knobstick.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:0d:d8:56:be:d0:71:47:e8:33:9c:66:b6:a5:dc:fd:e2:63 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=knobstick.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:0d:d8:56:be:d0:71:47:e8:33:9c:66:b6:a5:dc:fd:e2:63Serial Number (int): 266048092220044657021787289622245942354531
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d6:1d:18:a1:6d:18:8a:b0:ca:21:b5:2a:6f:dd:b3:1b:c3:4b:51:c0
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 0f:b6:c7:c0:0d:fc:b7:a4:c9:03:c5:ee:4b:35:d7:96:9f:01:31:9b
Fingerprint (sha256): 07:0b:56:fb:e5:9f:9a:98:40:36:94:06:e9:bc:f2:84:fe:1f:35:fc:11:f3:b8:6a:12:3c:0d:21:0d:32:da:c8
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate knobstick.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for knobstick.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
knobstick.com
Other certificates including the domain name knobstick.com
(limited to 100 certificates)
seebc.com
knobstick.com
malvernbank.org
enerpactoolsgroup.co.za
sinefa.org
www.knobstick.com
urinating.org
modeling.world
knobstick.com
seebc.com
stopforeclosures.org
estate.limited
supr.org
estate.limited
urinating.org
aboutandroid.com
urinating.org
estate.limited
urinating.org
www.nsm88.com
johnnycox.me
whizzbang.org
smartybyte.com
smartteaching.com
oleum.ca
5bd.com
identifylife.com
hermitagefoundation.org
knobstick.com
malvernbank.org
enerpactoolsgroup.co.za
sinefa.org
www.knobstick.com
urinating.org
modeling.world
knobstick.com
seebc.com
stopforeclosures.org
estate.limited
supr.org
estate.limited
urinating.org
aboutandroid.com
urinating.org
estate.limited
urinating.org
www.nsm88.com
johnnycox.me
whizzbang.org
smartybyte.com
smartteaching.com
oleum.ca
5bd.com
identifylife.com
hermitagefoundation.org
Certificate
The complete raw certificate details for knobstick.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISAw3YVr7QcUfoM5xmtqXc/eJjMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMTgxODA4MTBaFw0y MDA2MTYxODA4MTBaMBgxFjAUBgNVBAMTDWtub2JzdGljay5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDQfct/50xF8rCj1R8Y0OyXUDQucMIfWvMO 1nib7SpgANESkREbMkyMhJbOPVzgFzOUzN3JQq2jAF7pQiNu0DMi1LwNxEuwo2la FIyYMwNzVo7jAF01EX8YSr6T11jZRRXiDUkDZqygrM3zXQlBzeHzavzF0JQfl1cY Uf1PJXP2SDU4iikg23UU698Id+vs0iTofqzhxJHT1IqOQfx2GThxIhh1yUMs+qeD hFTxCGm3cW5d1lDtK++Bdnicb1/BvDc4fHkCTvK8ANRsNpJZa5P7roMx7XYgd1oz LqNETTWCdYIc22yZ32SG1z72TeycLz0n+8nAqjOWGVieLTa4fauHUAwoawPE2FSc oG8NapFuzf+2KkKYufPrw9WYrAm68QYH34rvo+/GK2FVQSepQ06g+EjhvuoLH2yI znxT10hfM5gMZ93ynz10P90kianN3tPF+qVT5rSbSVLpXiQI+CYP2NOFFBDPjaxX 8XfGReGT0aSFDd7l7obLRBtgGO/KDP4B8zKHhErUTdepMGm0Arsuz682NT9sPVTs QnNwHQtAJtgRFzaqL/GKHMgzVh36jcqX6SdHiBYF3kgkRGVOL6qPBkSKS3HPmr+s jQB56I8LYZmn3cA1rRS7lLMyEQpGBTopHaOkzpMVX4aS6F+bT/DeGnqsx0RilKK4 5JrQsT7xXQIDAQABo4ICYTCCAl0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTWHRih bRiKsMohtSpv3bMbw0tRwDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDWtub2JzdGljay5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHx AO8AdQCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAXDvC8UEAAAE AwBGMEQCIAEAPm4UTWnKVLbi2Jx/WAJnqkda1FgQZ22jo1LBCLmNAiAwMV3GRYG3 jMQtIjyUkY6+cfuNCvU+Ryo5z0N5y7Wi2QB2AG9Tdqwx8DEZ2JkApFEV/3cVHBHZ AsEAKQaNsgiaN9kTAAABcO8LxTkAAAQDAEcwRQIhAOW28m4TekHX2qCw8G0xHkz2 Y8wanY/woRL63L29+3bQAiBqQ3rU5xnsm4483ad61vcedSXTRwtF/pJoxfv2qLze fDANBgkqhkiG9w0BAQsFAAOCAQEABZZGrpJOGC27ebKdt0rBBmbS8cKKhwPjV3UZ 5OEvEhmbjQNXagKZqo+8VBfOE1xWiT84SxVZQY9gFl71qOAm07PbmAASV12lCTAU Hj0hRxqv+tPwNXLn+Rz/mwc6LeF+TO/o5Z8flGfJczoo9KRen6YkakjjCnFmRdyX Mn1R9XPhQrrHmjKA/ioIaL3uwSdyay3cPAm6N8iiZW/7tVOibrpDbwVqYAVRG7N3 bW8MOIdGrkx0oSo7+v95E5khlPrqUjIPQWlEeAPVxWeFLS2EbnpxJq215a4MU/pu 38Kcz5LtwW6K2HL8crDdG449Rivw0nd/gygtQkph5gJ/nV5T6w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0H3Lf+dMRfKwo9UfGNDs l1A0LnDCH1rzDtZ4m+0qYADREpERGzJMjISWzj1c4BczlMzdyUKtowBe6UIjbtAz ItS8DcRLsKNpWhSMmDMDc1aO4wBdNRF/GEq+k9dY2UUV4g1JA2asoKzN810JQc3h 82r8xdCUH5dXGFH9TyVz9kg1OIopINt1FOvfCHfr7NIk6H6s4cSR09SKjkH8dhk4 cSIYdclDLPqng4RU8Qhpt3FuXdZQ7SvvgXZ4nG9fwbw3OHx5Ak7yvADUbDaSWWuT +66DMe12IHdaMy6jRE01gnWCHNtsmd9khtc+9k3snC89J/vJwKozlhlYni02uH2r h1AMKGsDxNhUnKBvDWqRbs3/tipCmLnz68PVmKwJuvEGB9+K76PvxithVUEnqUNO oPhI4b7qCx9siM58U9dIXzOYDGfd8p89dD/dJImpzd7TxfqlU+a0m0lS6V4kCPgm D9jThRQQz42sV/F3xkXhk9GkhQ3e5e6Gy0QbYBjvygz+AfMyh4RK1E3XqTBptAK7 Ls+vNjU/bD1U7EJzcB0LQCbYERc2qi/xihzIM1Yd+o3Kl+knR4gWBd5IJERlTi+q jwZEiktxz5q/rI0AeeiPC2GZp93ANa0Uu5SzMhEKRgU6KR2jpM6TFV+Gkuhfm0/w 3hp6rMdEYpSiuOSa0LE+8V0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 266048092220044657021787289622245942354531 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-18 18:08:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-16 18:08:10 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'knobstick.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 850570647791966509483966426851530344509238854586536702995926799845098565861285377624534983709410271389546954730597172961179612234117461342161744513800696873223680062050718585410015011818200575956019880554897573734468025648780805946682716915680497755387734160131138271982072247103339070007904686048818677949663592330249906481677172064657999979615390872287083267744600265745747292337487272685212349584844290000583493944844901791725974683930914295629956273434551870922378388616593144301265180684591293397982932169426068322229108320682172758198083687794047589851326948807803058159660734293497427337827432048700679658223855657886756838619579783823001308574447166197557958159348751923009355722481681236105231674478471948952383848038650094006824698249995816716909726011037495108832935140014295544999430493574587276333899394544987065252202564137657529610010146081028940301088021053147910444253018657221700982688511208549970069228869572345266002596434580226120556642594394689455406623300644730170815106518429783395740916342209220296063771938663138728874158030264732417889781657918604381286135239182234449459481107138120947109011262667578084065030741381728832153644027591406636036570586321754274335771946519266742006968025483511635511307333981 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d61d18a16d188ab0ca21b52a6fddb31bc34b51c0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'knobstick.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170ef0bc5040000040300463044022001003e6e144d69ca54b6e2d89c7f580267aa475ad45810676da3a352c108b98d022030315dc64581b78cc42d223c94918ebe71fb8d0af53e472a39cf4379cbb5a2d90076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d91300000170ef0bc5390000040300473045022100e5b6f26e137a41d7daa0b0f06d311e4cf663cc1a9d8ff0a112fadcbdbdfb76d002206a437ad4e719ec9b8e3cdda77ad6f71e7525d3470b45fe9268c5fbf6a8bcde7c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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