aprissa.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:67:9c:21:36:5b:b0:d6:0c:7d:36:f1:0b:b0:53:88:d3:89 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=aprissa.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:67:9c:21:36:5b:b0:d6:0c:7d:36:f1:0b:b0:53:88:d3:89Serial Number (int): 383705759535551036365528329622337205359497
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b6:97:49:b0:4e:ca:77:44:68:42:c2:f9:a9:6c:a6:0c:cc:56:26:b6
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 3d:65:d3:45:59:1c:13:cd:89:d8:e0:fb:22:63:9a:7a:14:5c:05:14
Fingerprint (sha256): 27:a3:2c:03:5a:f9:04:a8:d7:70:5b:77:ae:ad:87:4e:e7:9a:68:21:f4:da:55:14:49:e5:8f:4a:bd:2e:bb:5a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate aprissa.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for aprissa.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aprissa.com
Other certificates including the domain name aprissa.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for aprissa.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUDCCBTigAwIBAgISBGecITZbsNYMfTbxC7BTiNOJMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAyMDgxMTAyMDdaFw0x OTA1MDkxMTAyMDdaMBYxFDASBgNVBAMTC2Fwcmlzc2EuY29tMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAs8VuG+a0Ot9B2gxDmlUkU6fK3DU1uF3rG3EV D2gwuazmxIZbDI4JU0MY7HkMAmZ9+6QtAvITLbiCMqrFlFNpt5LqCEZJt8lVRG7b ZcJbhSEZqs/YAweNE3anYRWuF7Xgn62t7GS04wxT+kfH4QmtwaeBxrDKYp7L83gp 6YhcbzxvpdkmTfPwrIOkqH5PzqDhjiwtJU1u640enTXgQ165MYILocV4iDX+GPwG KrI/TT6wFBfMcTAq8zRb3mnuA85iX0EKdEZnuyaVa0VHHIPQp/LTVMXehYl4F89N XGDPUhkalbliUism/Px0lbs7DziSZWpuHdOPTF5Nf+a+JqwEftNjCLZTwh5WSXPa FCl0xdXuU0Myz46XC0X85ZtmfwBC2Kdes4WZie64e2JYh6iMNxyVOs19PzYL2c4f PmgbpTCrvmxoyK3PlNT1SI9rCM2woUZF+Ie/fwlN6ukZSW+Tt1PtmjlMKEiAbDts 3oYQuBpeAMaa1D4cKzRHM3Z2OC1Y9dhA7mkihiRfMwo3JlPAUpKoeXb7u31QxHGA 3lHdkaL1tPLBUk5MfXQ4FSmyK3ydN3MqGQAOrJWXXtI8qa4Tqe95KdZiFNNr7d+u heYpZC/LZ6uentBlGYS7YYo2aIqYWK8zFpitrkgMHcxQoQ7b0425gcftsXgHnrT4 53klTqMCAwEAAaOCAmIwggJeMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUtpdJsE7K d0RoQsL5qWymDMxWJrYwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAWBgNVHREEDzANggthcHJpc3NhLmNvbTBMBgNVHSAE RTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRw Oi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3 AOJpS64m6OlACeiGG7Y7g9Q+5/50iPukjyiTAZ3d8dv+AAABaMz8hGoAAAQDAEgw RgIhAJtowlPF74L94Cyqwj2pKbe5HspMarX0+WH5A1kREqhoAiEA4iLwYavSMzxs 68n1+TFwtRuwDyC5Xhs7AmvtN9Sq3woAdwApPFGWVMg5ZbqqUPxYB9S3b79Yeily 3KTDDPTlRUf0eAAAAWjM/IRkAAAEAwBIMEYCIQDX3s5vQM9/IXIq3pAPlXWVa5BV tLYAIL1rmcfdCZwrGgIhAKEs5zU3RDzsshAZ/2jFZaGOi5mGErM9ZEdPfq8UrFtT MA0GCSqGSIb3DQEBCwUAA4IBAQA8LqdjNWa7EpOS69+XJb6b8wXZReZS8H+Q48lq IjlJbamuyQcoRmo9QE0LMJLGfj15AtFlfk9uJGA7sHtDE7Djtlqqa97NVisa7hWq sfrHDsQSR6oVs6npwhncvPI2xLVIbk31Cs42OozDP+fl9iCP98ygworwOn219zkD aLK/GMF9dyvQOPVqhLxnHLSVtJ7i84e6Skhw/CWGt+w3V+qQkspikpHDAFOmdF9D 4J3jQfweZ9+pL5XuHYc3551YBunJX9L1e97yq/Dz1Beg3XE8C5WOx0xiXWd9KPNb DAW5gdegq/0/mVN/XjxjVbrlF3d/TAb1DfPJ2krJiOtrf4QY -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAs8VuG+a0Ot9B2gxDmlUk U6fK3DU1uF3rG3EVD2gwuazmxIZbDI4JU0MY7HkMAmZ9+6QtAvITLbiCMqrFlFNp t5LqCEZJt8lVRG7bZcJbhSEZqs/YAweNE3anYRWuF7Xgn62t7GS04wxT+kfH4Qmt waeBxrDKYp7L83gp6YhcbzxvpdkmTfPwrIOkqH5PzqDhjiwtJU1u640enTXgQ165 MYILocV4iDX+GPwGKrI/TT6wFBfMcTAq8zRb3mnuA85iX0EKdEZnuyaVa0VHHIPQ p/LTVMXehYl4F89NXGDPUhkalbliUism/Px0lbs7DziSZWpuHdOPTF5Nf+a+JqwE ftNjCLZTwh5WSXPaFCl0xdXuU0Myz46XC0X85ZtmfwBC2Kdes4WZie64e2JYh6iM NxyVOs19PzYL2c4fPmgbpTCrvmxoyK3PlNT1SI9rCM2woUZF+Ie/fwlN6ukZSW+T t1PtmjlMKEiAbDts3oYQuBpeAMaa1D4cKzRHM3Z2OC1Y9dhA7mkihiRfMwo3JlPA UpKoeXb7u31QxHGA3lHdkaL1tPLBUk5MfXQ4FSmyK3ydN3MqGQAOrJWXXtI8qa4T qe95KdZiFNNr7d+uheYpZC/LZ6uentBlGYS7YYo2aIqYWK8zFpitrkgMHcxQoQ7b 0425gcftsXgHnrT453klTqMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 383705759535551036365528329622337205359497 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-08 11:02:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-09 11:02:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'aprissa.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 733402556106545383937795142467945377431832292923535086064662736787491968051961953012939446283820224570175161465462945721272639394607618232029148771803457630478866130699971287402001811490152692805181832284118780568477443890052714974290836982643342645534229878096717275135497551099643800150308343930132290289830600144428661954097949128594659202492148184428420933094419520169370186498405779014300278779870252325393330784465715756627580685399192337028835638860107137510271293727891041550915589696484972931705203959971301928375935784845037647761499500055539705394797757714287402116506792420529643357331046893501913012610680610286137933998733469238786389167118005456448334694829216596273213608126082836057087277877215235285734097086525300594325746336219527055344740972150787675847951794060499382176755555681271030470209298255498612725362113450691903622613231759070689732130085203409168496360799384528529892039740700306677483320644066547849196403808564619288058487181877196831326913599908954050109614411076877173109918609035405334976626115269168853544626952900338648265997331780640200772289816708059582150713857536953128136121396925484846934351993970084004808214172266735538671504472567926245858637888467724993792501193074267754412340760227 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b69749b04eca77446842c2f9a96ca60ccc5626b6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aprissa.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000168ccfc846a00000403004830460221009b68c253c5ef82fde02caac23da929b7b91eca4c6ab5f4f961f903591112a868022100e222f061abd2333c6cebc9f5f93170b51bb00f20b95e1b3b026bed37d4aadf0a007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000168ccfc84640000040300483046022100d7dece6f40cf7f21722ade900f9575956b9055b4b60020bd6b99c7dd099c2b1a022100a12ce73537443cecb21019ff68c565a18e8b998612b33d64474f7eaf14ac5b53 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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