ocgco.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:3a:02:52:1b:c1:0e:be:cf:dc:af:e8:e0:38:3d:a8:49:96 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ocgco.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:3a:02:52:1b:c1:0e:be:cf:dc:af:e8:e0:38:3d:a8:49:96Serial Number (int): 368188605795710045286474837846543921858966
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e6:1c:08:74:fb:35:dc:5b:ec:cd:17:60:9a:01:62:3e:05:5b:82:a8
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): d6:e8:68:83:86:f2:63:21:c8:46:9c:f7:cb:05:88:ab:cb:cd:18:cc
Fingerprint (sha256): 08:20:22:ac:5e:62:34:ee:6a:09:28:3d:ce:d0:fa:07:a0:13:7f:f1:90:8b:6a:6c:b6:54:ef:23:9d:a5:81:70
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate ocgco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ocgco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ocgco.com
Other certificates including the domain name ocgco.com
(limited to 100 certificates)
www.floriana.org
ocgco.com
www.ocgco.com
www.uvpondfilter.com
wildlyhappymarriage.com
ocgco.com
fundydiscoveryaquarium.com
scarpedacerimonia.com
www.ocgco.com
responsibilisation.com
ocgco.com
ocgco.com
ola.guide
307exchange.com
www.ocgco.com
www.stock-cases.com
www.ocgco.com
providencebeer.com
autostoppisti.com
ocgco.com
www.ocgco.com
www.uvpondfilter.com
wildlyhappymarriage.com
ocgco.com
fundydiscoveryaquarium.com
scarpedacerimonia.com
www.ocgco.com
responsibilisation.com
ocgco.com
ocgco.com
ola.guide
307exchange.com
www.ocgco.com
www.stock-cases.com
www.ocgco.com
providencebeer.com
autostoppisti.com
Certificate
The complete raw certificate details for ocgco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSzCCBTOgAwIBAgISBDoCUhvBDr7P3K/o4Dg9qEmWMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTMwNzM4NDBaFw0y MDAxMTEwNzM4NDBaMBQxEjAQBgNVBAMTCW9jZ2NvLmNvbTCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBAKd972TwkXyNVC9IHo936Q1isORVcTb5TVci3Sav QPtPWg8Tv/cRQ6kfmqXW3CfI05Wxg4rg83J7NcP9+ntaa9SGrq26asTmHaWab+iv 1lKgEsIZN1so5o0Y5fhbMXQ05/AoBkGGsjRTqhlCR9Dd0bGfH4ycsMJTVibXMNCK ciOfRIk5kw0iZjaYQ0l1pnE/MwyOsH15IXXBNQK47F+7bpCMKBhdnFRSQgF4wArt nvCmignXFglSb1+0AozgNsRJVQK/AzZmMmHr7+8TuksdMTqjteZFXYFQWnBC26OZ 0ixpjRJuo75PN7qyWHiDDRHAQkkbzFe+fDpWL7Iq0wThS8Cl/mI4/mCUJr69bn81 CY5+0a2BvLhc0U8UjVuekAlEKx4lNnLSqCbYdC0dEftfBQpwcFjFKfnJdVFc4PqH H8+WO1/ssay/fEnKDoKD6Ua/isl7xEUMzTU+MulQ8qnf5lhdSsX+YEjiq+5B3PLN o9VM1TQmg3CLSGFvB/EAS/XcsWjAP3VTOfuTEWSb1Tf7IyykbO+piLAjLfES2OA+ rCxyAMvvkoj9tduMtecXBjgo2O5i35lf0ca10jsJkRgUNToFD9a67xp31t30knYV rYQ5NJCCrRUKRSNUTIzjMBSjZwTGggPfO7/hztoIiZOaST4eAvv6cuzKb7ZSlIl8 HFb5AgMBAAGjggJfMIICWzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFOYcCHT7Ndxb 7M0XYJoBYj4FW4KoMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wFAYDVR0RBA0wC4IJb2NnY28uY29tMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA8JWk WfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMAAAFtxEUD6AAABAMARzBFAiAU TMCji0OXRkY2jGkCfhVl7t99HZJRrCAwxFqJBBJ/kwIhAO9qA5702WNE0rq9ON9q 2QKf5D87eQh9Oa5ruyybG3MiAHcAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz0 5UVH9HgAAAFtxEUD4wAABAMASDBGAiEAocHxLwfDuQ+Hl5lUyQY2Dg604qx1uPZE MrvayGIW5uoCIQCwe1JsUKGy2okTdYrKqMRmQHj6peduYRs18GeTCXYx6DANBgkq hkiG9w0BAQsFAAOCAQEALFE81HqsFB+smrd240I6LiQS7ZBulxKRbtkLJxlXzOps FmvrPHUlxx5qlYgjWxm+AJXcSBQ5ze9RjUtCKGe0pm9f1kkBFgUSgBYICPUPNt9d 7pmkotWe4qME4LUlgC1neWZaaEQ7aianymU6Q2cTFQBMUXag/DGc/HkNXktssP4g nmjXZaED8wev9iz1k8pGCxbgErJDBsa0W2+xe3l9UyKxwhVY9ON26L0LvGXoJ6zy 28W8NPoyvDk2wa0xNloP1VGkKZgTFaUUQhaMo1JWCICeRCHUgWOPJezWMaSr+gDz WgYNuUVwQmPfp8GFu4cHeabLT5W4buQcZJKNET0rOw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAp33vZPCRfI1UL0gej3fp DWKw5FVxNvlNVyLdJq9A+09aDxO/9xFDqR+apdbcJ8jTlbGDiuDzcns1w/36e1pr 1IaurbpqxOYdpZpv6K/WUqASwhk3WyjmjRjl+FsxdDTn8CgGQYayNFOqGUJH0N3R sZ8fjJywwlNWJtcw0IpyI59EiTmTDSJmNphDSXWmcT8zDI6wfXkhdcE1ArjsX7tu kIwoGF2cVFJCAXjACu2e8KaKCdcWCVJvX7QCjOA2xElVAr8DNmYyYevv7xO6Sx0x OqO15kVdgVBacELbo5nSLGmNEm6jvk83urJYeIMNEcBCSRvMV758OlYvsirTBOFL wKX+Yjj+YJQmvr1ufzUJjn7RrYG8uFzRTxSNW56QCUQrHiU2ctKoJth0LR0R+18F CnBwWMUp+cl1UVzg+ocfz5Y7X+yxrL98ScoOgoPpRr+KyXvERQzNNT4y6VDyqd/m WF1Kxf5gSOKr7kHc8s2j1UzVNCaDcItIYW8H8QBL9dyxaMA/dVM5+5MRZJvVN/sj LKRs76mIsCMt8RLY4D6sLHIAy++SiP2124y15xcGOCjY7mLfmV/RxrXSOwmRGBQ1 OgUP1rrvGnfW3fSSdhWthDk0kIKtFQpFI1RMjOMwFKNnBMaCA987v+HO2giJk5pJ Ph4C+/py7MpvtlKUiXwcVvkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 368188605795710045286474837846543921858966 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-13 07:38:40 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-11 07:38:40 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ocgco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 683307475461890274623551246342262837334473496462881698938402697812118518672452855359462432358567838676933897742384325436086936485537905256675850801182354484485109343533912671905886955015298850596420712276651907120714214166940793700037117115214168675300264804248547552122540629157772032178999407812935904252184027241307378089995458934861198924304593276235922590122788355148765634819033879285533285943086724841143311189749560271715561924153268114843703801270952426901874277682109718618789826598453688378909629639619916503035784964590511209001817324476474383116474596041033229711169699825048911995993654965400187880494206508617084445850060740645763406188510687168455357528819269529030150399387790069546911411526359279247363643876769557644294409486532211942287995784535327361907593659284632209212407896682499750101856166593353560891731984110051462304503676736443024772703013255030267845878337836024805167719220678662585885919333709314945773223550844718840208959730222495434605227636126929618320801306358070497388722438103839750759572330321804844303298851744084579039067061178887649777066872626643415659565038533256000400686420319460667770673303371889461394983558664441876873488870287084542737390774944098649130665585401401608790825785081 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e61c0874fb35dc5beccd17609a01623e055b82a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ocgco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016dc44503e800000403004730450220144cc0a38b43974646368c69027e1565eedf7d1d9251ac2030c45a8904127f93022100ef6a039ef4d96344d2babd38df6ad9029fe43f3b79087d39ae6bbb2c9b1b7322007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016dc44503e30000040300483046022100a1c1f12f07c3b90f87979954c906360e0eb4e2ac75b8f64432bbdac86216e6ea022100b07b526c50a1b2da8913758acaa8c4664078faa5e76e611b35f06793097631e8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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