www.usjco.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:ed:fb:b0:43:d6:bc:a6:00:2e:07:7f:b9:d5:10:8a:e8:cb was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.usjco.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:ed:fb:b0:43:d6:bc:a6:00:2e:07:7f:b9:d5:10:8a:e8:cbSerial Number (int): 342318330202666925881549003541454567172299
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f6:49:ae:66:7b:a2:d1:7c:d4:4b:2e:22:d7:7d:44:f8:8b:14:15:13
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 65:6a:91:fb:90:0e:33:d4:48:67:a5:47:21:2f:8c:fa:c5:51:d1:26
Fingerprint (sha256): 1c:9d:30:2e:be:ae:aa:a9:e8:27:53:f9:36:79:98:ab:6b:ce:92:73:f9:eb:71:d8:ee:87:41:34:7a:47:a9:a2
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.usjco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.usjco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.usjco.com
Other certificates including the domain name usjco.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.usjco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgISA+37sEPWvKYALgd/udUQiujLMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMTgyMzQxMzVaFw0y MDAzMTcyMzQxMzVaMBgxFjAUBgNVBAMTDXd3dy51c2pjby5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDlZRXv73nUWPSAqwil27gKsBDcUrdMrc/u Da8W9xgWHPjHsyHYvaYvVF5PsgHluh5Ewa0hfFKnqHuxEtWJ+/v02sqyfBdF79oa j35M3ZsotNy+E0/Qsk+Je1+rHvn5LF09YuLK2A/8m2+VhC+8q+0OtISUqw0nnyjA 3Ozvch8860POC1hCYpHJaSxHHEtiTOEVQk78DiwRdlpLhjN1evOMLXGbSCXBf2cj yd0R67KjkVvAknlF0zCoOK49KmHOP4nnpObcA1sQd2CkNSNPadeeh8M2s/lbUeru TSg7Eho2Jg1Wu5jkAyJQcP0p59Be7WGimL+Lklt2XCAA9ouq4rNrzHXYWtAnXPhC z9dcCWqKslodX756D0IOj3xzGJY7+pSIiuHpmQPmIrRtbCCqDbVMb9m7vpcYGUK7 KuQGqQWfkz67h6rs8rjTIqH2yfyEz5IeUQEw2+6Om9URx+hO74MksfdShlIhOVPT ITAoUOszXNoAjA80e59CBSvoqzjbgDY43vm2qmNlmIxiA9n6Ahmc+BFANi9gpXQw icQ4jWQ7BWU+Ju8ufXwLD1h3m3YpwUycuSc34IlilF7O3PhkmyXANS2cVrBn4IZn +CQEI9QvHiU0gsUjckM2tCLVDQNnfQArFASoErS6xP6XauPQTTzaPoawcQoEzuF+ QJu0BbVArwIDAQABo4ICYjCCAl4wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT2Sa5m e6LRfNRLLiLXfUT4ixQVEzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXd3dy51c2pjby5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHy APAAdgDwlaRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAW8bmlAmAAAE AwBHMEUCIQCVQ0axRMHCkohQ7qI1RWWtJaIAL8+FTsrTV9p6DcTYbwIgXf9BubyG xSKzT+J7k+VGBOXblc0znVteZVa4YDbPcv4AdgCyHgXMi6LNiiBOh2b5K7mKJSBn a9r6cOeySVMt74uQXgAAAW8bmlAYAAAEAwBHMEUCIQCIAghn903c2zhd0TCYg8r5 VVxh2gI4RUiUm5mSNl3roAIgfM3ZrYw1jpXE9p6yt7J9ThfW0e6XboxYikQSedFh vvwwDQYJKoZIhvcNAQELBQADggEBAF2AW6HNdpnytiZevgTfjV5vNfhP8Vp26wgn T2sgcrbK9NcZSKiBhkt9n2AQTndrh/0lncM8fnMPIPGuWxk8NHgqH5eKDLjHm52x c6Nyy61UtUi2Jpi1uFsS3qILcjL+ohWJh5mzhBazyCAjh9OWxbsvwg2rq7ZQ6hLV jxPLxgqBbzXdstIIs1xpmLPe4Du7FwIa41kMhalHQ0QPQTkgJMObikUBcLvaGLyd tkO9sGfStygwEHMeRRowekMP1AFwWg5XMzaNU08UbPBwvR+PyFDlPBxBh2LjCBTM lgQpwWC/9BGGE66qlfFPRVnEOiuIZhwKKJmNBDb+u2HMqlEmuEw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA5WUV7+951Fj0gKsIpdu4 CrAQ3FK3TK3P7g2vFvcYFhz4x7Mh2L2mL1ReT7IB5boeRMGtIXxSp6h7sRLVifv7 9NrKsnwXRe/aGo9+TN2bKLTcvhNP0LJPiXtfqx75+SxdPWLiytgP/JtvlYQvvKvt DrSElKsNJ58owNzs73IfPOtDzgtYQmKRyWksRxxLYkzhFUJO/A4sEXZaS4YzdXrz jC1xm0glwX9nI8ndEeuyo5FbwJJ5RdMwqDiuPSphzj+J56Tm3ANbEHdgpDUjT2nX nofDNrP5W1Hq7k0oOxIaNiYNVruY5AMiUHD9KefQXu1hopi/i5JbdlwgAPaLquKz a8x12FrQJ1z4Qs/XXAlqirJaHV++eg9CDo98cxiWO/qUiIrh6ZkD5iK0bWwgqg21 TG/Zu76XGBlCuyrkBqkFn5M+u4eq7PK40yKh9sn8hM+SHlEBMNvujpvVEcfoTu+D JLH3UoZSITlT0yEwKFDrM1zaAIwPNHufQgUr6Ks424A2ON75tqpjZZiMYgPZ+gIZ nPgRQDYvYKV0MInEOI1kOwVlPibvLn18Cw9Yd5t2KcFMnLknN+CJYpReztz4ZJsl wDUtnFawZ+CGZ/gkBCPULx4lNILFI3JDNrQi1Q0DZ30AKxQEqBK0usT+l2rj0E08 2j6GsHEKBM7hfkCbtAW1QK8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 342318330202666925881549003541454567172299 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-18 23:41:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-17 23:41:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.usjco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 935849404253394937467336755618118379052832705825632932026248156437605421031220638508966564314875245872525231901247576450158041434505080911521835082025120072601069999786423230902150460726766797570943527287730173609719730953940691638594428743085651900752784969495240828983035717247918222098702798474305378677370445047330681960159974763379842313732936930828315400981216945195179449221807121710855825158660339798935683317318504545869080742367323358560287578488132754821153604204072680163762187094871115691842639396855306495389144178463357939164561126773957035270089012867864095047271760556891783410112781884009216584989022909079643655279579141711173556337901541721805935123437100261501907560456246590521523996005339759876076492892126057949962337555440276559698759070457321723968268720093522891043598187818892207925451135397970548840238165878305498565993787821649021673267296311997196826054417451710978643509682133634722216204129287895209099501368906080459855826421289506770734178961396673608714076366568477863728696190020754940889748206615493152343877269835771776539831741035756854306426005448566092148245320914867522353211969439383827626033132835250926767566538397551616526619243468264206882239389294345484865168946761938394133896183983 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f649ae667ba2d17cd44b2e22d77d44f88b141513 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.usjco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016f1b9a50260000040300473045022100954346b144c1c2928850eea2354565ad25a2002fcf854ecad357da7a0dc4d86f02205dff41b9bc86c522b34fe27b93e54604e5db95cd339d5b5e6556b86036cf72fe007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f1b9a5018000004030047304502210088020867f74ddcdb385dd1309883caf9555c61da02384548949b9992365deba002207ccdd9ad8c358e95c4f69eb2b7b27d4e17d6d1ee976e8c588a441279d161befc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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