www.niv.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:d8:09:96:41:da:d2:a3:6f:8c:51:ea:5e:d1:10:8b:09:92 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.niv.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:d8:09:96:41:da:d2:a3:6f:8c:51:ea:5e:d1:10:8b:09:92Serial Number (int): 421962878214148092260795336257699681339794
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b3:44:cd:e2:cd:25:24:27:62:3a:12:73:1f:1a:86:b9:e0:8c:08:c1
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 0d:9d:ee:d7:85:4c:d3:50:5f:ac:c6:5b:fc:58:c0:97:fe:69:87:93
Fingerprint (sha256): 10:eb:75:c8:14:49:d5:8d:a6:be:04:bf:c5:b0:a1:cb:75:49:a3:35:7a:98:0a:b3:57:65:b7:4d:42:1b:1e:d8
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.niv.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.niv.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.niv.com
Other certificates including the domain name niv.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.niv.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTzCCBTegAwIBAgISBNgJlkHa0qNvjFHqXtEQiwmSMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMjQwNDExMDBaFw0y MDA1MjQwNDExMDBaMBYxFDASBgNVBAMTC3d3dy5uaXYuY29tMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAzbLlMxHOUq8Rq0gD2PiBMIFrrKABQ0jHri+F rdKfgvXD+aK3Rp8OfuXgb+hogJqwZ8DAENi4BoHiWDSZKWpOBKD+JNhtlooHcwzf CJxk2KHN3GIBEBDyJvsYCeI9gYFJGdA+hzmbSwiSpl/uXHRW/CAxpYJQMLneAoCe MFLPUI6caBjfa3EiBg8iFu5e02RiR+0pwIT5l6eWoG66UjCpwet7y793O7GBchv2 s62jIG/pxlNwlNa6rSK+KT480oksVySK81C0KOdN6e355vpvbsEPbTgU34H/qbwh gRFUfnz+YLWFLU0r2ybz5IDuhC1ACiCqmLdPMMph2K4lD/0d33nsThxyc05HPa7N LYbcyht+b/64z4m0+oFCZXLPpS2sEseybRKK4/lFojtWo8lMQTRKWUVOmDChXN/T sg++jwMSUvHrObnwwVMBV/y3c4TnOv7w2ydXOECxPT3adB5PIxdD1R7qxw2+9g4X g7FzoTJDaHLy52/Zm06yo4QtsVah8n8klzajuSdFBnzdZsts+qy0uYpBqwDBDO6l NJC22SrdavOQ3ADtuzDbqYkBr9Av+VX1c3C5nRnU+xx5guzl0ajRElLuB/tzDhlZ UWKs129lxJ4gBTuOrzVFwuswJtEWxyGuXt75rHWIxNhUTr2vlrtFoikdS8tk4E4W raKcyrsCAwEAAaOCAmEwggJdMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUs0TN4s0l JCdiOhJzHxqGueCMCMEwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAWBgNVHREEDzANggt3d3cubml2LmNvbTBMBgNVHSAE RTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRw Oi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2 AOcS8rA3fhpi+47JDGGE8ep7N8tWHREmW/Pg80vyQVRuAAABcHWbDfMAAAQDAEcw RQIhAJV8t6OuZQ6jL7SX1dMLtYvpOst9avHBhputVNU5sW1SAiARpzdJKW2mOLnd euzZ5QHXcjkpjXg8bCgPjwCR4BBO+gB3ALIeBcyLos2KIE6HZvkruYolIGdr2vpw 57JJUy3vi5BeAAABcHWbDekAAAQDAEgwRgIhAKGMwEvSIHP/ku6VTmdwmpoRYZAy OOSqOTdYYlPMU9MdAiEA0Hu3sjVJ2r6lawI58GFlXClmjGo/xtKRB0KE2RbaTlow DQYJKoZIhvcNAQELBQADggEBACZXcxmi51J+66jYpOBryZF8cK0L9c+wsI8rO1Ds QU1pTGic0qecln7UEazl+gvmQ0ymEBCyMIrOI6e98aQ9hF/QG7cA5C1fk2rBihNb vDpsFJWk9skIgdYlnnHqzxnNedtdsE3QpEFeGX8PjUiPkn2ZZNkon/bp2szQ+bfe N4uvJC6nu5BoZ3lWRka1FSHvBuE3xvcLQZyLnvgeo2qo58KxdWRXp7Qve+lQeefP pUhWD6K4CxiWI1bgyISUFZ3Avt6dPoNPbX9m/2eoVwtS+JC6FHx9ZdRMsi6CkzU0 XmraYnsUTNUT5ccan4EH5A1BDpK2VK/3lRa2njykpYWtJA4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzbLlMxHOUq8Rq0gD2PiB MIFrrKABQ0jHri+FrdKfgvXD+aK3Rp8OfuXgb+hogJqwZ8DAENi4BoHiWDSZKWpO BKD+JNhtlooHcwzfCJxk2KHN3GIBEBDyJvsYCeI9gYFJGdA+hzmbSwiSpl/uXHRW /CAxpYJQMLneAoCeMFLPUI6caBjfa3EiBg8iFu5e02RiR+0pwIT5l6eWoG66UjCp wet7y793O7GBchv2s62jIG/pxlNwlNa6rSK+KT480oksVySK81C0KOdN6e355vpv bsEPbTgU34H/qbwhgRFUfnz+YLWFLU0r2ybz5IDuhC1ACiCqmLdPMMph2K4lD/0d 33nsThxyc05HPa7NLYbcyht+b/64z4m0+oFCZXLPpS2sEseybRKK4/lFojtWo8lM QTRKWUVOmDChXN/Tsg++jwMSUvHrObnwwVMBV/y3c4TnOv7w2ydXOECxPT3adB5P IxdD1R7qxw2+9g4Xg7FzoTJDaHLy52/Zm06yo4QtsVah8n8klzajuSdFBnzdZsts +qy0uYpBqwDBDO6lNJC22SrdavOQ3ADtuzDbqYkBr9Av+VX1c3C5nRnU+xx5guzl 0ajRElLuB/tzDhlZUWKs129lxJ4gBTuOrzVFwuswJtEWxyGuXt75rHWIxNhUTr2v lrtFoikdS8tk4E4WraKcyrsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 421962878214148092260795336257699681339794 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-24 04:11:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-24 04:11:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.niv.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 839177929226614089100315828855148824190521644492708872791234442203858054692025709875404689880224698303340422130246791308544453839105762797264458780169126999290726614617608214589875544764067810936884902419750318718874276993761734541615595241607773825510513967851308818307117262165081968372351925263056001552763854832992480339653729225038420943569128025599483527070113640346475170267269438600453885842170114429122229047689481206915160843329687348425877892701410120209839398723236840388120628669909243081479735597135728495322831750074259623798133893172671297746293374726192276438208595797396915389176267225543766596754891962393288820158413414502097590727516639575693301554615205371422332814363628234236332049613480039204846123790133578267796583183680390552450643303086616234543655237869763091231981127525834096968658214345812488712854848904323548402669608145783219375380150635675038323855195633248316367606045141510088980359326911099871950747868872894866511917402570540738353316353822979958310699205834269786532293493893955821595938803364549394861680661932242711633593451700380752731061019500339566951934465403896583541310271248412734728748269274802902125719141798807738877534599884726314257846100140685743381901561345085561338490309307 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b344cde2cd252427623a12731f1a86b9e08c08c1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.niv.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e00000170759b0df30000040300473045022100957cb7a3ae650ea32fb497d5d30bb58be93acb7d6af1c1869bad54d539b16d52022011a73749296da638b9dd7aecd9e501d77239298d783c6c280f8f0091e0104efa007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170759b0de90000040300483046022100a18cc04bd22073ff92ee954e67709a9a1161903238e4aa3937586253cc53d31d022100d07bb7b23549dabea56b0239f061655c29668c6a3fc6d291074284d916da4e5a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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