abbigail.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:a2:06:69:6b:7e:9f:ee:22:fb:31:12:c4:d4:d2:50:ad:e6 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=abbigail.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a2:06:69:6b:7e:9f:ee:22:fb:31:12:c4:d4:d2:50:ad:e6Serial Number (int): 316471123975867698746703636787978747031014
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d4:33:55:3e:3b:d0:3e:59:2a:19:cc:fa:a9:e4:e1:20:46:dc:53:88
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): f5:57:a4:06:3e:87:38:05:fc:63:aa:84:a8:8d:0a:94:5e:f8:86:69
Fingerprint (sha256): 19:fa:44:44:f8:05:83:e1:2a:c9:db:f3:f1:69:be:47:6a:a0:bf:ad:0c:5a:bc:0d:19:9e:67:79:8b:87:e5:ca
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate abbigail.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for abbigail.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
abbigail.org
Other certificates including the domain name abbigail.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for abbigail.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISA6IGaWt+n+4i+zESxNTSUK3mMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMjMwMTU4MjBaFw0y MDA1MjMwMTU4MjBaMBcxFTATBgNVBAMTDGFiYmlnYWlsLm9yZzCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAN0sEe5iD4cuyCaYrMF7FhRQMQLQh1LpBjJA mpZUx8r/6rLIY44zcTarimnb4H0+dmcwNIGGo4jmnW9wegkliOE2nGuZJTeiSlrt pUMsx9OjZa5SGr49/VoQ8DvOzPFSkVeHB/cnibbkX9G/lvIUK8up9P5KXSxkiWQ3 XgVPPr+jyCZeCi4Ap/KqHPzTazwvwqgm4M/OB6kHYq+mxqLHV/YXXAFkAGvQ+hf9 qa2YGnOp4LRqrg0tMyYXJ5dEKYLuSMdny1Y+8diFDflfYU5ox3I5yf7W0vZRFy/D X+wpy4s2rt3zBNzmN6ganOpluNLzxcUWtz/q0KMAuGb62WvXHYD5HyPUA7bULnJT b8BcqR9XxfbE/5IwjtVvfVtdI3WHe+Kq3ZomHndEW//UCf+k2T/E8dSVkOeJy3EO ypZFE4ycwpaAjIQr045srNaGvtTdlmwaqrmCgEAQPJ3NjGgitUp7NA7pGcY3ae11 qViltN3y/LAiHii49oy4AfBlv0Vmva670m22oEEqJonadb+dzysoXft2wGnFzNQ0 dkUsB3/B1V/BXkvk8xkAeTWt3GaJIUQYHQ9saydilsd0auEIprCDoxAUfT/2/ea0 wCh45n4U5enTiSafSKqoXdCTTqLilsse/QIPCw09H9wO+DQRFvZ3X1pmYL8uPfpb KT7cZQ4PAgMBAAGjggJiMIICXjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFNQzVT47 0D5ZKhnM+qnk4SBG3FOIMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMYWJiaWdhaWwub3JnMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDx AHcA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMAAAFwb/s8GQAABAMA SDBGAiEAjmvwvYjcJv6EvbhrIDlGBNMmp+RGNflnarPiJ+Rt8WICIQD03HtidKjR hxRD37yNhebggd1wSiEKe171jqX4ix69HwB2ALIeBcyLos2KIE6HZvkruYolIGdr 2vpw57JJUy3vi5BeAAABcG/7PA4AAAQDAEcwRQIhAJJaJFq/XMCBvN3YYkS2HwtR okZXAnCRLzTSEEBfM0zpAiAlGk5AZGoKKFaW2ESBAEvYplWs0a24d835FYVkd3Fh MzANBgkqhkiG9w0BAQsFAAOCAQEAQui+2YZXHw6VkoNfQnmzM2Y85QCRLDbAwvLM usxX8PrQE1/RqdxGmhNhx9yMiOnDpG+CswyP0H1xGyWL1KQuSCHzps8MwngWA9Kr x05up702a7ALXDQCyU8FkIpduE5M+MYKOhhGaaQV/QqfvZuwzw9bMkg/QGB/oZGt 7olFS5YgE9b3PsLfbN5Mpz2FviSjpRvwh1mQJQUuMzmveYwUC0DSDjCv7B23sALI lQp9AMZLgVhNieUhqGUE18+kCSXdakbuNfLigPcRRRNjVTxbN/lxdqZDaS81Re2M 9hxSK0PO0WzJl7VirQeBf3FmBMJOzYv7cXcuwBeD87ygh6SjWw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3SwR7mIPhy7IJpiswXsW FFAxAtCHUukGMkCallTHyv/qsshjjjNxNquKadvgfT52ZzA0gYajiOadb3B6CSWI 4Taca5klN6JKWu2lQyzH06NlrlIavj39WhDwO87M8VKRV4cH9yeJtuRf0b+W8hQr y6n0/kpdLGSJZDdeBU8+v6PIJl4KLgCn8qoc/NNrPC/CqCbgz84HqQdir6bGosdX 9hdcAWQAa9D6F/2prZgac6ngtGquDS0zJhcnl0Qpgu5Ix2fLVj7x2IUN+V9hTmjH cjnJ/tbS9lEXL8Nf7CnLizau3fME3OY3qBqc6mW40vPFxRa3P+rQowC4ZvrZa9cd gPkfI9QDttQuclNvwFypH1fF9sT/kjCO1W99W10jdYd74qrdmiYed0Rb/9QJ/6TZ P8Tx1JWQ54nLcQ7KlkUTjJzCloCMhCvTjmys1oa+1N2WbBqquYKAQBA8nc2MaCK1 Sns0DukZxjdp7XWpWKW03fL8sCIeKLj2jLgB8GW/RWa9rrvSbbagQSomidp1v53P Kyhd+3bAacXM1DR2RSwHf8HVX8FeS+TzGQB5Na3cZokhRBgdD2xrJ2KWx3Rq4Qim sIOjEBR9P/b95rTAKHjmfhTl6dOJJp9Iqqhd0JNOouKWyx79Ag8LDT0f3A74NBEW 9ndfWmZgvy49+lspPtxlDg8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 316471123975867698746703636787978747031014 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-23 01:58:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-23 01:58:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'abbigail.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 902303644080509393644446572016282590672069145607757970890531832780933811274637833145652944374476442047115967323071265567082768251872148068692247929509271326409605200482240447358077129527539231251229504362926326726817966619515501700346082073224249138061476606443171990674985602443218893994050761244700643836438125673369351382722842047223593969308954730666580287740331462357938559886866167552687678769009701858050735832816159612188621993362687752959932403055997610631483889974831249771877535516852692780892879436426293385486853165091435522343334355590862003050348753810103914679101328722957835166365310438494959332317768113422431135169865036758477227614481840674087188551463268807979217696409236680106909767987313305126211461293741664279022548842213917850800893274393324420807860072223525914453189667188158265459535309450635754470279349616217415283988823998327335687012722056806881858037942564187512869613542634180044850337989348499991856376067777914320946761761445838355833635513968363140592056748100968580427700247116260482971343575042475986345576850090134918020355672795599525945668296207182429328598825121797092965943913980594582952382705240911720933455312319840098864885294145547231179742766496078832626933692550996075141690363407 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d433553e3bd03e592a19ccfaa9e4e12046dc5388 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'abbigail.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb273000001706ffb3c1900000403004830460221008e6bf0bd88dc26fe84bdb86b20394604d326a7e44635f9676ab3e227e46df162022100f4dc7b6274a8d1871443dfbc8d85e6e081dd704a210a7b5ef58ea5f88b1ebd1f007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001706ffb3c0e0000040300473045022100925a245abf5cc081bcddd86244b61f0b51a246570270912f34d210405f334ce90220251a4e40646a0a285696d84481004bd8a655acd1adb877cdf915856477716133 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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