webapp.siia.umich.mx

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:87:6b:de:c8:39:47:5c:04:8e:be:37:55:0c:75:52:f6:1b was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=webapp.siia.umich.mx

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:87:6b:de:c8:39:47:5c:04:8e:be:37:55:0c:75:52:f6:1b
Serial Number (int): 394530647407839270556227893324548494521883
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 87:68:1d:35:4c:6b:e9:cd:b5:8b:2d:2b:78:07:f8:5c:1e:80:0f:04
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): fb:31:8b:cd:3f:3a:e7:3f:f9:83:bc:22:11:c1:6d:40:36:3e:cf:05
Fingerprint (sha256): 12:c7:ca:39:77:5b:9d:d3:2a:11:5e:91:dc:b3:46:ca:e0:df:6b:d1:69:9b:80:5e:2f:36:08:5d:25:ad:52:ae

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate webapp.siia.umich.mx

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for webapp.siia.umich.mx

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

webapp.siia.umich.mx

Other certificates including the domain name umich.mx

(limited to 100 certificates)
pidcb.umich.mx
siiaapp.siia.umich.mx
www.conservacion.tortugamarina.umich.mx
contaduria.ced.umich.mx
epmorelos.umich.mx
www.mcif.fismat.umich.mx
contaduria.ced.umich.mx
www.mcif.fismat.umich.mx
culturanicolaita.umich.mx
rges.umich.mx
revistauaricha.umich.mx
contaduria.ced.umich.mx
pimcb-foro.umich.mx
geociencias.umich.mx
www.ciac.umich.mx
asesoria.qfb.umich.mx
derecho.ced.umich.mx
inceptum.umich.mx
webapp.siia.umich.mx
cic.umich.mx
atenea.umich.mx
cursos.ced.umich.mx
geoquimica.umich.mx
realidadeconomica.umich.mx
iim.umich.mx
www.muhna.umich.mx
artes.umich.mx
diac.umich.mx
uplzc.umich.mx
paricutin.umich.mx
www.med.umich.mx
telefonia.ccpiu.umich.mx
difusioncultural.umich.mx
derecho.ced.umich.mx
www.5ert.umich.mx
epmorelos.umich.mx
www.exporienta.umich.mx
fim.umich.mx
inicit.umich.mx
www.epler.umich.mx
13ariipn.umich.mx
mindinganimals4.umich.mx
derecho.ced.umich.mx
devenires.umich.mx
reloj.ced.umich.mx
zeus.umich.mx
pimcb.umich.mx
rfcca.umich.mx
13ariipn.umich.mx
www.cic.cn.umich.mx
milenaria.umich.mx
artes.umich.mx
reloj.ced.umich.mx
inceptum.umich.mx
ininee.umich.mx
uplzc.umich.mx
artes.umich.mx
rnee.umich.mx
vinculacion.umich.mx
webapp.siia.umich.mx
www.culturafisica.umich.mx
www.geografiaeconomica.umich.mx
mdc.fcca.umich.mx
biologicas.umich.mx
www.cic.cn.umich.mx
www.diac.umich.mx
correo.ced.umich.mx
cic.umich.mx
geociencias.umich.mx
www.cic.cn.umich.mx
vetzoo.umich.mx
agrobiologia.umich.mx
cimexus.umich.mx
www.conservacion.tortugamarina.umich.mx
filosoficas.umich.mx
rnee.umich.mx
www.isaacarriaga.umich.mx
geoquimica.umich.mx
rnee.umich.mx
epmorelos.umich.mx
paricutin.umich.mx
mdc.fcca.umich.mx
paricutin.umich.mx
devenires.umich.mx
vinculacion.umich.mx
alum.siia.umich.mx
umich.mx
exconvento.umich.mx
www.zorros.umich.mx
www.conservacion.tortugamarina.umich.mx
realidadeconomica.umich.mx
devenires.umich.mx
moodle.ced.umich.mx
geociencias.umich.mx
artes.umich.mx
secgral.umich.mx
posgrado-letras.umich.mx
webapp.siia.umich.mx
sabermas.umich.mx
difusioncultural.umich.mx

Certificate

The complete raw certificate details for webapp.siia.umich.mx in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwIYkGWtg3vw/TdCZPjOa
4M7gMU6Xn+jkp6oaH6wn8C/Rfk28/PFwW9cKv08jeaPTRC33FJKabtjWjMZd0Hc/
1ygGry9HIIXdElZFTBhqzXxKf2v5Hgf0H2JO6c+EB7xK4Rw+J3hueQ3MeLukskub
PMY7MoDlDo8JuMOLGZePbLw7I4lzGFUnvcqI1BzKbvzD7a8qRlu+aaV3OWFe8+VL
maYCSR3lbjIa9uTwWG8p3UfYJ91b7zHSFgO4g6Y1wHQ7zg0yytkKFIUa0q+vBMwu
cH6Qsr8Vs5myrz+WjPrdq/Quq8JnfbEGjELJc8OKVxqeGc0xJNGY/Crq6axej6XG
1QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 394530647407839270556227893324548494521883
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-29 15:03:12 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-27 15:03:12 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'webapp.siia.umich.mx'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24303901952276756607756989568825595666249503883417168233936546372745476435600184850051606347251913925682399086945346928652569241432853524800123390092586845419158982229333240068161621507599183153299940558030812477007331962919963544068541315625214434394833996152491994495937574544954694455400854310714575448975266267701779282298410256312643884388452351075249762724167316609773791530386130411963999662701537169813998289310383344923832638448841881409851349603540651616215206540256883327080791107242239592800387508124880038784392076825400537151343248571284315356780565160513309087183353096775931517326668523897218809579221
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							87681d354c6be9cdb58b2d2b7807f85c1e800f04
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webapp.siia.umich.mx'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016c3e78b14f0000040300483046022100f4366171375bfbc4a437dc6670eb28ae557f81d363217d504c0067d3ee52c6ea022100c049ac77c190b603e93c8a343799a342653d7bb607f1af1e204ac8ba2d3db31f00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016c3e78b1410000040300473045022100dd221a7eafa94f83d7a0fd309e903b84aafb5c688b7d00e1bfa0c6cf8483c7a6022047577b7850f879bd3148c97605eddb7f424e7597832d7c838be6b9eebca5f426
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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