africo.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:c7:80:b5:eb:5d:92:27:be:da:c7:02:12:d6:7d:ec:67:09 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=africo.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c7:80:b5:eb:5d:92:27:be:da:c7:02:12:d6:7d:ec:67:09Serial Number (int): 329224134575519067037411073082623823472393
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 32:f0:b4:bc:5b:c7:94:9b:55:70:73:c0:d5:9b:fe:1f:af:3a:d2:b8
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): c8:93:9f:a6:de:bc:d4:3c:0c:07:d0:b4:1d:64:25:d3:12:38:71:25
Fingerprint (sha256): 17:a5:d6:2f:39:1b:3c:fc:89:44:3a:a7:ed:c9:a0:3d:74:c9:66:bb:3a:90:f9:86:fa:7c:25:70:44:87:93:43
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate africo.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for africo.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
africo.org
Other certificates including the domain name africo.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for africo.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSzCCBTOgAwIBAgISA8eAtetdkie+2scCEtZ97GcJMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MjgwNzQzMDZaFw0x OTEyMjcwNzQzMDZaMBUxEzARBgNVBAMTCmFmcmljby5vcmcwggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQD14W0LKTyayuVNY8CeTQ+sdxdIy/SD1EOP0tEF knYZTogPUetCIdscFjRxExgPp0Ta/LZkFblDbLV8THIl38GNNibI5qgx8loCWyvM 202jabKgY1dVNSnyy/Mgb95CWrVWN31s7Fm5zfOE/v42cUFGa6EV0gKLHEZ5jszG mPZCtLlbyTYC79cqd/wwyTCidhxDG8Eut7m1tZ6stPBP6c+7OcR6mX7HXeyLa0qu TpgMsLn/HiCZDozAqRVqztBWYmwhLwlOsE6B9BdJcBM7Nkf/Is1ond4lce/DEM1u 5DRsMiV2EkvnXs6hyv+TtOl2xr3DM44nGaSIQuwkvLDfpMMYo2Z9mmWKLTzexsAN u9FUpIY37VGT+53CBtuzQWUgocb/YRj7SNYtc5bbGdZD7ePusyWPzIdMoTh6r24+ LoIy8xZDZORDmhdG5Im/fzcb4xU3YpUTP/zaN/0mHpUIU/DziaGhFNpa9r+J9hbF /hCYXK7ebgaxFq/fGmzpGFoRhFj66ktIYeivz5LlcYSMb4JKicFL7eyuF21JFDXd L3y4NimJhlsECZ9r43lNZgFRfH3QJtEBO3onB0mSO+hdQdJgfEhT2HS80/elOceA G0Mh18dt4xPRQmKD4dl8e9dfOBkCidqpfkrKAs8eb53GlfDplxfuEJFYSpaMbkrI TxoMzQIDAQABo4ICXjCCAlowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQy8LS8W8eU m1Vwc8DVm/4frzrSuDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMBUGA1UdEQQOMAyCCmFmcmljby5vcmcwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdgDi aUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAW13CbEwAAAEAwBHMEUC ID05/JM2ssVbbrgPlxDpjFB3vvFz5FV74oSdClK1qs96AiEA9sANX04CJ2MAPu7B 52/0f22mmMKfntUlmtYkR1S9e1YAdQBj8tvN6DvMLM8LcoQnV2szpI1hd4+9daY4 scdoVEvYjQAAAW13CbFfAAAEAwBGMEQCIHNhGjeKvaxJJuDTZJfxyKp2fPR0jitf Rri52IfntxJfAiARJEw9xdeT5QKKAMDoQX8Us2hD61hKKG4Ivn5grtnJYDANBgkq hkiG9w0BAQsFAAOCAQEAd6r2CR6DmDU0SL5h70LGJ7lSYdxM9sZynpKlnv6T9mKP 8nqRLCB9IOA2TIfYl7WJxsKsenqEmuRFIztCQY5LA/bo5QPdCvhZH02GBRZk08Bd l9rbr7HHBmbGvEh8+xazIINqrl/h359dyWIIWhTH1hRgsRRdpGOh5JKh/rtpRXbZ liA7wEXlkaYBhFYsbIMIBZ/+V+ffVfGzneg+fbWJra4BsYko5XgGiEBGduvG0hUZ MvoJSTifaXyqzgGleQgUetrgE+rSF00zP+g2rQGaCQYUdiaZrKtD/i2eQSj6Dm78 BEHW6ZpcF04X07uSP9YcMZrZzYEyBMel5WfqPA0CKA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA9eFtCyk8msrlTWPAnk0P rHcXSMv0g9RDj9LRBZJ2GU6ID1HrQiHbHBY0cRMYD6dE2vy2ZBW5Q2y1fExyJd/B jTYmyOaoMfJaAlsrzNtNo2myoGNXVTUp8svzIG/eQlq1Vjd9bOxZuc3zhP7+NnFB RmuhFdICixxGeY7Mxpj2QrS5W8k2Au/XKnf8MMkwonYcQxvBLre5tbWerLTwT+nP uznEepl+x13si2tKrk6YDLC5/x4gmQ6MwKkVas7QVmJsIS8JTrBOgfQXSXATOzZH /yLNaJ3eJXHvwxDNbuQ0bDIldhJL517Oocr/k7Tpdsa9wzOOJxmkiELsJLyw36TD GKNmfZplii083sbADbvRVKSGN+1Rk/udwgbbs0FlIKHG/2EY+0jWLXOW2xnWQ+3j 7rMlj8yHTKE4eq9uPi6CMvMWQ2TkQ5oXRuSJv383G+MVN2KVEz/82jf9Jh6VCFPw 84mhoRTaWva/ifYWxf4QmFyu3m4GsRav3xps6RhaEYRY+upLSGHor8+S5XGEjG+C SonBS+3srhdtSRQ13S98uDYpiYZbBAmfa+N5TWYBUXx90CbRATt6JwdJkjvoXUHS YHxIU9h0vNP3pTnHgBtDIdfHbeMT0UJig+HZfHvXXzgZAonaqX5KygLPHm+dxpXw 6ZcX7hCRWEqWjG5KyE8aDM0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 329224134575519067037411073082623823472393 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-28 07:43:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-27 07:43:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'africo.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 1003105209344764851551527784078604830556334803024390290426792968625648517159013924080949003064622275398253354398083999756665701069198564041610702210529022981448269127681153509198636821772037328278881469165982371691514893374477209127969209047394962862789889724285732271110699945427309091756709602685387087092745685966674239953701336848899392669494573881043337425038542667365459142459844436303961114338613840724976921620119588071965520729223088901010590018676000944248940613153497635164686253494717739531993260867530541343861843333172414152060590143530818161209506933147793591850317818755113524441305048333457626139602724814167652586774939213319386264736909990525412856399699422864330980393751161860335911640440025695854225718227531498900765331483978650105473769082185942679589476552641379748801878003763946236195995382588516467525407861293099784912682040773882289901981912070057262363079166725374963539408203318344827161436124299011818800485953390083145093724537843335485263071600236578800504690938652308772804512294104980796931586387137533161312905828485671444566432344200134600948900219034708012769733219790655229595566996698671249987858092616223860663933299939358881070035312995662809131977613150643337890345551614137042759413533901 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 32f0b4bc5bc7949b557073c0d59bfe1faf3ad2b8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'africo.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016d7709b130000004030047304502203d39fc9336b2c55b6eb80f9710e98c5077bef173e4557be2849d0a52b5aacf7a022100f6c00d5f4e022763003eeec1e76ff47f6da698c29f9ed5259ad6244754bd7b5600750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d7709b15f0000040300463044022073611a378abdac4926e0d36497f1c8aa767cf4748e2b5f46b8b9d887e7b7125f022011244c3dc5d793e5028a00c0e8417f14b36843eb584a286e08be7e60aed9c960 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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