www.bio-nmn.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:c7:23:5c:2d:02:f4:53:5b:dd:d6:38:0f:51:19:6e:c6:9b was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.bio-nmn.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:c7:23:5c:2d:02:f4:53:5b:dd:d6:38:0f:51:19:6e:c6:9bSerial Number (int): 416212336328413701681821253391619697067675
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: d7:6b:34:80:d9:46:58:de:a9:89:64:96:5a:20:89:af:d3:40:90:98
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): f5:a7:ac:3c:63:ac:23:8e:4f:43:ae:1b:5a:cd:37:19:ba:1e:35:33
Fingerprint (sha256): 22:a0:bf:43:9c:be:5e:9b:27:c7:f2:01:9f:03:17:91:f2:8a:c3:3f:9d:1e:26:2a:1b:57:db:58:a2:1f:33:f9
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.bio-nmn.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.bio-nmn.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.bio-nmn.com
Other certificates including the domain name bio-nmn.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.bio-nmn.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVjCCBT6gAwIBAgISBMcjXC0C9FNb3dY4D1EZbsabMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMjkwNDI0MzZaFw0y MDA1MjkwNDI0MzZaMBoxGDAWBgNVBAMTD3d3dy5iaW8tbm1uLmNvbTCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAOCQ7pkmXr5wD1FvZFpUU3oeQ3K2EUGD tYLE/oT+IgzqWQ598k6Ad829deUORITUs54nbgGKiAxhCAL7tWIir7uCgVHy41lt p6rItdVk+bwtVUsE/XIldnC/Zpl3FVfncowXnMIwJyy56i/YIB8KEwpIFQUMej2O SdlpcL6w/hNDYeTr3n8r/g1V4MFkGZAB8L/cd2B+c6659teQQcdQq1mS4/oeiKLQ 3SHQKuwv2GLG2udvonWkhz4TzIzFXMwYDSNgJ3JccrytwvI1mLMl4umi26y5D8cQ byS7sFwa8RO5DvclTCVdXS0ZOQmy6lUyG8hhQT6pmernYFvyoEi7Kf+BaoZnIXdE L2r3IsBBiqXdhqzC+i5AR5cuLyQnaHakTFseTkq5jq0L+mWHqL2iiRsYXo/uJsIG lOuq1rIuqQ+vOFrv3a2/yueHFEA+rFEpyFqgoiJ08DyBNvxPU4vmyEa9pOQwAOKV njvmGLZkZzvH/j5o2IdsS1xZw8438c4QgprLv3JfBQlywHwupqPUTTShYwre4ecx lztGXfkCyOfK8LLUBGK5OCTAMhLvaBeJ6/4skzqlB1OCX3rvvcFWSykUdccBW6xs ayJ0IXt1vgllZWy/b8Cs/Zr7egigIG4xAkXQc8WJIcCT7RGIrntDuRRWxnNpQP4X B/FEcffE2clRAgMBAAGjggJkMIICYDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFNdr NIDZRljeqYlkllogia/TQJCYMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPd3d3LmJpby1ubW4uY29t MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB 9QSB8gDwAHYAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFwj2dN DQAABAMARzBFAiEAuXPS9gwP+QLS36DjfcrkVJpnC3W3zmMp0gZ+aYLu27sCIEEB FYSvzxKZpRfj2TrNyJa5Sybn/NOjeBZ3iVjaT70kAHYAB7dcG+V9aP/xsMYdIxXH uuZXfFeUt2ruvGE6GmnTohwAAAFwj2dM5QAABAMARzBFAiEA8T0QnxSgJ8MlovOO kJlNoMgM5Uzb1zwI4uH1XcLGaOsCIFFqKVTrA4X4v/3g1BpqpkQXolSQ+IDIAajQ DcJ74bgfMA0GCSqGSIb3DQEBCwUAA4IBAQAJNFs/vaSeUfn+nT0C3y0NETL4/sUY G0BY5g5YTWSVam3ivfjpoeqV9MjDWx+IatQ/qKZVVGNoWENkmK5JQhK3nB3wOUcV Z3KG9CiolGKd0sieJgdmkNvxtdJ5wHShXxy4HXOHKUVUoIHINscN5xMvK9IkfH6X tYOTdHtiweTxGojP+ji9yp7vhoXErAapc2ARW9AABWsd0dt3qxTGZQzo3KLPzSuK fTziKhOV4yb9eLdP8lOz7MBZXGLw8WezazU6Q5Pv8yCwkDoF08ERoj5gSMeOwfu9 WGHz7S+UDYE+6bZP6ad4C0YzIpDrx07HQwd4YddsYijkyhe3HCWWDx56 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4JDumSZevnAPUW9kWlRT eh5DcrYRQYO1gsT+hP4iDOpZDn3yToB3zb115Q5EhNSzniduAYqIDGEIAvu1YiKv u4KBUfLjWW2nqsi11WT5vC1VSwT9ciV2cL9mmXcVV+dyjBecwjAnLLnqL9ggHwoT CkgVBQx6PY5J2WlwvrD+E0Nh5Ovefyv+DVXgwWQZkAHwv9x3YH5zrrn215BBx1Cr WZLj+h6IotDdIdAq7C/YYsba52+idaSHPhPMjMVczBgNI2AnclxyvK3C8jWYsyXi 6aLbrLkPxxBvJLuwXBrxE7kO9yVMJV1dLRk5CbLqVTIbyGFBPqmZ6udgW/KgSLsp /4Fqhmchd0QvavciwEGKpd2GrML6LkBHly4vJCdodqRMWx5OSrmOrQv6ZYeovaKJ Gxhej+4mwgaU66rWsi6pD684Wu/drb/K54cUQD6sUSnIWqCiInTwPIE2/E9Ti+bI Rr2k5DAA4pWeO+YYtmRnO8f+PmjYh2xLXFnDzjfxzhCCmsu/cl8FCXLAfC6mo9RN NKFjCt7h5zGXO0Zd+QLI58rwstQEYrk4JMAyEu9oF4nr/iyTOqUHU4Jfeu+9wVZL KRR1xwFbrGxrInQhe3W+CWVlbL9vwKz9mvt6CKAgbjECRdBzxYkhwJPtEYiue0O5 FFbGc2lA/hcH8URx98TZyVECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 416212336328413701681821253391619697067675 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-29 04:24:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-29 04:24:36 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.bio-nmn.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 916149923867505338544552599843162484233899904464381302167443013334128718104790691476856208888713865134508672443082846970324294256971955510642951990689274355943811711020916414594274980769871515994605576649488873797973854955574257743326453500847100792968626432728730826860607996928032522683833103523182851971031826705679305719058342827960568393897940241060741970729582349524256855852212524453650733705163481964255199855351665465533611675194558199919061404451242688600504830170933548936600188256504349965551660241060573056396800892713746277695879931198849595481521306006094971662888264379855044478435566009905579876183903520265285986974182685654159835711615547812700127720844025588098501593458402559745886552066244222240095212661057629816700076462917419458540777517542166123193623551933420008741268469524156459247832537957458723953874671599349162027134307410697838548940830108784016288438244931667722908999220681382197114944267889553316316815108995711915149100650566703101443661060640819807558713175858537577427966703168986333745207628965759200147879572108046857587821361362436677466011315712428688524687228172055347618232537546726085382353679118634805738762987347932299265133316484283978007149966150597800744423310906543147940134373713 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d76b3480d94658dea98964965a2089afd3409098 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bio-nmn.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d913000001708f674d0d0000040300473045022100b973d2f60c0ff902d2dfa0e37dcae4549a670b75b7ce6329d2067e6982eedbbb022041011584afcf1299a517e3d93acdc896b94b26e7fcd3a37816778958da4fbd2400760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c000001708f674ce50000040300473045022100f13d109f14a027c325a2f38e90994da0c80ce54cdbd73c08e2e1f55dc2c668eb0220516a2954eb0385f8bffde0d41a6aa64417a25490f880c801a8d00dc27be1b81f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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