www.catherine.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:41:7c:4d:28:9b:ae:44:57:4b:16:5d:d1:30:f9:3d:12:8e was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.catherine.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:41:7c:4d:28:9b:ae:44:57:4b:16:5d:d1:30:f9:3d:12:8e
Serial Number (int): 283620436547107859161631955525423677117070
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 77:5d:3e:d8:9b:33:11:da:12:9d:41:52:cb:0b:af:b7:f6:5d:4a:92
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): ee:18:f2:3b:4b:18:8d:25:b0:5c:cf:c8:89:94:85:20:6e:f7:70:05
Fingerprint (sha256): 01:2b:aa:4c:60:98:d6:4a:97:4d:25:45:f9:ca:61:52:46:9a:d8:ae:38:67:f3:7e:55:69:d6:13:11:bc:03:6c

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.catherine.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.catherine.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.catherine.org

Other certificates including the domain name catherine.org

(limited to 100 certificates)
www.catherine.org
catherine.org
catherine.org
catherine.org
www.catherine.org
catherine.org
www.catherine.org
catherine.org
www.colzen.com
catherine.org
www.catherine.org
insectrepellant.organic
blynews.com
www.catherine.org
catherine.org
champagne.media

Certificate

The complete raw certificate details for www.catherine.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 283620436547107859161631955525423677117070
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-27 01:12:04 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-25 01:12:04 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.catherine.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 759488594702858536406973553464036217416296717256992959607011198071137750941862993403662217004338159589746237470284892239303105212851220379061967301253200434692534251689491959820893413664460112074976366413589983523632279161999197553516898569235570299378638334836521956555853138213592824280589530748230242466141632900341104356968184614716197876586718207420587304515223915120332087003169727567648340144622201237643110477637607848210790949200833978818174240445812219548027201650739624146099583269777299369746822662582814603469614139835247299387200391744293188557491417458553656829496033725435591442651868612193792687684512412638108131818917523589372118983911159233954056863552984667552860969469590505613953276065868554070203029767029336840175123955600418655300564245104178897689576806228300333592493845089186002909914642056926311863718994809123493189951070113135380843224393951886036326493626431938361617125522670171503218658008453889108345047467387500041052644942686841043976579552461464377251608415650974916423251569442147203561919797824288651630862329142253160795084812451003692993279640224860066286112959614344377171777479321406821502491813112943007399793931299484028267042118858510240217433703501656805089605444433211487819878085063
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							775d3ed89b3311da129d4152cb0bafb7f65d4a92
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.catherine.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f20077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016af70f1e280000040300483046022100ed793dfbbc048033a760fd9ebd26f9fcf09aae08d8f7decc6d1083abfb97c0ef022100f08a765388dcdd3838379f38b90cafb642b0067c6aa1f78fb88c2c7d0a6a9aca00770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016af70f1ddf0000040300483046022100e1575c65cab3f65042758c2f1628a7ccf2406f6b7ace13055845db753122f230022100cfa389f88d4a7ba0e58045eeadf3d7a1429447335eef5d75d60333faacc07283
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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