abagail.org
Issued by R3
About this certificate
This digital certificate with serial number 04:80:50:9f:e0:eb:2d:49:d4:ad:00:4f:da:64:43:33:e7:ec was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=abagail.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:80:50:9f:e0:eb:2d:49:d4:ad:00:4f:da:64:43:33:e7:ecSerial Number (int): 392112455069676795707418878939589095188460
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 56:d0:bd:d6:57:b9:f0:72:ed:e9:5d:fc:fc:25:dd:d2:f2:d7:37:47
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c8:2b:f7:bd:8b:bc:cd:38:2b:c2:b1:d3:63:51:ca:41:fa:d9:be:42
Fingerprint (sha256): 05:69:c9:26:f0:24:6f:c8:2e:47:cf:dd:52:6c:93:ca:16:9b:b1:0c:95:9e:a8:7c:09:c4:22:73:4a:34:78:3d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate abagail.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for abagail.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
abagail.org
Other certificates including the domain name abagail.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for abagail.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5DCCBMygAwIBAgISBIBQn+DrLUnUrQBP2mRDM+fsMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA3MjYxOTIyNDRaFw0yMzEwMjQxOTIyNDNaMBYxFDASBgNVBAMT C2FiYWdhaWwub3JnMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzeRv uMPvbcgGthgstSZvVnbIh5wp5rMwm2KWDC4oUJiT2jhhQ4uddWe4+zKq5ZW5ez1z RH4TfwdnxbBFQVJASnnEqR0tnibx5omCF1ZvvSTTm3nsRToUUaA6fWbwRMh6cuzj jM8Gm6acgUh2bKQ0Ynv5WZd9fHdHKwXMh/rDyriHH0+bLCzQ80FeeKb/ovWJJ3Hr COwtwGDjgDxRfRvPCy7GgudESWVKCdUWHpzUfqD6YHcH9Ed+fyxl2fMfr4k/a1Fk SGRnEWmfyrj3NdJTM4mtIR6rHo41f+qQFXLqkot6u70IJ8iKLiuUmNCbNpItcmgv 6eFqfzqfHZn0VP/M4rV/6j5NwNm3isdiqG0jgEm7uhQwfzXkBfzvnxPoizFJO4+x Re05QMwcL4yzsKIFygt3O2tF/taM+HVBS4uZcnAcqqApFMgHgSKOPMau/o80eX4h OCuXmnm9nuNIl3wSWSMJxHDXr271EyDDvVStpOeJhKRBdS/rzbCLUPHYLoVofS7e iPEvI09QBknrFwYJhtnKMteWfujDc6Vr8nnqBB92vzj0ruyvmPgcOqX8DF7ZVpn0 psSbKhZTt78dbh9zX6UpK06P5SXNd7CJCrDJwugM/MiQF858NNCGGCknWfCb3kCT DbBfx48C9UvCY0DsrYZZb32+yh5/wL2hFyPQGvECAwEAAaOCAg4wggIKMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQUVtC91le58HLt6V38/CXd0vLXN0cwHwYDVR0jBBgw FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y My5pLmxlbmNyLm9yZy8wFgYDVR0RBA8wDYILYWJhZ2FpbC5vcmcwEwYDVR0gBAww CjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgB6MoxU2LcttiDq OOBSHumEFnAyE4VNO9IrwTpXo1LrUgAAAYmT3kOwAAAEAwBHMEUCIQDtKkXTRRt3 TCQpP6hCrUAdcBIE1cXy1hv1JXW5aADvUQIgOcMu8toWLGAUGB7ZDUDo8cIENeEE ayJRtWOYoeGW/hAAdwCt9776fP8QyIudPZwePhhqtGcpXc+xDCTKhYY069yCigAA AYmT3kPQAAAEAwBIMEYCIQDvjWO92EtE8d41QOyq4bVxCZVEBpgXAstcO0bxlzmt VQIhAP+L4XGExvZM5h80zhSoHMTgYeh27I7WzXioH/8xC/Y5MA0GCSqGSIb3DQEB CwUAA4IBAQAiGoICwbIiRelePLxVAviWxQqNj+qn2TW45ILlliLstDX/975UfvGk E4R/SO9Sstnnh260ytdJ7MvmHdEX7QK7OR2zE6yTd8t2DBMX9MKiavf+3JiEZeX/ 7pkTIx4+zW3exGdjJd5QyUov7bolZIXvlyxcHwSGUMEyEJ4bix0zF2OzDjbHy9hQ kw6lkdGYGBo6TuMFyhQ8yPzXehsCRjSPYVSDM5nYK5Wu9JE+6cg1t8dVjHPizBVi YhNukw+TXR07gzo5Up/yaLJaD7XmKRn+2ixdnPGvUioEyQ+FxIeVZpPL26xyFIGK ttPDn2y/1fEFV8PDLNNPvkxRO8OdU+FF -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzeRvuMPvbcgGthgstSZv VnbIh5wp5rMwm2KWDC4oUJiT2jhhQ4uddWe4+zKq5ZW5ez1zRH4TfwdnxbBFQVJA SnnEqR0tnibx5omCF1ZvvSTTm3nsRToUUaA6fWbwRMh6cuzjjM8Gm6acgUh2bKQ0 Ynv5WZd9fHdHKwXMh/rDyriHH0+bLCzQ80FeeKb/ovWJJ3HrCOwtwGDjgDxRfRvP Cy7GgudESWVKCdUWHpzUfqD6YHcH9Ed+fyxl2fMfr4k/a1FkSGRnEWmfyrj3NdJT M4mtIR6rHo41f+qQFXLqkot6u70IJ8iKLiuUmNCbNpItcmgv6eFqfzqfHZn0VP/M 4rV/6j5NwNm3isdiqG0jgEm7uhQwfzXkBfzvnxPoizFJO4+xRe05QMwcL4yzsKIF ygt3O2tF/taM+HVBS4uZcnAcqqApFMgHgSKOPMau/o80eX4hOCuXmnm9nuNIl3wS WSMJxHDXr271EyDDvVStpOeJhKRBdS/rzbCLUPHYLoVofS7eiPEvI09QBknrFwYJ htnKMteWfujDc6Vr8nnqBB92vzj0ruyvmPgcOqX8DF7ZVpn0psSbKhZTt78dbh9z X6UpK06P5SXNd7CJCrDJwugM/MiQF858NNCGGCknWfCb3kCTDbBfx48C9UvCY0Ds rYZZb32+yh5/wL2hFyPQGvECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 392112455069676795707418878939589095188460 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-26 19:22:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-24 19:22:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'abagail.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 839967421668353589630452869313492200711245788239065666686171754940719874077729896624238083732066793108173056262979006428609806924648004647816342058468927667133769427150588045335723105223553689884039174278311390906353341435976672063191109812870208865005277557030258877730262555488129393906606198058014953887477327622387644964633225507525888184469864587905669884978266293662986036956259924828536750368485140221537391200202705240291469474433564195574802876119324245879199965470678225251635673218017390996668576274259938511847687968534633831779355729624045021557929443246461750078964658417689859430776720859600743898328972081624273902542317024943480723988977918262184313726203228939363253409161414750565575782060810538976968086345105689377756973796798494317537271479777511305619000298874189269457144089166151150064660646912994319027667174175262181967016907716915300221007577758387569049091747951840946934500733689161098584530526456417393444448350527640640911617202966955469331284493994886108710346597488469635741607249874926097933359410929080931455768872569284744031030870109499860647286290058806409002513836257423856389340843588364353516134799160967742504543919656400794032192350535270200990214855563239115469352700216524297592841968369 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 56d0bdd657b9f072ede95dfcfc25ddd2f2d73747 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'abagail.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018993de43b00000040300473045022100ed2a45d3451b774c24293fa842ad401d701204d5c5f2d61bf52575b96800ef51022039c32ef2da162c6014181ed90d40e8f1c20435e1046b2251b56398a1e196fe10007700adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a0000018993de43d00000040300483046022100ef8d63bdd84b44f1de3540ecaae1b57109954406981702cb5c3b46f19739ad55022100ff8be17184c6f64ce61f34ce14a81cc4e061e876ec8ed6cd78a81fff310bf639 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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