bernier.info
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:13:50:f1:64:00:14:3f:f2:4d:f7:a7:a5:1d:c7:95:82:a3 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bernier.info
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:13:50:f1:64:00:14:3f:f2:4d:f7:a7:a5:1d:c7:95:82:a3Serial Number (int): 267909814378231498280907635042702559904419
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 1f:b1:1e:f3:60:fc:a7:87:e9:4e:77:9d:3d:e9:fc:1e:ec:77:26:0f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 09:e8:3e:fd:65:c5:90:ee:f5:fc:75:cc:8f:db:48:2b:40:fc:d3:fc
Fingerprint (sha256): 17:61:69:3a:40:55:6f:fc:10:41:3d:88:0c:3c:3a:46:69:7f:22:bc:b0:e1:03:a0:11:f0:b7:90:33:96:98:83
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate bernier.info
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bernier.info
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bernier.info
www.bernier.info
www.bernier.info
Other certificates including the domain name bernier.info
(limited to 100 certificates)
Certificate
The complete raw certificate details for bernier.info in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGDjCCBPagAwIBAgISAxNQ8WQAFD/yTfenpR3HlYKjMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNjA1MDQxMDIwMDBaFw0x NjA4MDIxMDIwMDBaMBcxFTATBgNVBAMTDGJlcm5pZXIuaW5mbzCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAMtcA37oN9c9FrOiHgwJHd3P06Iy95NZU6NA labVLIre/g9nCTPa4FLkxMMwqc7ZNIIDRPXsyUBn5FVE0S8fBNStuK1ln6n1hYLn XzKiNhz7fydhPnGvxuQdlNExjbP9yasi3uoMWtxdATVcGoiD1DQJoQNhOn3vxidx WYkO1zh90Ql6aIQMaekxsRk0hwz1SdEVTAkm6UvP8i+CEjoZe4mLjDD+chH/E5LW B9h/H3HdeC+6iZvQSkGS2EfMpu4IMwM5P+3OvsAhFge4ktTdWKUgHW/mqYVgPQM7 IwMsJ16NnGHa4LMYMPIL+VmHPM2c4v+x5NvV9mozAPD+p20m72oCxyt4e2/JFuFg CbPxlrGGvVkp66H0wGYXHvZvZLfzIC3f6BMoXYuU1Csajl8rFeGMZqE0BIpoia4x ENRtxqJL7GuJwEx6hbqqOGrw63OubSbwhhhnWiOXT7wagl6sa6dY3VL71RZxBE9c 68GDKBjs01rWYy+1tKjVNXzilYsC7mHPcEsyunTeE4IMFQyBAX7v5GCtX0wLXnJd SbF2A7JmC0n2m8h7oGEqrsqHa3qhnGni5DwgLy+Ou/eCSpAiq3Vw2jl9OFwQUygH 0PtJc8/TZylUKMdV03ijEsuu85wajVyNc8w/z4Wf91o3VejJQ28/PK47Vj0a3h8A K0/tT5/fAgMBAAGjggIfMIICGzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFB+xHvNg /KeH6U53nT3p/B7sdyYPMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MHAGCCsGAQUFBwEBBGQwYjAvBggrBgEFBQcwAYYjaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMCkGA1UdEQQiMCCCDGJlcm5pZXIuaW5mb4IQd3d3 LmJlcm5pZXIuaW5mbzCB/gYDVR0gBIH2MIHzMAgGBmeBDAECATCB5gYLKwYBBAGC 3xMBAQEwgdYwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3Jn MIGrBggrBgEFBQcCAjCBngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5IG9ubHkgYmUg cmVsaWVkIHVwb24gYnkgUmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5IGluIGFjY29y ZGFuY2Ugd2l0aCB0aGUgQ2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0dHBz Oi8vbGV0c2VuY3J5cHQub3JnL3JlcG9zaXRvcnkvMA0GCSqGSIb3DQEBCwUAA4IB AQBEz3aakF6MHGOaq2/nJiydLudCSetzP81tXHXlgL8KBOWa0ydFV5MbXWvYBiRF xWCuBEadmdWvfYfXxe4A84gAPebAHepM17kptUXm4bGtuBuC6D4HWm2Gmv1ER7ah EXDkKipBluPBxm4xqF1OSDrnSWwFLHN/SSMIrEP8LyFYOPCv6h8cr5fYzWPB7gzA Q1jrGeNGpX6jNVTHwPjtAq7zRPqrOJiMoDx+2df83UBIq8Sxw+fgKqN2oZTih01D ll0tsHZ2qpK4IK7CURgtX1fkNZ7LcbwI8TysoO4nvjSr2wryvmFyaFlAxwApfaGp qjfthA6FrvHzc5xVmVOM1Vhw -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAy1wDfug31z0Ws6IeDAkd 3c/TojL3k1lTo0CVptUsit7+D2cJM9rgUuTEwzCpztk0ggNE9ezJQGfkVUTRLx8E 1K24rWWfqfWFgudfMqI2HPt/J2E+ca/G5B2U0TGNs/3JqyLe6gxa3F0BNVwaiIPU NAmhA2E6fe/GJ3FZiQ7XOH3RCXpohAxp6TGxGTSHDPVJ0RVMCSbpS8/yL4ISOhl7 iYuMMP5yEf8TktYH2H8fcd14L7qJm9BKQZLYR8ym7ggzAzk/7c6+wCEWB7iS1N1Y pSAdb+aphWA9AzsjAywnXo2cYdrgsxgw8gv5WYc8zZzi/7Hk29X2ajMA8P6nbSbv agLHK3h7b8kW4WAJs/GWsYa9WSnrofTAZhce9m9kt/MgLd/oEyhdi5TUKxqOXysV 4YxmoTQEimiJrjEQ1G3Gokvsa4nATHqFuqo4avDrc65tJvCGGGdaI5dPvBqCXqxr p1jdUvvVFnEET1zrwYMoGOzTWtZjL7W0qNU1fOKViwLuYc9wSzK6dN4TggwVDIEB fu/kYK1fTAtecl1JsXYDsmYLSfabyHugYSquyodreqGcaeLkPCAvL46794JKkCKr dXDaOX04XBBTKAfQ+0lzz9NnKVQox1XTeKMSy67znBqNXI1zzD/PhZ/3WjdV6MlD bz88rjtWPRreHwArT+1Pn98CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 267909814378231498280907635042702559904419 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-05-04 10:20:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-08-02 10:20:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bernier.info' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 829634085505774173166452294781494080370934389268380533738364366652279907230864089277585386015233949752679544677665783536066487201521549252612761562165017877824266350712982979753295354031441355151882240860074568992665071553932050981958382517692959745735952688565892381076144128877269566683958654314649525692824434577240822677517940606197456597270329856682037836296709323882977628899920442462736136592531871766651820789173774225057827986069834030044322417008014957747634735498538573491733503873031057670151995338334448288845857894986640135514960736871828090250497634865241057424977836863790351397019191627398843923450137436485027494121690197730719611695555801117009351077910346006890934887945016428232691736785616735016406151111228492472253600271055613032739785604459799490380336807945310743451004437500045953869073026658710683497888835964259432170370927454328429982067361611101350835441982907101237998514385594126361705035059312043658845652641185083891998329565577442719398526305117172405355805736214840859591555226395010144141247691885114390148921292672951001741617888270445212391994394110007078396500879590098872958153433538859612087536541229411934690078269227861275413231957468017335906057329836554858744339834585333115714393841631 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1fb11ef360fca787e94e779d3de9fc1eec77260f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bernier.info' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bernier.info' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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