rjico.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:d2:cd:d2:c8:a2:7d:a0:97:35:bc:99:54:01:06:a8:37:87 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=rjico.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d2:cd:d2:c8:a2:7d:a0:97:35:bc:99:54:01:06:a8:37:87Serial Number (int): 333069741039509780160999958208655829514119
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 98:2f:e7:82:b5:21:63:08:b0:e6:26:49:cb:1a:ea:84:80:d8:cf:3e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 0b:c5:b1:62:0b:f4:28:c5:87:e9:19:7a:ac:51:11:f5:89:33:5b:32
Fingerprint (sha256): 03:f0:85:d0:66:82:5f:2d:8b:6b:87:e2:3a:65:f3:17:71:87:3d:a1:f8:62:ba:3d:f9:88:ef:34:cb:79:33:e1
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate rjico.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rjico.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rjico.com
Other certificates including the domain name rjico.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for rjico.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSDCCBTCgAwIBAgISA9LN0siifaCXNbyZVAEGqDeHMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMjUxMTIxMThaFw0y MDA1MjUxMTIxMThaMBQxEjAQBgNVBAMTCXJqaWNvLmNvbTCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBAJvIWdpCFzoOj9SrVtZa3yCQLkOWUYCOP2u/v0J8 SfB0EYsSuJnSBgHFLvY1JhRPc2RuWA0jrp9cc80Du2pcVLKCta5QFZfqsjOv2ZNz GQ0B2C0Mv5BNW2gpgZn85lZVRimeIWWnZ02CqWX9ktGL/5IeNjsiaI2CBQ0QzaUN cBvMqAJ+u9vST8jXeYfXuZWuW3SrrW9avSrNKoGr8fQXaxPb66c/P97Iw0yqWqzN ocWhcEGt7s++eKZ5g4RIRu9srSapTviRlYwkT2NlE0+W1OpLOpz/WWhwyFBtTFMV qzpzQtKaYHJzlO0bOPf4JccoWEUcJ8rGnAi0FrQg2tceOanqDyuLSblkVVr6LsR9 FqoF5qRn32nGSJ82MaIhwwIi+2ZvmAFA/7bvFxPxvz6+54ABcQbBokf4KASB5hIq VrIvV8i4CAqUgim/3bzJE1WGZoz3CKhEn15k1dAGAJQTJwhc2kJuisnOGus3aJD1 80z4hsHcKoeI7VZDdK21wZ/bCcr8NPG2nyFapFWLSURHwgCGogbgFgQaxnTk/Lpq TKgZX5WO2blSyhxQYUD4+w3TXl0K++e/t9HzlQiO6K9X3tN+GT1LExEQ2g4KMxen 7XRDdiiOMvANpf+Q636TJt3MLJUBwCvYxbr7jpyfWqPnP/Elgm38vDDc83T+nYSu fFg1AgMBAAGjggJcMIICWDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJgv54K1IWMI sOYmScsa6oSA2M8+MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wFAYDVR0RBA0wC4IJcmppY28uY29tMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADuAHUAXqdz +d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFwfEtbPQAABAMARjBEAiA6 PWue2c2AZdG6/y7qFtcbwvXAbVratrE0KTF3gHX/4QIgagpJziA8ObwPFDOW1Ym7 N92m3hItk9pIgsBzFl0orS0AdQCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt 74uQXgAAAXB8S10qAAAEAwBGMEQCIC4f/Qs7Dej6bRml9xjw0uW3L/fQll3n7IZF vL/Tqf+UAiBL6Hec0dMGem4XBorpfLtb418r5EZYeHLMVaKJ6F3lZDANBgkqhkiG 9w0BAQsFAAOCAQEAKVOVMlhT+2kL0KFC70PmrL8wIS1NRiClMvUQVmNKP2Kcj9qm ms8Br6FhyufLQBFEqPgXK3gAzr68wdgpoG5mv8rnfmSr1wVFo1OyH2a0W+bpHBha YXsPoTOHsEOhrwwhstmHW91LDxCliZVjsgVR/r4ISd9JijAF7Y+lxohBK6SqWt0Y XhQftToAE0irnWcyJnQRdQ937CLz0U0RnJaciawrpJ8BlaQXRHWZRr43cE19Prpv kW/rzGFoIrSiPZanwW1q7adOl04Qn5j0Om+BdcKmkhhN+IbACzBFsZAT+93X6cXH nVrQ3C8zHZyGsEpbDCY1ipvCL+JTODhSbTwLMQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAm8hZ2kIXOg6P1KtW1lrf IJAuQ5ZRgI4/a7+/QnxJ8HQRixK4mdIGAcUu9jUmFE9zZG5YDSOun1xzzQO7alxU soK1rlAVl+qyM6/Zk3MZDQHYLQy/kE1baCmBmfzmVlVGKZ4hZadnTYKpZf2S0Yv/ kh42OyJojYIFDRDNpQ1wG8yoAn6729JPyNd5h9e5la5bdKutb1q9Ks0qgavx9Bdr E9vrpz8/3sjDTKparM2hxaFwQa3uz754pnmDhEhG72ytJqlO+JGVjCRPY2UTT5bU 6ks6nP9ZaHDIUG1MUxWrOnNC0ppgcnOU7Rs49/glxyhYRRwnysacCLQWtCDa1x45 qeoPK4tJuWRVWvouxH0WqgXmpGffacZInzYxoiHDAiL7Zm+YAUD/tu8XE/G/Pr7n gAFxBsGiR/goBIHmEipWsi9XyLgICpSCKb/dvMkTVYZmjPcIqESfXmTV0AYAlBMn CFzaQm6Kyc4a6zdokPXzTPiGwdwqh4jtVkN0rbXBn9sJyvw08bafIVqkVYtJREfC AIaiBuAWBBrGdOT8umpMqBlflY7ZuVLKHFBhQPj7DdNeXQr757+30fOVCI7or1fe 034ZPUsTERDaDgozF6ftdEN2KI4y8A2l/5DrfpMm3cwslQHAK9jFuvuOnJ9ao+c/ 8SWCbfy8MNzzdP6dhK58WDUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 333069741039509780160999958208655829514119 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-25 11:21:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-25 11:21:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rjico.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 635537645832285364631425204903615208332665510527935507987564693071670004470004279610870876917452384712208224203195558654489347596878491123955702005734294096756113917598621349095606899123271733541711886829615299880687389399743670917444311116882744688397388769286897927824094473800573153970829611526063712815190877004715013096528149079867501348827590347360052385614212887923008514896765856775363892525418406888661054452619636292795958440247913043739751519567774382518071714675411226597487310720715931888117649893289133675529035960041171400734178571215241415868106365793438783409779156487438883470933785298963317864065962628429673873455160266809163532306272536316610707286176122072411093659134174710108325102514114132926176768916483655788903414680832584327970183470602265245860082005833949222124442611402490887304937571337404058321039945239617445804319598879369994063124932510699391083280461556534650400929148868691660066285190410067330312552511496154344860583830824379650737190085156899201899998925295312149498262725667498353952762642241877994331962823541912227991467182142355091523769461327788390329668039157357320253172810768746312729995299994038517335815049354798020756704522097874115214069201906710745446740598357617052747564865589 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 982fe782b5216308b0e62649cb1aea8480d8cf3e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rjico.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075005ea773f9df56c0e7b536487dd049e0327a919a0c84a112128418759681714558000001707c4b5b3d000004030046304402203a3d6b9ed9cd8065d1baff2eea16d71bc2f5c06d5adab6b1342931778075ffe102206a0a49ce203c39bc0f143396d589bb37dda6de122d93da4882c073165d28ad2d007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001707c4b5d2a000004030046304402202e1ffd0b3b0de8fa6d19a5f718f0d2e5b72ff7d0965de7ec8645bcbfd3a9ff9402204be8779cd1d3067a6e17068ae97cbb5be35f2be446587872cc55a289e85de564 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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