www.parsimonia.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:9c:51:d3:c2:5b:43:d8:c2:01:23:59:ea:79:2a:bb:78:b9 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.parsimonia.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:9c:51:d3:c2:5b:43:d8:c2:01:23:59:ea:79:2a:bb:78:b9Serial Number (int): 314529674019261092711510241165502811175097
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: de:b9:d6:0f:1a:7f:e3:3c:ff:6e:c7:29:51:9e:74:45:de:84:b2:c9
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): d2:5e:ab:8c:74:0c:1e:7f:c2:c9:8b:8f:d2:c8:59:19:e6:4e:23:8e
Fingerprint (sha256): 0b:dd:48:77:85:31:25:85:c4:5a:a2:2e:b5:19:49:54:73:c6:b2:86:ec:c0:2c:cc:b8:e1:79:1c:80:a6:64:49
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.parsimonia.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.parsimonia.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.parsimonia.com
Other certificates including the domain name parsimonia.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.parsimonia.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXjCCBUagAwIBAgISA5xR08JbQ9jCASNZ6nkqu3i5MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMDUxOTU5NThaFw0y MDAzMDQxOTU5NThaMB0xGzAZBgNVBAMTEnd3dy5wYXJzaW1vbmlhLmNvbTCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMAYicssgNUP8bX4MPRaZqAfAeZ8 XfiZWwGxjefBBdkudqXoxiWeEkSu11ZcXKSGCVnpi8H4S+LwiIH18tMxpWVKkVkl L73zmsUsRdf5Tg/JRg8x8fU4k8Fjq1FCru/YTSnGefgB7ft5Cpk5Opud8x6IcxRi cbA8JVgMkhkEFYFn8a1rhTHJopVzcLUpxX0Ag2cT3T9qARkn55n7/d3h+MzNrvaf etNHv/QaIh5APPbgvzcMXc7GThqHVfIDkCe4J2m65ex2PSlvbSbl39Al+ifI3kAQ yXd4ugUkSvPBuL0n+LDzSGsR4MJ2/F1xu+PlCUxjYjop/1mL4uVVsBvrclsl5Gyj iK8ZOO1hHYFfZSI6QIY//kER22mNDYi9EFmF+l/2w2fzjbsOG4y4vy6Cg8BvcEL7 Ugxu+Bb/NVnVhRhybbF1h+YcQjBWAovvQa7mOvp8uzK6kJ188f1Uxxkp2feIRYXa RrgsuSY/kNloPN2VBDIhvJkOeVJMq5xPIae2oQnb6Rb/08CTpf2sArpOtLXCSV/7 X6d1G/w3WQcUR+bpolMKhszmSO5BdIOViBFlCA23nmGsQif/xn0jzExdHL/nHmB7 4ZEdY56BXaPZLHby7Xg7LgSkv7bJKz0fcQwaXVKr+NUCYZzF0NRTS/N2gP4YPrwO jDnTgkRbu6VA0lkzAgMBAAGjggJpMIICZTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FN651g8af+M8/27HKVGedEXehLLJMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISd3d3LnBhcnNpbW9u aWEuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBgYKKwYBBAHW eQIEAgSB9wSB9ADyAHcAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMA AAFu19y/BgAABAMASDBGAiEAznUER57MQKY10fg9zTyTX9WZRdvieZNCFRjBMPo/ EIMCIQDD6HSCimCCtd1c2ji5lvgEnOkoHp5E7DHMvYQNyiYD1wB3AAe3XBvlfWj/ 8bDGHSMVx7rmV3xXlLdq7rxhOhpp06IcAAABbtfcvwYAAAQDAEgwRgIhAIYOvcZg JMGvFZXMFnubuk4BCPvxB+a53NwFY6s8XBtFAiEAjONXvCOUmbEBNuFAlhEQmQkt zDeNvW3ABfo2/8xNHQ8wDQYJKoZIhvcNAQELBQADggEBAJHtJerlmP1jdlQNTvln LdU/sm+vMTw5B1LOGEryVPOGq6en1g9ozgBHDP3kcAhFHOVwncPFi9Xl2YQ38bJW q3mV3J4H7cxFqcbYr60tBk+RKCG3NPTkj8PuW9l9D3MNJyPK7NzrH+BHk5V14BC0 pAN3Ax/vhJ1d/ml22U1LCpTSuWJPOTIpBBN349okeUS3tDgVKXALHHdNNj9Sridr 6VmzsPUTkQlOAKvoslAwQoEuRRrpcVeMf3mrEVlRzq/Mn+kX8wdbhUl3EwLSrlY2 lxTBoo+TToe73v9BnM+k84E253KftoiIw/HFqpjQf/5e1CVDP1V0Lli+BMLGt3Yt G0U= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwBiJyyyA1Q/xtfgw9Fpm oB8B5nxd+JlbAbGN58EF2S52pejGJZ4SRK7XVlxcpIYJWemLwfhL4vCIgfXy0zGl ZUqRWSUvvfOaxSxF1/lOD8lGDzHx9TiTwWOrUUKu79hNKcZ5+AHt+3kKmTk6m53z HohzFGJxsDwlWAySGQQVgWfxrWuFMcmilXNwtSnFfQCDZxPdP2oBGSfnmfv93eH4 zM2u9p9600e/9BoiHkA89uC/NwxdzsZOGodV8gOQJ7gnabrl7HY9KW9tJuXf0CX6 J8jeQBDJd3i6BSRK88G4vSf4sPNIaxHgwnb8XXG74+UJTGNiOin/WYvi5VWwG+ty WyXkbKOIrxk47WEdgV9lIjpAhj/+QRHbaY0NiL0QWYX6X/bDZ/ONuw4bjLi/LoKD wG9wQvtSDG74Fv81WdWFGHJtsXWH5hxCMFYCi+9BruY6+ny7MrqQnXzx/VTHGSnZ 94hFhdpGuCy5Jj+Q2Wg83ZUEMiG8mQ55UkyrnE8hp7ahCdvpFv/TwJOl/awCuk60 tcJJX/tfp3Ub/DdZBxRH5umiUwqGzOZI7kF0g5WIEWUIDbeeYaxCJ//GfSPMTF0c v+ceYHvhkR1jnoFdo9ksdvLteDsuBKS/tskrPR9xDBpdUqv41QJhnMXQ1FNL83aA /hg+vA6MOdOCRFu7pUDSWTMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 314529674019261092711510241165502811175097 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-05 19:59:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-04 19:59:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.parsimonia.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 783682705404832609994402656468193399053180229890536916120531299309113213243485283219577021433188513125746374499821784322496447037398591548851573478225979106362856677858018820937059500896835821489102189181687990584424644285131320575343982468314658022411898041540135217975414790296427542791021608592231627842420717173221326881447605664331345865220544062874767670461057034793930794005023145094416171711727319768447924751900288958509543440729926384062218127613922004213130762190646906081595744270168282311174904943364264469024156459373714141940365276413024798048380592683857284816010389028368114190879786551190998500518249021217028369249018514636326653168997180751550672732987329854059364687811628223226601423303614091884778252090994960059938854017025581077104028618585931224718616475085690586135944423453372520812762507211058005241588426203987704007448908850619142528343751379797331547398486191910201702722804888184054667803355912536003575159187164431670512368203944708020441106753663066953667071114308049408029969238898835517400570814567112586744578822783132439568660258313816326243994668376587775840216257464630285399193381656332929610240401393800922992531494085196606421273334336017744688502310049058948243024155114593991325354449203 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) deb9d60f1a7fe33cff6ec729519e7445de84b2c9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.parsimonia.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016ed7dcbf060000040300483046022100ce7504479ecc40a635d1f83dcd3c935fd59945dbe27993421518c130fa3f1083022100c3e874828a6082b5dd5cda38b996f8049ce9281e9e44ec31ccbd840dca2603d700770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016ed7dcbf060000040300483046022100860ebdc66024c1af1595cc167b9bba4e0108fbf107e6b9dcdc0563ab3c5c1b450221008ce357bc239499b10136e14096111099092dcc378dbd6dc005fa36ffcc4d1d0f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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