www.rehabilitationreview.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:d1:c8:98:83:55:44:bd:29:4f:04:21:01:c9:1c:cc:b8:d6 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.rehabilitationreview.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:d1:c8:98:83:55:44:bd:29:4f:04:21:01:c9:1c:cc:b8:d6
Serial Number (int): 332722509973787684826900958470956286523606
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: ac:c6:bb:3d:14:3a:48:37:7f:9a:16:24:e1:0d:31:09:72:1e:40:b8
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 0b:38:34:08:ab:af:06:0b:10:18:06:f5:0a:4b:93:9f:47:7d:e0:41
Fingerprint (sha256): 13:ae:6d:9e:52:14:48:91:cd:88:64:ee:19:66:57:35:dc:9e:c9:f8:84:95:42:9c:af:74:7e:a6:e4:a2:1f:e7

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.rehabilitationreview.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.rehabilitationreview.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.rehabilitationreview.org

Other certificates including the domain name rehabilitationreview.org

(limited to 100 certificates)
www.rehabilitationreview.org
rehabilitationreview.org
rehabilitationreview.org
www.rehabilitationreview.org
www.rehabilitationreview.org
rehabilitationreview.org
www.bufalo.org
www.rehabilitationreview.org
rehabilitationreview.org

Certificate

The complete raw certificate details for www.rehabilitationreview.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuVQiiS8WpyXRcpBa9Qza
nZKrKz2DuxhXCyg+3EmnZTe6yIrBzROl3I/cAD8nRoM5wbTyedySUJ1iOehvV+Oc
cnCN2TN+Yfh6GZbyNvnBbB6wV/y7pNnTV4v/Pm11RfylN+ngNSByu5NXIEZgNLE+
etCK5ln9aR469QZzHiwBcNs/pNkKiOPr/fN60DfTNLzj4Dz/P2Lr0oeKWEmLQQ1Q
7JghlN5JnmkmCU/AemZpmsK12zSaCdm0AVZI9EbCX5vteV5yVCkYO25Ck6H68gEg
isVgY8+LtzQz6E+7MPzAI1V63KFdrSnK1rgOHKCGk9eO2YHrPWaqMnRCMzmmprwf
/RQtoJ1sQO4LPU8hmX+opDhfzmVNJjiyLvTWJwYTrsjs9DKggC8ce4D1bUHJGzkd
bx/d+N0uDRKc8C/g+C6uKkFKVrZJqo4cmcwsKw6XtzdlazL1nS3Qo+zL3Ox8x1gx
EVIVmiIguJGvi2fh2ylXZrwQluA2PPtWh4Crx/1LYa5jGIlfU4W90+WEM0m5ZK/j
GbEx2I+eSOnnmSa7gmPIDcHwPt+C1hMNL7aIAkjfo1NnLfIKCr1l2C3eVUD6nCJr
W8e6bI6SePYOLYeUcv2ewMoHmvLXsaD2DrfFlcLr2XtIeFrXnrA4ygOJzatctqmf
qtkVGBSnV/Bb6D+zU4wCN9kCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 332722509973787684826900958470956286523606
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-01 23:16:16 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-30 23:16:16 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.rehabilitationreview.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 756074935666537773615940365649045590522250722576789492105063071373939297995216563542841806276931076384222067702285317777259790496793064132416272336287247248643908714050162311642119724405027245533213528807193935288135007930754593098591061840047558318773361058892575910909809628184557513619840900789962724722830920684003348533949029720995844197066478218277770662826072450751904514017567760261756285301005490110678817822051119495558168107606785258436241550233975578071186640400573583495132931620594160854041941042278776151818119547823968218434802873078783274879828636716035741515366551476574691347848473056674052354413623364155364578408025060007918610446259531988667089893610505899057612418312032277049933918465170469967997147404200170815024941684662333240610054428059244847888108467537479708538739235763688101172834745290175805847552598278699268710883414413079367258656500674382205097836721272392076337479817917715222930617134588490346950707490163093079099036635514016148781188347219240874668213164492137123898438122317573604484030755450356591412146995120999421215030186798116913139904150420341173946819558051260591267234565027021910939733028635256261609857447505254795249593790697707314574837264017662517454530028190295419390999541721
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							acc6bb3d143a48377f9a1624e10d3109721e40b8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rehabilitationreview.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016b158b415100000403004630440220017be0ec6cabcba828ae84433ea7cff3abdfdafdaefe01c8011aae5371943e0b022025a48b50a309e59eb5f4591fe5da143fbd2bc86f6e8185c9b39a1a79da488c03007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016b158b4367000004030048304602210087844ea569193804fcfc9590b6e5971d9b673252371d5c8e03d5701871d16bb802210080aa7fd685a9303b1223810d4b3144cc6c1257671d2237d4595da0c9befb6598
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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