aprissa.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:cb:b8:4f:d1:e2:fc:7b:5d:a9:5b:c2:b6:7e:d6:62:37:ef was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=aprissa.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:cb:b8:4f:d1:e2:fc:7b:5d:a9:5b:c2:b6:7e:d6:62:37:efSerial Number (int): 330659170679914808049011543385564841654255
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 12:20:65:22:a2:69:b1:5f:f6:c9:01:e6:74:54:49:fd:1c:b7:d6:ad
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 88:c5:87:d2:59:4d:66:62:21:8a:9d:a4:ac:35:7b:00:58:c3:62:87
Fingerprint (sha256): 17:bc:d3:20:19:59:c4:80:83:49:05:c5:4e:2d:61:20:13:04:22:7e:5c:d4:90:b5:8c:69:0d:8e:74:cd:d6:b0
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate aprissa.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for aprissa.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aprissa.com
www.aprissa.com
www.aprissa.com
Other certificates including the domain name aprissa.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for aprissa.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgISA8u4T9Hi/HtdqVvCtn7WYjfvMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MTIyMTM3MTBaFw0x OTEwMTAyMTM3MTBaMBYxFDASBgNVBAMTC2Fwcmlzc2EuY29tMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAvi+D9dackFgMj2CuuK8Dee9BN1jxQ/eOmSb+ MfO8Qc57c8ENSFBfFfRtfiPhQnfZTmlsxz8Mf/pzCiOXtMuJqp6gqdjOmI/2Ds88 78y0wL87Jls1GprBlFo5WD6qhCNipeTm8KRysGR3UrX7AfTx1mjCajD8Zcc9giTS U1K9Wg0DlAXZn+8XLqUe5NCQwCOWxZv9qiPfKEQ73vdXtiiHgbIvEGLclwszLsMv faoixWsvtS2GE/2/YRkSncSQ/vxCZjj5OV4TIdZlxfoIItwUPpybx6U73ZurAhXt R6OFSpDC+u/rYOcvo0uudaIldZLxYVietgtuPcDDVIzqVgI5gwLe5+49A4vYH11u 9BecAE7TMxkLemD5rkDBeFwDiICP/leoqWvUU/doxCgO1R99QuqaIjrY3x2xmf2/ mYpitQEY3o3xKprq5RVj0ajkiF83ugT4VDKmJNCpnh48DvnGVNCfq6cmgWvuJ1Sn edV23dhjZXC8goQR7ous4zXMhU1Co18/uHqdQtoPg8vGCgQIsIr8s6Y3/9rkTJAy q90wD4lxNNL7RMSHbVOd8AcGK1cnaS6X8a0iUtRiaMpvvOGiHandtTbawYqplVxa e6IwOuaA1K4Vw3OzZzK/LQhaoiBq4orqRs+FiexaVxV3QPyRS15yWnUYG7Yztkv+ Da9boHMCAwEAAaOCAnMwggJvMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUEiBlIqJp sV/2yQHmdFRJ/Ry31q0wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAnBgNVHREEIDAeggthcHJpc3NhLmNvbYIPd3d3LmFw cmlzc2EuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgw JgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBgYKKwYB BAHWeQIEAgSB9wSB9ADyAHcAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7 zFYAAAFr6FVEsQAABAMASDBGAiEA6P3vDQ7kyw9tl8vRhUYFY43vNtpi6cGikUen dhIjk7ICIQDDC8FC80nlzDzLVTZAGJKLgMrF12YCIjCN/3szwbw6nwB3AGPy283o O8wszwtyhCdXazOkjWF3j711pjixx2hUS9iNAAABa+hVRpEAAAQDAEgwRgIhAILR zUPWR7eY2/6uD1BchF+VTu5bPg2wJDcp3yJHuqRSAiEAnA78I/JsjwOww+yB+3Uo C11HPv9sHpjVIChxMTXl7K4wDQYJKoZIhvcNAQELBQADggEBAC76xstiymDXZ8Px irJR+3aUO6/U1Gh88Oz0uWm87WKtxZsVs51Xq2sdoout0xEmjZABdylqUZBbKU9N OE8bDdI8wxPSW94qKBzOxfdMdveCrbtuAMxKPC4OmhISxqkGXSVpEOeLcrPxcGmM zM8luNu3E80E4dvTLiU9GuIS+sSfYpfloSSCdyOEuiaSPB4v1Nbjup6R5o44zBTW gIXxOlXGQhUJdH1wX6CL6P2P8iGvBzCf75H/fVgl/9aAtdBK1LAIJSXr/d7Ppqt9 e9UNSPGDnySor4mIDpiXcvkHZIUs7pqC75uagObjKTIGm97EWdInZQPlVJlPITnW uOwFmpM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvi+D9dackFgMj2CuuK8D ee9BN1jxQ/eOmSb+MfO8Qc57c8ENSFBfFfRtfiPhQnfZTmlsxz8Mf/pzCiOXtMuJ qp6gqdjOmI/2Ds8878y0wL87Jls1GprBlFo5WD6qhCNipeTm8KRysGR3UrX7AfTx 1mjCajD8Zcc9giTSU1K9Wg0DlAXZn+8XLqUe5NCQwCOWxZv9qiPfKEQ73vdXtiiH gbIvEGLclwszLsMvfaoixWsvtS2GE/2/YRkSncSQ/vxCZjj5OV4TIdZlxfoIItwU Ppybx6U73ZurAhXtR6OFSpDC+u/rYOcvo0uudaIldZLxYVietgtuPcDDVIzqVgI5 gwLe5+49A4vYH11u9BecAE7TMxkLemD5rkDBeFwDiICP/leoqWvUU/doxCgO1R99 QuqaIjrY3x2xmf2/mYpitQEY3o3xKprq5RVj0ajkiF83ugT4VDKmJNCpnh48DvnG VNCfq6cmgWvuJ1SnedV23dhjZXC8goQR7ous4zXMhU1Co18/uHqdQtoPg8vGCgQI sIr8s6Y3/9rkTJAyq90wD4lxNNL7RMSHbVOd8AcGK1cnaS6X8a0iUtRiaMpvvOGi HandtTbawYqplVxae6IwOuaA1K4Vw3OzZzK/LQhaoiBq4orqRs+FiexaVxV3QPyR S15yWnUYG7Yztkv+Da9boHMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 330659170679914808049011543385564841654255 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-12 21:37:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-10 21:37:10 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'aprissa.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 775889584662499867511883308494974048187338995342143344385183389878617169168005139759893998936943087561674221987753428747486006652757528245964582630657243160522030366563085199080757573253915971789668877222855540348332609181927051156776036543166442890273790215825327567672286492088823768008718709874792459601385765643504272328904857114562537193433867215119354260760923164277246928002637131492730477112086109529266648490925863392040738399782539188880809413737091013551110921217163654277699774393020767834228176729661946231444958552934806980467629059252071010067256479246385940724751026733428170180414087665361442777514849156998054382783147811197943636351444791791945151327806314284912407444052757171586597569103677639572698013453940563926659034278538404049900431423995092285363389348192214629349020853889679029150772476743432714709132509796624399205258840669643839843661810583646522334439969422405953702603351621809256668847560054721738144696506091316316194397172136717411473596735484196615190893405586161693437333320467319087422961532724944369751044160827021250985331188300792269456220731120811697263545731118286864530820087195155656760679370236798182650438898277855443862297401281727276541372721361138771154492649247715006699475279987 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 12206522a269b15ff6c901e6745449fd1cb7d6ad . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aprissa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aprissa.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016be85544b10000040300483046022100e8fdef0d0ee4cb0f6d97cbd1854605638def36da62e9c1a29147a776122393b2022100c30bc142f349e5cc3ccb55364018928b80cac5d7660222308dff7b33c1bc3a9f00770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016be8554691000004030048304602210082d1cd43d647b798dbfeae0f505c845f954eee5b3e0db0243729df2247baa4520221009c0efc23f26c8f03b0c3ec81fb75280b5d473eff6c1e98d52028713135e5ecae . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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