www.abbigail.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:36:b0:e9:af:69:7b:13:9a:84:1a:47:e1:65:1c:6e:d7:56 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.abbigail.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:36:b0:e9:af:69:7b:13:9a:84:1a:47:e1:65:1c:6e:d7:56Serial Number (int): 279947263099216328833882425026313817347926
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 48:73:bc:98:5b:fc:0f:e6:bc:e1:77:aa:e7:a7:b4:8a:c1:fe:a8:77
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ec:74:4e:24:bb:b5:e0:d2:26:55:08:c7:a4:78:89:17:a6:32:76:5d
Fingerprint (sha256): 20:06:c8:d2:8d:a0:ea:9c:cd:fd:f7:93:3d:af:dd:f4:e4:7d:8f:42:6f:f4:d3:4b:da:78:0d:2b:e6:03:64:2a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.abbigail.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.abbigail.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.abbigail.org
Other certificates including the domain name abbigail.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.abbigail.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWTCCBUGgAwIBAgISAzaw6a9pexOahBpH4WUcbtdWMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MTcxNTA5MTZaFw0x OTA5MTUxNTA5MTZaMBsxGTAXBgNVBAMTEHd3dy5hYmJpZ2FpbC5vcmcwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCkVYi1N0TigkDIjDW4gVNCvdGEvJBV 5gXePoEIyIk8JLo7KrrBpetGOxkWyQrWVKVLa3hHPvYyDBRTZGWQBXi+vbcaph9h 0JXQBgvgF7S65R7CASd9IL9OqOQTvgMoL6oRQtmma5VK5EEzCYzjiNnUbuTkwMgF hk75M3J/Q0QAZq4FoPnaUpfb3iei4KSISuH8XLrD7+zbUVzlC8bm+ww3saUOQm6n 0gPBAWUUnhYXuDb1Mt8qo3YGXwsd3VTCbTyKdOBbBKHXJ1iuy4iKOXxEVhsS5wm8 zMsXQ6m47HwRcPHDpu8QfKeerzTte9RcEZSmWi29BTCdL0QEFX2F19PzOi09at9U vP0/VqrmkMFFoIM4wtdxQqYCAYsQzflGDuMOWXnC6Hch+z1MhM4to2i+YBs5NfiG +S7OaHbh5xjKMYWN1ZngQAvQV/7yz/v2I5kcYvTFi2wiaFYqxX0C7OR2TUGENKEQ yPmernyuf7AFFqub9FCqWy5PB74bR14kmuet3s8PHTbyz1tiK4eFSkLTkUK3285k RYpebLI8WMr/ADEYfbuXqb3aX0Pq5CGYfMrl9zIgsHdP3m8Q2GLyqSGHF/8fH+rZ 50rCQ9dJfq9iV4ZgaWU0+xnXyo6OTuCJNw/dZgT87AyNZ/Zj7a/LG+abGET9W+Bz tQcMr9CKEoKi/QIDAQABo4ICZjCCAmIwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRI c7yYW/wP5rzhd6rnp7SKwf6odzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHd3dy5hYmJpZ2FpbC5v cmcwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQC BIH2BIHzAPEAdwDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWtm MySZAAAEAwBIMEYCIQCfBfylLJIEBnfC+t774UkqT1egBbmiAC0IDDNW9Qx/3gIh AI11+TJ8HZ18nvJkJWyOlAREAUw24va04o5OWUPC6VRIAHYAY/Lbzeg7zCzPC3KE J1drM6SNYXePvXWmOLHHaFRL2I0AAAFrZjMkkQAABAMARzBFAiEA1jKFCtyjbVGU 3AZLZwatP1vdwbj/bV44+XrAS5EaZeICIBTZ16M9IvXLFiEls4Ipau+XsGz12+iX W8K9StQ7Oue1MA0GCSqGSIb3DQEBCwUAA4IBAQAWGTmq3Yjschzr1kiGU1XxRU6T fE/mW62e8pJs8Axfhmybooqem9gg2qKODY1oXBmQaBODf9qo3QSBn5BTA9nHYIRJ bvDRCGS3H/HFybe0/zCLt/JJCkBHcxmogfD0WB09CBNPtb+3kvRRldid0i4B1syr 5n3UlXle+5i05GF0wlIbolB4rqV0q0sUVnGlOk8uTQrSBvkHEUY9lcMg8W22NKoa QLUFo/pXmaBozvH6/m5/Q+GjOjnkwfkuBSD6blfFZf3gzo37tIdtymyKHX2TGA0a g7bvRXWQ0cmtDsCF8ARuQDfa5Nm68Vll8uRiBOHdlwzGhYV68qtFMEOdxm0a -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApFWItTdE4oJAyIw1uIFT Qr3RhLyQVeYF3j6BCMiJPCS6Oyq6waXrRjsZFskK1lSlS2t4Rz72MgwUU2RlkAV4 vr23GqYfYdCV0AYL4Be0uuUewgEnfSC/TqjkE74DKC+qEULZpmuVSuRBMwmM44jZ 1G7k5MDIBYZO+TNyf0NEAGauBaD52lKX294nouCkiErh/Fy6w+/s21Fc5QvG5vsM N7GlDkJup9IDwQFlFJ4WF7g29TLfKqN2Bl8LHd1Uwm08inTgWwSh1ydYrsuIijl8 RFYbEucJvMzLF0OpuOx8EXDxw6bvEHynnq807XvUXBGUplotvQUwnS9EBBV9hdfT 8zotPWrfVLz9P1aq5pDBRaCDOMLXcUKmAgGLEM35Rg7jDll5wuh3Ifs9TITOLaNo vmAbOTX4hvkuzmh24ecYyjGFjdWZ4EAL0Ff+8s/79iOZHGL0xYtsImhWKsV9Auzk dk1BhDShEMj5nq58rn+wBRarm/RQqlsuTwe+G0deJJrnrd7PDx028s9bYiuHhUpC 05FCt9vOZEWKXmyyPFjK/wAxGH27l6m92l9D6uQhmHzK5fcyILB3T95vENhi8qkh hxf/Hx/q2edKwkPXSX6vYleGYGllNPsZ18qOjk7giTcP3WYE/OwMjWf2Y+2vyxvm mxhE/Vvgc7UHDK/QihKCov0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 279947263099216328833882425026313817347926 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-17 15:09:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-15 15:09:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.abbigail.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 670424706598503608510078513747989923776512848977491509817094574268481223178117807201027395989537115882821537516327639208862839689319051727677819142924278424158076887702132142785526380801940663684260429939243553339398451580629124479916072140066118584158252835500875836124757570670474420381116557946326491270153900278488614680849354604505580584422240539546265815832973377774380305361555379174737492334498559288536873415188754340341852289109670555255635092967204010084745211230035693916773663230943598072404015038656739087140353566545289478636412128018284904603457188663943400752983048915752780943013023129552065872417587798597963462747115623209334364680062936593332438862196479028150672909672747404356377637726297372437319024972630062751584089566422929374812236947071738122846571981836914297596478920898151602431676050231825907144157781911205996883575407282506198446304867865277521886281415579205923683309581367553616941443447916811130725631304114486295103781934565810284920849808164610176429078296389376356443164807385135897383392050736685709678568937774755986268401656516904897039461268178056124628593698259258937571548755025823759429854683084016369727935025068944458218950620367050117410683045753117020268227760611192836115979739901 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4873bc985bfc0fe6bce177aae7a7b48ac1fea877 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.abbigail.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016b6633249900000403004830460221009f05fca52c92040677c2fadefbe1492a4f57a005b9a2002d080c3356f50c7fde0221008d75f9327c1d9d7c9ef264256c8e940444014c36e2f6b4e28e4e5943c2e9544800760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016b663324910000040300473045022100d632850adca36d5194dc064b6706ad3f5bddc1b8ff6d5e38f97ac04b911a65e2022014d9d7a33d22f5cb162125b382296aef97b06cf5dbe8975bc2bd4ad43b3ae7b5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00161939aadd88ec721cebd648865355f1454e937c4fe65bad9ef2926cf00c5f866c9ba28a9e9bd820daa28e0d8d685c19906813837fdaa8dd04819f905303d9c76084496ef0d10864b71ff1c5c9b7b4ff308bb7f2490a40477319a881f0f4581d3d08134fb5bfb792f45195d89dd22e01d6ccabe67dd495795efb98b4e46174c2521ba25078aea574ab4b145671a53a4f2e4d0ad206f90711463d95c320f16db634aa1a40b505a3fa5799a068cef1fafe6e7f43e1a33a39e4c1f92e0520fa6e57c565fde0ce8dfbb4876dca6c8a1d7d93180d1a83b6ef457590d1c9ad0ec085f0046e4037dae4d9baf15965f2e46204e1dd970cc685857af2ab4530439dc66d1a