www.mgpco.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:62:a7:86:70:c2:28:d1:0c:af:04:9f:75:38:dc:21:55:f1 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.mgpco.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:62:a7:86:70:c2:28:d1:0c:af:04:9f:75:38:dc:21:55:f1Serial Number (int): 294907208883620605239500002258091813983729
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3e:17:ae:da:ea:78:c1:d9:86:27:fd:82:58:b8:b7:18:78:70:e3:6a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 62:ea:03:f0:1c:c8:42:df:47:ad:87:94:cf:a8:41:96:8d:95:ab:21
Fingerprint (sha256): 07:b2:77:c0:9f:39:2a:f9:b2:11:c1:05:63:be:28:30:79:0a:ab:eb:a9:6d:cf:20:1b:02:00:34:ac:e9:95:a7
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.mgpco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.mgpco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.mgpco.com
Other certificates including the domain name mgpco.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.mgpco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISA2KnhnDCKNEMrwSfdTjcIVXxMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMDMxMTU0MzhaFw0y MDA2MDExMTU0MzhaMBgxFjAUBgNVBAMTDXd3dy5tZ3Bjby5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQCcR4NoNCAQp9GWtYCzIu8dKAO+i3Uw7cMZ kZ1VyifOIP1lMUzDne9TWzKwbHS0UX2CNBEzV1DwT1dqMq20gaqS++wpcxJVY0/0 eMZyZpBdkFTniel1eBgQjfqV0v08Bg+xXRotaokR7gjZWhXgJhjft4aVd01PQT9k BX1MH+9omWwKQR1FZZO2tkCGXDbsr0LNRLrcErb6oQ1m8YcUnFMQwbTP/fUxzlSh zI30hbJ4aeq6U1kUKEqIB6fVD6XnUKxyCOqaCDwRgzP1hq8GBYuDUlWv6a5C9uVZ n2uSWQS4m6v15STRnfpFfHYRjyre/ZFAnrlkb+ggBX9C9NkooXyZmC+wk6JKdMFx kc7fd98aIYp5rYrn0DaKV1hgXoJOn1S6yZr2cFKudUBzENSW+W8kWdfcIa2tIqfA AXvUwVioLTyT/3/efvEVrwDmv/n4HGsdSrLXH2OymJgXuE2uarfcmcrzstAikDEF 5uzqlYa+2OGrrjzunFg3zE7PfUGk9hzVyYReIjuFLwEXBQJBr5qDA5c5uUoVgD/z uQA15RMnvpV3E4f4q4H9UygVx3XRFUmiQ9uA1Yc+Z9m8Mw4yVRl1xf6hHCdtekTx bxJQ6gBIXq76UDODxFKU8EQ2nBEichZsEZKswfdtGMJ1kzeHQvJON6ZxPMAiPyyg UknYyzYh5QIDAQABo4ICYTCCAl0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ+F67a 6njB2YYn/YJYuLcYeHDjajAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXd3dy5tZ3Bjby5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHx AO8AdgCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAXCgdmP8AAAE AwBHMEUCIH30BisbgT14znmUayI1Rox9eKtWMmigtNFKQpm+ov8PAiEA0B1caYDT pA4sl2ZOQW4+3ZSzIw6TaFYOpUAb+a67/skAdQBvU3asMfAxGdiZAKRRFf93FRwR 2QLBACkGjbIImjfZEwAAAXCgdmSGAAAEAwBGMEQCIBUaTLayTkh1Un3eE/GKvPyC XnIF6PWb7cTDsP6FqjX3AiBxBybyiudPBu+00hETGuq9AfGec6iWTeV8p4rTFUSf BzANBgkqhkiG9w0BAQsFAAOCAQEAjZDCr6Y1uw+l9s/dCAQ6EIUYbFrFRFf+ItmE wNYfM1D3p2UHnrA6Yr0GscnDCIsiwDfjQ8DuE6n9ceRijr2AoqJOvbELbNiMjkvg xnAzWvtSuUKR7AXpaqRrM4/j7gsSVy/7NMb55I7CQAofVNBVZp5QCPQJcRNmgGOp uyfIiugP7be20krlAgIH/coHLMFYoY9ha2LWteKUaRHkIvamN9jBAu5VJo4BpQ6i wrslJl0snVLXt8bfM2X3SVmALFNC8m2hYAfQo5WL/IfXatOumN/OtBl077PEzAgC Dh10kGDn/7YH4kw53bhnOXI9h/XTO6Zzu89y5QoqpFE/ZhaELQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnEeDaDQgEKfRlrWAsyLv HSgDvot1MO3DGZGdVconziD9ZTFMw53vU1sysGx0tFF9gjQRM1dQ8E9XajKttIGq kvvsKXMSVWNP9HjGcmaQXZBU54npdXgYEI36ldL9PAYPsV0aLWqJEe4I2VoV4CYY 37eGlXdNT0E/ZAV9TB/vaJlsCkEdRWWTtrZAhlw27K9CzUS63BK2+qENZvGHFJxT EMG0z/31Mc5UocyN9IWyeGnqulNZFChKiAen1Q+l51Cscgjqmgg8EYMz9YavBgWL g1JVr+muQvblWZ9rklkEuJur9eUk0Z36RXx2EY8q3v2RQJ65ZG/oIAV/QvTZKKF8 mZgvsJOiSnTBcZHO33ffGiGKea2K59A2ildYYF6CTp9Uusma9nBSrnVAcxDUlvlv JFnX3CGtrSKnwAF71MFYqC08k/9/3n7xFa8A5r/5+BxrHUqy1x9jspiYF7hNrmq3 3JnK87LQIpAxBebs6pWGvtjhq6487pxYN8xOz31BpPYc1cmEXiI7hS8BFwUCQa+a gwOXOblKFYA/87kANeUTJ76VdxOH+KuB/VMoFcd10RVJokPbgNWHPmfZvDMOMlUZ dcX+oRwnbXpE8W8SUOoASF6u+lAzg8RSlPBENpwRInIWbBGSrMH3bRjCdZM3h0Ly TjemcTzAIj8soFJJ2Ms2IeUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 294907208883620605239500002258091813983729 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-03 11:54:38 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-01 11:54:38 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.mgpco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 637564118540483474729411280537615288069686911770984688392119864919908847812514201152387632502831431904037660012368392050185198233485396228872046444323998347221770144626661957076277913106022818878872314128025905984665642396780558118726904641178249278674193153438254116645229939557468808358336248134644482922385846691137612662833018483494721407271326445890994261954597864521706587015421802411199377100200754571799003057469850928152166162188683318363170584730809303325623235343600415298845056413325426608409007437858591371063958572434006132351504225736126345788283606151877520138974991437606438866390440066204668422838217230619990566989030797341456164277365203211452926264093624378302287837477825277740879961737439297761297201094564752338081195534982955403501222144770966805497955555180769695696612917223558455479511465606120905628780738620162343320826716248861368844498417279786225087554393694199274072604035439143504012586085654361373465229617101359756205313139311453115658286627931145410948871534456229003722597390431665238673824588519776329793972695823116244703035498369453355224889331676918131069364124020234468544821363068609609614308404050336504792255161186701135860576424796667182790817359166362007289975574559776132816702939621 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3e17aedaea78c1d98627fd8258b8b7187870e36a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mgpco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170a07663fc000004030047304502207df4062b1b813d78ce79946b2235468c7d78ab563268a0b4d14a4299bea2ff0f022100d01d5c6980d3a40e2c97664e416e3edd94b3230e9368560ea5401bf9aebbfec90075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d91300000170a076648600000403004630440220151a4cb6b24e4875527dde13f18abcfc825e7205e8f59bedc4c3b0fe85aa35f70220710726f28ae74f06efb4d211131aeabd01f19e73a8964de57ca78ad315449f07 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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