avino.co
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:63:47:ee:b6:41:2d:09:97:9f:8b:f2:61:f1:d0:eb:aa:aa was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=avino.co
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:63:47:ee:b6:41:2d:09:97:9f:8b:f2:61:f1:d0:eb:aa:aaSerial Number (int): 382232712703129271635147436318260340697770
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 2e:43:95:25:7e:f5:5f:2f:56:87:bb:18:09:b4:e8:e1:9b:ac:2b:49
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): dc:c5:7c:a5:af:bc:3a:8d:16:3c:33:ec:34:48:e2:09:a0:3c:c2:63
Fingerprint (sha256): 0b:32:ed:e3:28:55:b1:40:7b:0e:1f:36:c3:f2:c0:c9:c0:45:6e:e5:ee:8f:f8:aa:92:3b:45:cf:d5:e2:be:be
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate avino.co
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for avino.co
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
avino.co
Other certificates including the domain name avino.co
(limited to 100 certificates)
Certificate
The complete raw certificate details for avino.co in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSDCCBTCgAwIBAgISBGNH7rZBLQmXn4vyYfHQ66qqMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAxMTgwMTAwMjZaFw0x OTA0MTgwMTAwMjZaMBMxETAPBgNVBAMTCGF2aW5vLmNvMIICIjANBgkqhkiG9w0B AQEFAAOCAg8AMIICCgKCAgEAsw2r+wla4JEf1QrgJAcqE98eOsY8yrumY+YGBvp1 2irQzpV65s97Ak85CAiLSW1o0pf4n8dPxivLsPl0ipGFGGxCdu4lwGzQLvqXY1Mo a4ujuMf1HAvYv8+EtzRXAGhIp7IBYZ+Pi6dLXe9trf/ddbZ3EM4HzUhdqJI601OK QAU/KRd+I2vLZFlEo2plOECv/PwRFZ1zLHFkwXxAe0ka74UQTxsSp5j5EDhbrlJB faMpyNMkASXmOpAMM8/KoMRJQidUCpibOuta+QKua/LHIrwYZu1Ckzey0n8W26KW L/VPxUHLEq+HWzRroywb6V0c7ceYXErKaaRY4lPoURG2D5JI84TbJ84mS3PD6LgI LSfltPdV7Ya9P1S+3aZhWqqoFYmXpl+62JWoqwOu4XS3PKq8Rnn+eqlx3AucOyby pvJBpK8Sg5WXBWJsE8Fba6W4szpwvS7gMWCuBiU5xB3d9/HlEuq7rwFFi98QIR/j l5LZO9UrhGcCA0Qp2GcYPMRWVc246TinVxQPWvwoBykymUrm3m2T06G5PMX9Hc8o QXfQgimlef9WGHPq5VkUjf9suRy8p4424kdNr8c2tWPU5mceFPvZ+/tkdMZrWIc+ EvrTo7K6HXWqztbzYpeRMftER4zPcarM2/+8ioYMSyoXRf1RVtP4UXl9LogaUlwq /tECAwEAAaOCAl0wggJZMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQULkOVJX71Xy9W h7sYCbTo4ZusK0kwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYI KwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0 c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0 c2VuY3J5cHQub3JnLzATBgNVHREEDDAKgghhdmluby5jbzBMBgNVHSAERTBDMAgG BmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3Bz LmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2AHR+2oMx rTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xWAAABaF6wHboAAAQDAEcwRQIgZ+Xn 4FOj/65r8OvpORzaWU/7nMEVsRe5pf8jrnUJmokCIQCfMvwoDatOoX1EXMUwd30H MLwsUK6Hidz5VHN43nFmjAB2ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVF R/R4AAABaF6wHZwAAAQDAEcwRQIgdlYvSUkg+3kP7imwLYo/bYtrlWjE3Z7xiQac T0WQRA0CIQCTHmVGsoBQ70slnrR1qbfThFLjAFFy+1TN5jhg8SVT1zANBgkqhkiG 9w0BAQsFAAOCAQEAcLuvy6kSDVIdo2Znc8TDp12KJELinZKHrqKu+9kpDTHppzJZ pMChz0G1RYcxhxuwj+7htuAd2mEHNEJex+zysNlKNZLXjwW6HLtFSfzBE3me+kmp Y+bvUcSDt6WpgdZLuKXmYgNbT+3TjvCJnWc22UnF8263yVnpgLRuKkN3bdcWuAyO 8OP9scQPDVgqMyHZt1JZ91urW/HV3SjlAXCvz9WjQdPKkZZil4pdHzMB/NPSX9zj Fw2MKUs5vtV+UHhXBRzQgOlPp+qutkJuS4MqywZBY/wQnnkJHl2k+lPgCXIz1OQ/ nnUiCsSecV43vVeDXrf1VGOVQeKtQ1qHjEClwg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsw2r+wla4JEf1QrgJAcq E98eOsY8yrumY+YGBvp12irQzpV65s97Ak85CAiLSW1o0pf4n8dPxivLsPl0ipGF GGxCdu4lwGzQLvqXY1Moa4ujuMf1HAvYv8+EtzRXAGhIp7IBYZ+Pi6dLXe9trf/d dbZ3EM4HzUhdqJI601OKQAU/KRd+I2vLZFlEo2plOECv/PwRFZ1zLHFkwXxAe0ka 74UQTxsSp5j5EDhbrlJBfaMpyNMkASXmOpAMM8/KoMRJQidUCpibOuta+QKua/LH IrwYZu1Ckzey0n8W26KWL/VPxUHLEq+HWzRroywb6V0c7ceYXErKaaRY4lPoURG2 D5JI84TbJ84mS3PD6LgILSfltPdV7Ya9P1S+3aZhWqqoFYmXpl+62JWoqwOu4XS3 PKq8Rnn+eqlx3AucOybypvJBpK8Sg5WXBWJsE8Fba6W4szpwvS7gMWCuBiU5xB3d 9/HlEuq7rwFFi98QIR/jl5LZO9UrhGcCA0Qp2GcYPMRWVc246TinVxQPWvwoByky mUrm3m2T06G5PMX9Hc8oQXfQgimlef9WGHPq5VkUjf9suRy8p4424kdNr8c2tWPU 5mceFPvZ+/tkdMZrWIc+EvrTo7K6HXWqztbzYpeRMftER4zPcarM2/+8ioYMSyoX Rf1RVtP4UXl9LogaUlwq/tECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 382232712703129271635147436318260340697770 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-18 01:00:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-18 01:00:26 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'avino.co' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 730474163467654034222287328213775634889891178601672675934092616538130564859148073789863986256080382559229113296804798346678761508763073655421778837005412563137323515421614535290161457725065714920056287057642122991682295715437000138546662028447174365005121527287745475025874708643561006580327641370440755532179255262898269315680311896593336039674134625529966760363686771955091277378827432538964973819913319686644751486968021412628257337373510216842660411418443140141699306115329303081923454465758359450162391508812259711390434855928338623021954282523586572991937752519561384049674053343654945827560149460345899838474391566378373827850432097120874564703533921211019232228457194603504179524497969641346868917042617935991189357028772870215442529915698386881827632083578414833360886280294431244407608063495239457671526175069281106916896171258078269312219605636489079794873992517885400612375153845601508096354634972657538169623270786344010520046258253800090591892419128222179844866684660441731627684361212261298057013114879996281840611523953165235521122196408757512772957041391289771837144284836494170651777129916568658298740799179610660346880311622186682393838137672707909692236978171457718457467932387759334227772365561680896152251858641 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2e4395257ef55f2f5687bb1809b4e8e19bac2b49 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avino.co' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc56000001685eb01dba0000040300473045022067e5e7e053a3ffae6bf0ebe9391cda594ffb9cc115b117b9a5ff23ae75099a890221009f32fc280dab4ea17d445cc530777d0730bc2c50ae8789dcf9547378de71668c007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f478000001685eb01d9c0000040300473045022076562f494920fb790fee29b02d8a3f6d8b6b9568c4dd9ef189069c4f4590440d022100931e6546b28050ef4b259eb475a9b7d38452e3005172fb54cde63860f12553d7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0070bbafcba9120d521da3666773c4c3a75d8a2442e29d9287aea2aefbd9290d31e9a73259a4c0a1cf41b5458731871bb08feee1b6e01dda610734425ec7ecf2b0d94a3592d78f05ba1cbb4549fcc113799efa49a963e6ef51c483b7a5a981d64bb8a5e662035b4fedd38ef0899d6736d949c5f36eb7c959e980b46e2a43776dd716b80c8ef0e3fdb1c40f0d582a3321d9b75259f75bab5bf1d5dd28e50170afcfd5a341d3ca919662978a5d1f3301fcd3d25fdce3170d8c294b39bed57e507857051cd080e94fa7eaaeb6426e4b832acb064163fc109e79091e5da4fa53e0097233d4e43f9e75220ac49e715e37bd57835eb7f554639541e2ad435a878c40a5c2