usasoberliving.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:f6:a5:fa:dd:c5:a7:d3:29:60:df:5d:dc:08:6e:b0:12:08 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=usasoberliving.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f6:a5:fa:dd:c5:a7:d3:29:60:df:5d:dc:08:6e:b0:12:08Serial Number (int): 345266945249423156475519462727648759779848
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 1b:12:00:a8:f1:7e:91:94:b0:e4:36:30:03:64:0f:0f:17:27:b0:0a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 98:68:c7:fb:7d:09:c4:0b:2b:67:c7:74:f5:37:7e:b0:0f:f8:0c:90
Fingerprint (sha256): 1b:ea:49:bb:3b:8f:ed:d5:81:fd:60:4b:b9:29:12:5b:ce:30:9e:d0:74:a1:1e:b6:00:cb:97:f1:14:06:d2:9b
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate usasoberliving.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for usasoberliving.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
usasoberliving.com
Other certificates including the domain name usasoberliving.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for usasoberliving.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXDCCBUSgAwIBAgISA/al+t3Fp9MpYN9d3AhusBIIMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MDEyMzMxNTlaFw0x OTA4MzAyMzMxNTlaMB0xGzAZBgNVBAMTEnVzYXNvYmVybGl2aW5nLmNvbTCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAOcQRNJoFL97/KxPv0dc7vHOOsAB s1+A3y5wK0Jbo9zRpBSaj/Ui7rZ8J1yIWFzkUJoLUB4t2LzoVhz4gjPDyVtw4gfY 0yddOYxapkTwNR8m8Tw5K+ZG6q8Y7VKkOVqtXDRQ+v2kk1Rc+z/ynr67MaEHY4NE ecgLik/3tr1/T63QS7VbpmdhpY8zXj9FHKABehJDUvLI/FOXnX5LhRl3lR3ylXAg zMuYiRg1mM7kfvWS92zyO3F2sqRnkV91ZelJRTILYK5lkC5aea0h3nMgCCzLAmS2 Z2ZjrEThqgGv5qkEqr9bhsVPQIss/VtrZ4hK6N2WDsCG405W+9ExdjtvMioK6IUx 8gSK2cmOnBLFqbXBJd5vy8OUEBm3upfRkI/R2L6pBTulToM93IXNqENTOc6DpM9D cj5g6GZn5UsRDHP7Kn4kF5B5+c26sZ/6xkxu/7x06WO61dMEYYSDoc6iKRb7MRR9 n0PEMSvOQe0A6xDvY7JVqG0gmuVhP3PijB8qM6JEfyvPhFaUTfSffQ7jaaXBkjD9 fSJ842RgKjKKktG3NT4ZTWhKWkWUmPkLbyh+8KUKpEU+r1sA0qzkWi0PkLH91AO+ zsFEpjaqchOnp8OmUl35d3s87NvKNzshJVmxO37eWICIbCFC4/PKT23vDv9gkkNv 1PNrpwTslmgN20ZTAgMBAAGjggJnMIICYzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FBsSAKjxfpGUsOQ2MANkDw8XJ7AKMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISdXNhc29iZXJsaXZp bmcuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHW eQIEAgSB9QSB8gDwAHYA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4A AAFrFZmp0QAABAMARzBFAiAwtGzoZKE2FKwZNHNIiQ7Po1iRG7zLKmKgWTPRcjn/ wwIhAMKVgJGx0w3UgeU8oDjzertGMjuQlB4xK33OnV7x8lEhAHYAKTxRllTIOWW6 qlD8WAfUt2+/WHopctykwwz05UVH9HgAAAFrFZmpxAAABAMARzBFAiBy6/Ssrq4Y 3D91OOFBwkTYZgIW7cZH4FNETN9/C5Tv8AIhAOnXS9c4T9K+Bcwxkjn6AfTkyM8D fCiJBERqX5yfg+/PMA0GCSqGSIb3DQEBCwUAA4IBAQBBCqObrsv8UEy2lHeSef/v 3PGVLl1BWhKOmZl4L2QmUIXVdryoX7U1JFG3NyyUbdEcVCzfz5PdFa8y0EPJdV6a lCZxC9ABX4t/kL8RRLC41NCA1FmIxNtglxlUYVQ2EWoC2VoLlxw0sfOAAlvu1dVl BXyC0slAvcqoSsS2J60uDCUZkvIt86FEF++GVqEtD/ajcfdTIyqKos+oBQg8xpWc IdDOhMAxMZdTKXA6b/fEwQhApwCbQp6/N4XnLTSs3nybiaXOOFQbup5A9QDrQlgk XgOGFIXqg1zZgMHCQTdzb6IvsRHnt+B7C5W+TBWeQmaCKRGUs/M40BvSp+xJgaQ5 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA5xBE0mgUv3v8rE+/R1zu 8c46wAGzX4DfLnArQluj3NGkFJqP9SLutnwnXIhYXORQmgtQHi3YvOhWHPiCM8PJ W3DiB9jTJ105jFqmRPA1HybxPDkr5kbqrxjtUqQ5Wq1cNFD6/aSTVFz7P/Kevrsx oQdjg0R5yAuKT/e2vX9PrdBLtVumZ2GljzNeP0UcoAF6EkNS8sj8U5edfkuFGXeV HfKVcCDMy5iJGDWYzuR+9ZL3bPI7cXaypGeRX3Vl6UlFMgtgrmWQLlp5rSHecyAI LMsCZLZnZmOsROGqAa/mqQSqv1uGxU9Aiyz9W2tniEro3ZYOwIbjTlb70TF2O28y KgrohTHyBIrZyY6cEsWptcEl3m/Lw5QQGbe6l9GQj9HYvqkFO6VOgz3chc2oQ1M5 zoOkz0NyPmDoZmflSxEMc/sqfiQXkHn5zbqxn/rGTG7/vHTpY7rV0wRhhIOhzqIp FvsxFH2fQ8QxK85B7QDrEO9jslWobSCa5WE/c+KMHyozokR/K8+EVpRN9J99DuNp pcGSMP19InzjZGAqMoqS0bc1PhlNaEpaRZSY+QtvKH7wpQqkRT6vWwDSrORaLQ+Q sf3UA77OwUSmNqpyE6enw6ZSXfl3ezzs28o3OyElWbE7ft5YgIhsIULj88pPbe8O /2CSQ2/U82unBOyWaA3bRlMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 345266945249423156475519462727648759779848 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-01 23:31:59 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-30 23:31:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'usasoberliving.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 942657041659691417433925634359120312832748628238179225645787559778774948086305111753511842315486408905775185995092886262933078014719786491002579005663008040679877170753951542702382137886171417393753466131822408257296729672127437291689054964416360282824621027501618691122247529422641359798317500986209912029144110538707485820084787427372678940190202490366245185971275337833047574841390386568227965663951089378109583809146664866934674353726684207998807213146105126878621441136931683591456593029645550371696310182753980955883322725210951444649174307503228086112675579411583260425993042625857537163965424688590122200233061780855489661876891854239502939168648214380350818306131949651675670624869756578089307639381685773187425268962745604264503843332584026795531169127987290328776560962543839539647526241015094742737737459859408559577888906658483653001380709051014800173991573107459082551452961128255914999355878061681334608689876131882295495101772489319701338140303850407779814409682315666580767798494460533969828559985190096873745561155900926169082937240764761021659931333690021913051419634794035578778975083021325398526688677908998687764523855439337456739039902720844931417702451018538508070134878848878871684630412482550457176747099731 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:27|false] GeneralString '���~����60d'� ' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'usasoberliving.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016b1599a9d10000040300473045022030b46ce864a13614ac19347348890ecfa358911bbccb2a62a05933d17239ffc3022100c2958091b1d30dd481e53ca038f37abb46323b90941e312b7dce9d5ef1f25121007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016b1599a9c40000040300473045022072ebf4acaeae18dc3f7538e141c244d8660216edc647e053444cdf7f0b94eff0022100e9d74bd7384fd2be05cc319239fa01f4e4c8cf037c288904446a5f9c9f83efcf . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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