www.canarie.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:12:ff:19:6a:f1:7d:c5:15:03:1f:46:de:39:2f:aa:2b:26 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.canarie.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:12:ff:19:6a:f1:7d:c5:15:03:1f:46:de:39:2f:aa:2b:26
Serial Number (int): 267801025515272578237349818123624693508902
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: d5:17:87:7a:5a:16:e9:18:be:9c:2c:49:63:97:fc:02:d0:c2:3a:5b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 5c:79:d1:1c:d0:d5:e1:57:4c:cf:d0:f7:00:14:29:aa:d3:54:08:aa
Fingerprint (sha256): 12:2e:9f:36:32:b5:dc:5f:b5:e7:85:b4:9f:6b:22:38:61:4b:6a:4e:f3:34:75:d8:ae:05:26:ed:e4:61:f1:cc

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.canarie.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.canarie.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.canarie.com

Other certificates including the domain name canarie.com

(limited to 100 certificates)
www.canarie.com
controversy.world
canarie.com
canarie.com
www.oyoon.com
canarie.com
90441.com
www.89594.com
parsimonia.com
canarie.com
canarie.com
canarie.com
www.canarie.com
canarie.com
canarie.com
www.parsimonia.com
www.canarie.com
www.canarie.com
www.canarie.com
canarie.com

Certificate

The complete raw certificate details for www.canarie.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 267801025515272578237349818123624693508902
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-25 03:48:11 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-24 03:48:11 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.canarie.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 748569984192316464625441127592574321085823571107528271425203355505582615538269071741172274300000154895343944705953826023351469473435560414857411678928460839622979517503125821743973036958107376192819010568883334510350353139354947544586358065875576704217362808272721000220939574769562088167056635789458958461962338901873146525623433035429450599497064552240472020265343310097338893880890616654721437369766524192928472632568782546170228268851326465414486020667052948421623978053922697180243914700956444559815226465964053266476236955749944497948255287777749302724480751785234643946641744408439416934804433411727449760206270689340884554886385860368077539673102834433585562689387169536310017883853564875767049963426278022604226043647219961657876430302541419564708667405217168380017974638632794548431433125464521568225873259624353115002655796795041066815159694170822700083557734539366342798212426110321827414700147230322770714130972854920774003975811468285537581505121799503514632739928497500157833967682155196041464547671656552334150844971096298655680884185544446363831698444119771060690196980798055056327831320538021350379381296929809800347969437970269865216079467951964276614658126885780334857960940959687567167294361093758929715527456287
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d517877a5a16e918be9c2c496397fc02d0c23a5b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.canarie.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d66bf88b0000004030046304402203e3da1dea260009477e1c643f1b3819aee882cdc14cd722b40118a5eb190186002202136f3bda29abe02ef4677d2fd794acc993bbf6d7d153431e148d979330b9738007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016d66bf8a810000040300473045022100c3da041e92dc188bc3c677819545c5367470ddaa48eedead0164b4886cef69d102200f70ee04c34f08c9510845ad15f8579f6268f29ad41daac3c696f2d4b8bf90df
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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