usasoberliving.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:f6:a5:fa:dd:c5:a7:d3:29:60:df:5d:dc:08:6e:b0:12:08 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=usasoberliving.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:f6:a5:fa:dd:c5:a7:d3:29:60:df:5d:dc:08:6e:b0:12:08
Serial Number (int): 345266945249423156475519462727648759779848
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 1b:12:00:a8:f1:7e:91:94:b0:e4:36:30:03:64:0f:0f:17:27:b0:0a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 98:68:c7:fb:7d:09:c4:0b:2b:67:c7:74:f5:37:7e:b0:0f:f8:0c:90
Fingerprint (sha256): 1b:ea:49:bb:3b:8f:ed:d5:81:fd:60:4b:b9:29:12:5b:ce:30:9e:d0:74:a1:1e:b6:00:cb:97:f1:14:06:d2:9b

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate usasoberliving.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for usasoberliving.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

usasoberliving.com

Other certificates including the domain name usasoberliving.com

(limited to 100 certificates)
usasoberliving.com
voicei.com
usasoberliving.com
hotelsnegril.com
www.usasoberliving.com
usasoberliving.com
usasoberliving.com
www.bbweb.co

Certificate

The complete raw certificate details for usasoberliving.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 345266945249423156475519462727648759779848
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-01 23:31:59 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-30 23:31:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'usasoberliving.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 942657041659691417433925634359120312832748628238179225645787559778774948086305111753511842315486408905775185995092886262933078014719786491002579005663008040679877170753951542702382137886171417393753466131822408257296729672127437291689054964416360282824621027501618691122247529422641359798317500986209912029144110538707485820084787427372678940190202490366245185971275337833047574841390386568227965663951089378109583809146664866934674353726684207998807213146105126878621441136931683591456593029645550371696310182753980955883322725210951444649174307503228086112675579411583260425993042625857537163965424688590122200233061780855489661876891854239502939168648214380350818306131949651675670624869756578089307639381685773187425268962745604264503843332584026795531169127987290328776560962543839539647526241015094742737737459859408559577888906658483653001380709051014800173991573107459082551452961128255914999355878061681334608689876131882295495101772489319701338140303850407779814409682315666580767798494460533969828559985190096873745561155900926169082937240764761021659931333690021913051419634794035578778975083021325398526688677908998687764523855439337456739039902720844931417702451018538508070134878848878871684630412482550457176747099731
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:27|false] GeneralString '���~����60d'�
'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'usasoberliving.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016b1599a9d10000040300473045022030b46ce864a13614ac19347348890ecfa358911bbccb2a62a05933d17239ffc3022100c2958091b1d30dd481e53ca038f37abb46323b90941e312b7dce9d5ef1f25121007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016b1599a9c40000040300473045022072ebf4acaeae18dc3f7538e141c244d8660216edc647e053444cdf7f0b94eff0022100e9d74bd7384fd2be05cc319239fa01f4e4c8cf037c288904446a5f9c9f83efcf
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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