zavion.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:e6:e2:76:d6:52:25:67:f7:dd:1b:d1:9a:7b:cd:ff:48:ab was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=zavion.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e6:e2:76:d6:52:25:67:f7:dd:1b:d1:9a:7b:cd:ff:48:abSerial Number (int): 339902824752117225776237497955082934634667
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 89:92:42:9e:c6:05:bc:8f:6a:ca:1a:ec:68:86:e0:01:b4:ce:ff:38
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 5b:95:bf:3f:b9:ef:ad:1e:a3:94:2f:3c:5e:eb:be:fc:03:24:0b:b0
Fingerprint (sha256): 16:a7:ac:f9:e9:df:d9:93:1b:50:68:42:32:fb:e0:6f:1e:e6:e6:93:48:40:09:26:bc:e4:2e:c5:99:16:9c:00
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate zavion.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for zavion.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
zavion.org
Other certificates including the domain name zavion.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for zavion.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTDCCBTSgAwIBAgISA+bidtZSJWf33RvRmnvN/0irMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMjQwMjA0MjNaFw0y MDAxMjIwMjA0MjNaMBUxEzARBgNVBAMTCnphdmlvbi5vcmcwggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQC1ro897Rre3gthJFGRKF9bXgDqBWTY/OUCH79j 3qdHexJ026baN31iWwVsDdESt/KfN1KjQ/6grCGAJJiRN2UYuM5WC5g1rDpNICpw QG75kYVmFrptdSpsoSEPi9nocbB2eo6TzG6EqShF8/mEyqAvsb7kjZMn4r8l5TJF i2aRqLN7YaAZpaNWb/1+vu6kyaNzrf1o/blbGYu8VSSelKYLx0h8QpvwmTz+3wcH u3RqndF/KhaUNyicuKkCvfh13yjk36f3GsiXB3wScMgLdzY7sa9eQqCefGy2ogGc cN4EKqstQMU42s13oGn+hxfNm6iPp4tsv4tEtED1x8Gaap6KIFQKYx7X4dexfWyI dPe5dpj8CscbWH1/vz66GYTEAGuHCyZItzpV+LkwKP8/h+Rcr2Lz+FK71yT0LkGw MF9n4p/rx9/ouKZ9yJmF+VuNHOf81MmD6vy4EgsvED2l4FWb7G3riytZcjcg02Gc fEbc+dAe6BKnhTQZaI3FewboziR60bm9LAXYyUeH0nEi7W5xydqhixa38obARevk ySBms1VoiOSak473k9UdhAXnX6panAcpMPRcAQ81zEz9rO8xlQymQBWlLYySNnnv vtGNM4Ux1u4Hd3U168HmD183phGqvgh5WRUTSRKq2xltFm2YOcKTzaPLR3TejNDj EevEqQIDAQABo4ICXzCCAlswDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSJkkKexgW8 j2rKGuxohuABtM7/ODAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMBUGA1UdEQQOMAyCCnphdmlvbi5vcmcwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgDw laRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAW37uOwBAAAEAwBHMEUC IFk5ACsNLv6uQ93UGGYBtxER7ao5GHLFPZQpMUUbQF/fAiEA9E9/wiFzLjC5hAhs FiFbaiOl5VXVfyfKt5L+TKI25uwAdgAHt1wb5X1o//Gwxh0jFce65ld8V5S3au68 YToaadOiHAAAAW37uOw1AAAEAwBHMEUCIQDsGHwmFpjobhEVHowGsJpMYrCy4uIF tXxAj5OQiTCxqwIgeato10moy4lJSATUSa4EYPWqgjnLT/hwbt/IyXxq/VkwDQYJ KoZIhvcNAQELBQADggEBADIYIRFcmRtPQBU4W5EHbB7Mzt8OgaucdN7ylh9IU5Ca XCC5QdTlRIBsogHwW3OGS92VU/el9rXbsNn03ybEmKth+yjmZ0c9kl57e/vyJa7m gxrxGg0O8/VlE+Zy96ZW9DjZi5zkkLF6D4ddcze48cerfm833Je698lp8UOMGgcj FtqvWR6GqlTBV1NFQOWLA+XT6uM4yTjUK82s1V454zcSgqV+X6nTB3hMBjitDP3n rBqUMxrpf8g7jpSQKbNU98L8j8mr0SKvZ0ZyBIJdUFdzVko33tz6RqfKxKyuOqRb KrJeVltK3eBYJzyWAwvV7VOyQkGyTPpBve4uK1lLRyM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAta6PPe0a3t4LYSRRkShf W14A6gVk2PzlAh+/Y96nR3sSdNum2jd9YlsFbA3RErfynzdSo0P+oKwhgCSYkTdl GLjOVguYNaw6TSAqcEBu+ZGFZha6bXUqbKEhD4vZ6HGwdnqOk8xuhKkoRfP5hMqg L7G+5I2TJ+K/JeUyRYtmkaize2GgGaWjVm/9fr7upMmjc639aP25WxmLvFUknpSm C8dIfEKb8Jk8/t8HB7t0ap3RfyoWlDconLipAr34dd8o5N+n9xrIlwd8EnDIC3c2 O7GvXkKgnnxstqIBnHDeBCqrLUDFONrNd6Bp/ocXzZuoj6eLbL+LRLRA9cfBmmqe iiBUCmMe1+HXsX1siHT3uXaY/ArHG1h9f78+uhmExABrhwsmSLc6Vfi5MCj/P4fk XK9i8/hSu9ck9C5BsDBfZ+Kf68ff6LimfciZhflbjRzn/NTJg+r8uBILLxA9peBV m+xt64srWXI3INNhnHxG3PnQHugSp4U0GWiNxXsG6M4ketG5vSwF2MlHh9JxIu1u ccnaoYsWt/KGwEXr5MkgZrNVaIjkmpOO95PVHYQF51+qWpwHKTD0XAEPNcxM/azv MZUMpkAVpS2MkjZ5777RjTOFMdbuB3d1NevB5g9fN6YRqr4IeVkVE0kSqtsZbRZt mDnCk82jy0d03ozQ4xHrxKkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 339902824752117225776237497955082934634667 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-24 02:04:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-22 02:04:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'zavion.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 741197376258697869169705286013685508815067868826233111041437626166614135707627976164037688659641587985099959199109277891336975398248291444962841817415136980941282865699225230864572237657674565920666393382285229517699018262483609387190278585391536026430313423659657544263351583833672042185690047043963047501460847343933244054178627305627636707429780754857273739702636198298323812662714661862076190434474690435044250790374820398853010027459758449037966222304098036761533611729055674444332715843544453294990932911581143667442049874672930048017828255008969479581509678501705102413773932822585529103675150805429800817684926728164182809375884620787570536919494796115440172302951627471123142350994604819127764929403047141405846797310439042857199278823534927547831834188461557455229287912421124863933155585226910390611610405558103211654496315776181617107941395368991553412442463802823387303952027993603075960948462517991115781421889101403983451254768194306439814627779644999507615959041692196613965744615588571109530947659413245715951925417306719375890638416008816851570086661857923045930005086450519904136938094610002382534905497765447342468739166202172370485652384304388368818559954459575436796977113654240563933835089883707821012311327913 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8992429ec605bc8f6aca1aec6886e001b4ceff38 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zavion.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016dfbb8ec01000004030047304502205939002b0d2efeae43ddd4186601b71111edaa391872c53d942931451b405fdf022100f44f7fc221732e30b984086c16215b6a23a5e555d57f27cab792fe4ca236e6ec00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016dfbb8ec350000040300473045022100ec187c261698e86e11151e8c06b09a4c62b0b2e2e205b57c408f93908930b1ab022079ab68d749a8cb89494804d449ae0460f5aa8239cb4ff8706edfc8c97c6afd59 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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