www.californiai.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:2b:d9:ce:f2:2d:40:b8:f1:41:90:2c:99:33:48:64:78:bf was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.californiai.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:2b:d9:ce:f2:2d:40:b8:f1:41:90:2c:99:33:48:64:78:bfSerial Number (int): 276258516573047700806833672587861085681855
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: dd:02:26:fa:46:70:d5:0d:90:b5:cc:ab:13:14:d4:0b:b1:6c:36:03
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 7e:05:7b:09:96:72:cb:2d:45:f1:04:ea:93:a0:e8:2a:d6:a3:bd:18
Fingerprint (sha256): 20:09:44:b9:8d:0f:25:28:8c:12:bf:44:fe:2d:b8:a6:30:a2:12:26:73:b1:db:78:11:5d:48:6e:62:1f:2b:68
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.californiai.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.californiai.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.californiai.com
Other certificates including the domain name californiai.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.californiai.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYDCCBUigAwIBAgISAyvZzvItQLjxQZAsmTNIZHi/MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMTYxNTMzMTNaFw0y MDAzMTUxNTMzMTNaMB4xHDAaBgNVBAMTE3d3dy5jYWxpZm9ybmlhaS5jb20wggIi MA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCyG3iT24+S8OPG8Un5gJ5Sig8Z 5WVTt3AhMTtAae9q1JhEk4K506FygFps5F4PkD+oU9QZ9qBk5BPqNnA2rUzHGtoD 5WaewJb4kM4mfq7HJJlMZdLuX+iSzECq3OjQx2i1xVGNarmL+kQb1rF1ZEAwkPVz TOaPhQsjMTC6HnCwU6VVpcmYBCcwww6L76w/pYa/EqWzPeNeuWlSCWq2DmI/4BeE OSpkKe3IvpNBoYoYlWT8UQUQHrJcYpnx8b7ogpaopukq60j2922RaxYHb2XcWAbl BAy0/LjITRIxW0Ywt+UaQQNyTHu82UFNTqg7OqI/VqOkJIop/zGCQHXt30nwZzYA Qz2jDP5tgt9iZfYJxFxS+gcnqd3hwg42NM/GgGCfSxgid2Lg+BdI6Uj5AsgX4gkh i/+XVnjauGPV1x3k+SwGR7xB5l8zF4fBdon94ncQrheMMPKEqH9kHvs9fpXSBN/6 CWoycecO2iJW6/+6l+DAJUTBwnMnAr2Q/5leS3zMrKKgJokfYc+ERnkAqHPyhxdv b/yW3WuoJJpubf47e6uCCxrZZO8qu5PuTIgc7QtclPlnRNG48XIsDaOM1EPZI7XG G/8CazSHEOTmCJztK+AToAOJ6bTTuPo6bV/ImnTwRp4fhS73qk2AR+p/t++ax+Oe LBw9QJpYBUw4kE2fmwIDAQABo4ICajCCAmYwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBTdAib6RnDVDZC1zKsTFNQLsWw2AzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObem RWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3Nw LmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0 LmludC14My5sZXRzZW5jcnlwdC5vcmcvMB4GA1UdEQQXMBWCE3d3dy5jYWxpZm9y bmlhaS5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAm BggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEGBgorBgEE AdZ5AgQCBIH3BIH0APIAdwBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFF WAAAAW8PjnweAAAEAwBIMEYCIQDgq4UlQMITzIVK0s4BIQcD4j012Lwfxt+SY0Dx 3FS+aAIhAKVvhozMOmgNyfOq6Y8gb2li7Jsv6OWRTacBv1RS8h9yAHcAsh4FzIui zYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFvD458CAAABAMASDBGAiEAnTUZ jPhQebk7hXbFFhWklfMZxKG0JZkxO0RHBMAhxMoCIQCRO/khd3ud1ro7Szt3bcpH i9Nly3MuT/ZvoTz+g4yYojANBgkqhkiG9w0BAQsFAAOCAQEAYZ3klMwis+YNsETV rgaV2v2BZARyP/AEKCvhPa5WE4CqF+WtzWrkQCGrbTwr/tMRQFPR4rWaB85kLkip eYgSqnXSYSHOVu9NaHrQUGe1+hmcSYUONSmk8/6h1mC4V7Hc6cGoJwaT070h6ZxB kkDyG2RYZlloTdJ87XnK2cyalVVr1a/NudbPKLnMx9kSyoQ0Jz5BxR2DT6GdhTr/ a+goaF8zsr/jRpr9pyZRn6rB4fh1RD61jIQhvvrvzpfND2I7vs0sTqlolxRj8xzl /9j72cJCkhJYrgHqVP4uBN51qo1ZBj9VBWgVadje6Pm6OZbnO5avQ1KhxqjtIooW 0GOK/Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsht4k9uPkvDjxvFJ+YCe UooPGeVlU7dwITE7QGnvatSYRJOCudOhcoBabOReD5A/qFPUGfagZOQT6jZwNq1M xxraA+VmnsCW+JDOJn6uxySZTGXS7l/oksxAqtzo0MdotcVRjWq5i/pEG9axdWRA MJD1c0zmj4ULIzEwuh5wsFOlVaXJmAQnMMMOi++sP6WGvxKlsz3jXrlpUglqtg5i P+AXhDkqZCntyL6TQaGKGJVk/FEFEB6yXGKZ8fG+6IKWqKbpKutI9vdtkWsWB29l 3FgG5QQMtPy4yE0SMVtGMLflGkEDckx7vNlBTU6oOzqiP1ajpCSKKf8xgkB17d9J 8Gc2AEM9owz+bYLfYmX2CcRcUvoHJ6nd4cIONjTPxoBgn0sYIndi4PgXSOlI+QLI F+IJIYv/l1Z42rhj1dcd5PksBke8QeZfMxeHwXaJ/eJ3EK4XjDDyhKh/ZB77PX6V 0gTf+glqMnHnDtoiVuv/upfgwCVEwcJzJwK9kP+ZXkt8zKyioCaJH2HPhEZ5AKhz 8ocXb2/8lt1rqCSabm3+O3urggsa2WTvKruT7kyIHO0LXJT5Z0TRuPFyLA2jjNRD 2SO1xhv/Ams0hxDk5gic7SvgE6ADiem007j6Om1fyJp08EaeH4Uu96pNgEfqf7fv msfjniwcPUCaWAVMOJBNn5sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 276258516573047700806833672587861085681855 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-16 15:33:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-15 15:33:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.californiai.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 726614425073192202909997585468969129840267074157038183499592597522606527185380635915183255740658271009496864323143335840783238917863709368840590651262922568001027455698058092635917481771191516804406621923898792439275186452727302518866059927842842929904830565717229754538516076881747070253227055194533851334683890585752173698259956553129002761903945896217503455091160292893060293628029708928647855913342780206630371840478201881609855357855777968456687125977695704870289609820926359119954488615372265394006384093065391907602388796339801681443833467290633289883788727642696165336426487572822498508934110540768639285957206560945624804930282811848063694714443833112561651703294791093369290739116983318289217057519024642596354485873335378033619922630880638794127730018284399434951434432790637588086096499394811901872101693115453158061588246097463272573063870142262508998437771261897283447001843692857421341907059281444309135370561996721713465033766445725230470640250631056501447897059033063693260697354088022707449916236037978022668475301395760991462025660690427112745588115682505555645353319543207116114205667581035966789914600320629887293772997668204398178914016782867831019900110469932595352230329279691228075773979339262466282199293851 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dd0226fa4670d50d90b5ccab1314d40bb16c3603 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.californiai.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f0f8e7c1e0000040300483046022100e0ab852540c213cc854ad2ce01210703e23d35d8bc1fc6df926340f1dc54be68022100a56f868ccc3a680dc9f3aae98f206f6962ec9b2fe8e5914da701bf5452f21f72007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f0f8e7c0800000403004830460221009d35198cf85079b93b8576c51615a495f319c4a1b42599313b444704c021c4ca022100913bf921777b9dd6ba3b4b3b776dca478bd365cb732e4ff66fa13cfe838c98a2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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