62f8091c1dbfb0719be25a126adc6e02201e2927eb8e5989e8e79760d6f3e7f21c476fa5da2c3dfd7880791cbae0f397b9007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016b6ab2e2380000040300463044022042f9e1c2f2cb65dd31c0dbb908daca4dc5bdaddc83d72a70f060e5b6b6e7627602201fd6d8ad6bef5fabf73d3cf04be614a22cc47d2bff04b9799a082feceea6787f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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