*.deanoakley.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:2b:ee:79:ea:4a:8e:a0:37:bc:ec:65:f7:1f:22:2e:3b:f4 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.deanoakley.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:2b:ee:79:ea:4a:8e:a0:37:bc:ec:65:f7:1f:22:2e:3b:f4Serial Number (int): 363398274787548905050602252662671735143412
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 03:49:4b:e5:d9:47:5f:dc:26:3c:e0:d7:dd:78:56:be:37:cf:11:2b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 59:dd:7f:b6:61:6e:ce:32:02:95:03:b1:e6:ba:73:05:27:bd:48:e4
Fingerprint (sha256): 0b:5c:da:a0:83:e4:ed:a7:02:a5:52:fb:f3:ce:b1:56:e6:2c:54:bc:7e:8d:40:c6:5f:07:c9:3b:18:a6:f9:ac
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate *.deanoakley.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.deanoakley.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.deanoakley.com
deanoakley.com
deanoakley.com
Other certificates including the domain name deanoakley.com
(limited to 100 certificates)
www.deanoakley.com
sni116357.cloudflaressl.com
deanoakley.com
*.deanoakley.com
www.deanoakley.com
*.deanoakley.com
sni116357.cloudflaressl.com
*.deanoakley.com
*.deanoakley.com
sni116357.cloudflaressl.com
*.deanoakley.com
sni116357.cloudflaressl.com
*.deanoakley.com
www.deanoakley.com
*.deanoakley.com
*.deanoakley.com
www.deanoakley.com
www.deanoakley.com
www.deanoakley.com
*.deanoakley.com
*.deanoakley.com
www.deanoakley.com
www.deanoakley.com
www.deanoakley.com
*.deanoakley.com
www.deanoakley.com
*.deanoakley.com
*.deanoakley.com
www.deanoakley.com
www.deanoakley.com
www.deanoakley.com
sni116357.cloudflaressl.com
deanoakley.com
*.deanoakley.com
www.deanoakley.com
*.deanoakley.com
sni116357.cloudflaressl.com
*.deanoakley.com
*.deanoakley.com
sni116357.cloudflaressl.com
*.deanoakley.com
sni116357.cloudflaressl.com
*.deanoakley.com
www.deanoakley.com
*.deanoakley.com
*.deanoakley.com
www.deanoakley.com
www.deanoakley.com
www.deanoakley.com
*.deanoakley.com
*.deanoakley.com
www.deanoakley.com
www.deanoakley.com
www.deanoakley.com
*.deanoakley.com
www.deanoakley.com
*.deanoakley.com
*.deanoakley.com
www.deanoakley.com
www.deanoakley.com
www.deanoakley.com
Certificate
The complete raw certificate details for *.deanoakley.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGHTCCBQWgAwIBAgISBCvueepKjqA3vOxl9x8iLjv0MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA4MjcwNDAxMDhaFw0x ODExMjUwNDAxMDhaMBsxGTAXBgNVBAMMECouZGVhbm9ha2xleS5jb20wggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoi/PPhsRIvuXQOYXOeDoPljjjv3fV BDwvFvM2qsmZJndqsLtbO+3gJ6/0DsoPeY3kASckJXyNg4bc8kyx7gV+BxGBiE26 pKhWqg7cpUBQ3eSPuvJEusXyNojgs8F8mYrTNe2q4jaO/5sUajQ/NhD0gMSmFzxg MUzClgjal+omq+NAJRaG6LMBiVLgEwn0AEylIg2ZWsgZekeTvc4THxgScmhQoFqJ FHjv4fTiDFNbc1PWJ0OxLbwDtF0n/nbk0RoVS0SwQnl6HKu5h9yaOw/zMjOMuWF1 5qRuLOzsJBzKqYGAKlRGJJvHdXro88IKXVnqG2+eFyFwihqhUHS2baMzAgMBAAGj ggMqMIIDJjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFANJS+XZR1/cJjzg1914Vr43 zxErMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEB BGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZy8wKwYDVR0RBCQwIoIQKi5kZWFub2FrbGV5LmNvbYIOZGVhbm9ha2xleS5j b20wgf4GA1UdIASB9jCB8zAIBgZngQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYG CCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUH AgIwgZ4MgZtUaGlzIENlcnRpZmljYXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9u IGJ5IFJlbHlpbmcgUGFydGllcyBhbmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGgg dGhlIENlcnRpZmljYXRlIFBvbGljeSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNy eXB0Lm9yZy9yZXBvc2l0b3J5LzCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3AG9T dqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABZXnBzYYAAAQDAEgwRgIh AIAwBQYZEKeK6iazmskMx0x7hXy3DaHMthyuYpVigSn2AiEAyE+0ZR/ZvHglmgUm D+9u6JZWlNSWACWqJBUkuBJYmE8AdwCkUBJpBVoVVF5iEas3vBA/Yq5VdqReSxcU RT4bIhBqJQAAAWV5wc0wAAAEAwBIMEYCIQCi8PH0olGlFDEA2DZ3sBTXmLttDNFR Ztkpc67GeIZ3DAIhAPAT0r7Cdr9vlXhKZghLXZs9NnyUq++LmrnDIHeBWFaZMA0G CSqGSIb3DQEBCwUAA4IBAQBRa8HU9L1+ZyCY6BFS/nObR6xoo2Wq6Ne7F5o1YHfp RDmgmx+XL57guTgb+IHC29orM7VH5PH+o1UO6F9p+m4vD3u5loOXXdalW4FxiV2v jvmzuuQHets/HJjkRnaGuVE/0wDztvsyXJ/+AgC9KyXNkUeOUENK33ivdfvhLZ1K 2+ilEA0qR8xZ+F87Ob+mXt0tY8Jc0Pgcpg5LYPVsk9YwkQWZWK8yCa60PrHXb7DZ FPm3whWcO5hL4u34Diq/YjKChmXhumjFcqKSSCXhoewQd+uF0exfpA9j65cV+55E 4HV6RH2xf7zDm1D5W1fFz/fWa1ervunHVrzoPw1xLftp -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIvzz4bESL7l0DmFzng6 D5Y447931QQ8LxbzNqrJmSZ3arC7Wzvt4Cev9A7KD3mN5AEnJCV8jYOG3PJMse4F fgcRgYhNuqSoVqoO3KVAUN3kj7ryRLrF8jaI4LPBfJmK0zXtquI2jv+bFGo0PzYQ 9IDEphc8YDFMwpYI2pfqJqvjQCUWhuizAYlS4BMJ9ABMpSINmVrIGXpHk73OEx8Y EnJoUKBaiRR47+H04gxTW3NT1idDsS28A7RdJ/525NEaFUtEsEJ5ehyruYfcmjsP 8zIzjLlhdeakbizs7CQcyqmBgCpURiSbx3V66PPCCl1Z6htvnhchcIoaoVB0tm2j MwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 363398274787548905050602252662671735143412 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-27 04:01:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-25 04:01:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.deanoakley.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21277048327668163455919223743148228404532176706649786082180093656642595607853938023463738715356767422243123393147862366147633911905996141050378946976138505207573555862126068329348568744069259005309573703401027366220645989028963179219376858807364938355994890653316535347764487223657199413871604330386489591446582808818048565069573786683721566846190740730640909046567445697595761235553982981221886783038851081224261922276259365337603403336188824852520220983184945533794851798245220628787721744528564531001505780316305452783107933371903802999343665306168660413068016007354557403440934382389591670441267822360422182134579 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 03494be5d9475fdc263ce0d7dd7856be37cf112b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.deanoakley.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'deanoakley.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016579c1cd860000040300483046022100803005061910a78aea26b39ac90cc74c7b857cb70da1ccb61cae6295628129f6022100c84fb4651fd9bc78259a05260fef6ee8965694d4960025aa241524b81258984f007700a4501269055a15545e6211ab37bc103f62ae5576a45e4b1714453e1b22106a250000016579c1cd300000040300483046022100a2f0f1f4a251a5143100d83677b014d798bb6d0cd15166d92973aec67886770c022100f013d2bec276bf6f95784a66084b5d9b3d367c94abef8b9ab9c3207781585699 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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