bizmia.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:8f:c0:b6:1f:85:6c:39:04:8c:33:08:7c:f2:21:2f:26:85 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bizmia.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:8f:c0:b6:1f:85:6c:39:04:8c:33:08:7c:f2:21:2f:26:85Serial Number (int): 397365679609279680686891141150643663611525
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 58:60:0b:b2:a2:74:68:8c:a8:f2:aa:1d:78:9c:13:12:91:17:b3:e7
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a7:6c:38:75:d1:fe:1e:21:54:b4:bc:9e:64:70:b5:b7:b0:99:a4:2f
Fingerprint (sha256): 28:1c:cc:d3:17:82:b5:8e:33:0f:0e:3c:12:a2:3c:7c:8d:5d:ad:99:26:ec:04:8b:04:00:59:f7:19:ca:6b:c0
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate bizmia.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bizmia.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bizmia.com
www.bizmia.com
www.bizmia.com
Other certificates including the domain name bizmia.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for bizmia.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXjCCBUagAwIBAgISBI/Ath+FbDkEjDMIfPIhLyaFMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDA0MDIyMDM5MThaFw0y MDA3MDEyMDM5MThaMBUxEzARBgNVBAMTCmJpem1pYS5jb20wggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQCtOs35jPas03bbjfDm04TyjpwdasV6FaYYwB00 SJmNDX41n/uF3/HNhdwjudcMtNqlm3mAECyl9qG5YAD9FKb66qu0XbmO7x92yv0/ 0Z91tM1AHi7LMZycEfNJbIeP/xUDupsgyvVrN4WlRVjBGn7lQKzCzj+XgPPh4K2Z kgxMZV0d+D3rMnFpLZLK93mOGzqODbnprjNtnZD7S02HbF7fcKmwRWHz2IgHM3D1 /M5Od3M2fbFZVi72m9keUOYPOSnNzV9hzgNASSzQpKLzySYAdoN5hTj0NxhoCuCN e/gMno4Ez9C9/ZxThJLK4nq2ShWjexTz8h/RMbZYpkUmFlJUbdIiuW1zZFAKfWno duWSpcK+/BrFfR9ZRZWthYilZQZal724shOUl/wAAUw4gcVzmYflpc4pq1Az/yJ8 rxANCZ0BmO8rJHYYwVme8oEkurYgrXXzOflKICyZzugAr65ywGY3dEXzcfDuWOnN JAlw5sFXRhMkvYmyhfT3jsPDJuh5GY4hMpR0BsHQ6QyfuFYYqG2XojA6xQfva9s+ getfD47qrzH6TUH3yBJ7Ylv0xfVVgQuBt+rr38dHcBskdRuhXYJMkocv+o8V5SDS 5qs3A2Rg2ibL8+7zLxDg4edrtS92pufysbG6+Cq2fCNcS+qMlnS22V1CMzwpDmNg kEulTwIDAQABo4ICcTCCAm0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRYYAuyonRo jKjyqh14nBMSkRez5zAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMCUGA1UdEQQeMByCCmJpem1pYS5jb22CDnd3dy5iaXpt aWEuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBgYKKwYBBAHW eQIEAgSB9wSB9ADyAHcA5xLysDd+GmL7jskMYYTx6ns3y1YdESZb8+DzS/JBVG4A AAFxPNWHjAAABAMASDBGAiEAr3p9p7W/iWs/FmWx3lrW86BGww1QiFHS9LMWXRtE WAECIQC4iDpqAZo92rabCoe11OpLJpZJLLNSr0LYPK5LPDslrgB3AAe3XBvlfWj/ 8bDGHSMVx7rmV3xXlLdq7rxhOhpp06IcAAABcTzVh7oAAAQDAEgwRgIhAMDJU6J8 jsl3ExWXrPP3Fcqf9yYjSwVgH/qasODZSm88AiEAxNHkN5Slkgjjb22P1EPRsdjr 0aNFFBxTYlP/5GBCt4gwDQYJKoZIhvcNAQELBQADggEBAJu9aC998YnDMR5WGfsT RwpN1lHtrKafqUSwRk4KezJPdrETTujbcYEiMKMSCgMaU97+PUbv7DHj66UcALbZ WCDUOuEa77PaBjuIJm+S72ZLGY/cp1cn5Q3GHf0DkN2TmD/QQNldqRjg8PFjSb6p JqqHLLRnISh0Sc6uVgOCAHqhxkVpMzUZCJkVlBh/uOccvHTsBcOaapoSd7OSJ9Kc fPB6hj9UeYkNP4O7Mt4/QippaCXQVZljshFBvHcQ3z2CQVffOdcSsPN4sYYqJiG9 jeQbqhpeuULpygOECEculYR9SuVwMq/xfNuGuNDu1F2CXB5HplBdJtKrgJfcn7Kp QmY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArTrN+Yz2rNN2243w5tOE 8o6cHWrFehWmGMAdNEiZjQ1+NZ/7hd/xzYXcI7nXDLTapZt5gBAspfahuWAA/RSm +uqrtF25ju8fdsr9P9GfdbTNQB4uyzGcnBHzSWyHj/8VA7qbIMr1azeFpUVYwRp+ 5UCsws4/l4Dz4eCtmZIMTGVdHfg96zJxaS2Syvd5jhs6jg256a4zbZ2Q+0tNh2xe 33CpsEVh89iIBzNw9fzOTndzNn2xWVYu9pvZHlDmDzkpzc1fYc4DQEks0KSi88km AHaDeYU49DcYaArgjXv4DJ6OBM/Qvf2cU4SSyuJ6tkoVo3sU8/If0TG2WKZFJhZS VG3SIrltc2RQCn1p6HblkqXCvvwaxX0fWUWVrYWIpWUGWpe9uLITlJf8AAFMOIHF c5mH5aXOKatQM/8ifK8QDQmdAZjvKyR2GMFZnvKBJLq2IK118zn5SiAsmc7oAK+u csBmN3RF83Hw7ljpzSQJcObBV0YTJL2JsoX0947DwyboeRmOITKUdAbB0OkMn7hW GKhtl6IwOsUH72vbPoHrXw+O6q8x+k1B98gSe2Jb9MX1VYELgbfq69/HR3AbJHUb oV2CTJKHL/qPFeUg0uarNwNkYNomy/Pu8y8Q4OHna7Uvdqbn8rGxuvgqtnwjXEvq jJZ0ttldQjM8KQ5jYJBLpU8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 397365679609279680686891141150643663611525 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-02 20:39:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-07-01 20:39:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bizmia.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 706715540146605661243782306381791392585545698183171728949497944571838279496019407104101741786546055394213430511067732341242788697406227484150501953263592341444329549863539970878636311439675406418054676593760649842014453310822156313619461276847640604240828429623255641056594077628042374253929210087796281791362840599482064842814350954881375574721063745141482802455653360568782361186337757149763050233559620216026892195306699519514082165172670538159082133041065717696166850370572853770844701046890928748111056359893511675701840415153684622838230108795742361492371096848719283261030385998119255482058502589186644408517247344054307483293311844780858777918916364989202319801956993630159318943693584245170221786618885023947432613148216100850328293454024187767294056428593653440956362752188847685983699019479399905930451623474406235466280414644385186585499629905831175252893505490349543681624572489361968576079636803981452882866576912707358250421939915063693905061660835169102394771297512484084270067740145072039177036862227624292904283322248738706453965917944472430035085264950089812620907674499774988570764905295729078925581838667539704523012615081550746701072025463174991011731787944606028019150935428375908641494770991603305283077252431 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 58600bb2a274688ca8f2aa1d789c13129117b3e7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bizmia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bizmia.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e000001713cd5878c0000040300483046022100af7a7da7b5bf896b3f1665b1de5ad6f3a046c30d508851d2f4b3165d1b445801022100b8883a6a019a3ddab69b0a87b5d4ea4b2696492cb352af42d83cae4b3c3b25ae00770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c000001713cd587ba0000040300483046022100c0c953a27c8ec977131597acf3f715ca9ff726234b05601ffa9ab0e0d94a6f3c022100c4d1e43794a59208e36f6d8fd443d1b1d8ebd1a345141c536253ffe46042b788 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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