ocalafarming.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:5d:69:a3:f5:ae:4c:a0:79:88:67:0b:48:b2:48:41:72:c1 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ocalafarming.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:5d:69:a3:f5:ae:4c:a0:79:88:67:0b:48:b2:48:41:72:c1Serial Number (int): 380235824117633389067089122617353213932225
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 98:1e:be:35:5c:7d:ad:24:7b:14:d9:d2:1a:4d:40:f6:6e:54:12:3f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 6e:1e:37:43:08:d1:c9:db:2d:ba:11:dc:b1:b4:a6:44:da:05:df:9c
Fingerprint (sha256): 2c:cc:5d:ce:32:a4:55:a0:6a:d2:d8:96:74:b6:52:c5:49:e4:e4:42:88:c7:b0:9a:12:36:ec:0b:18:e7:d7:d5
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate ocalafarming.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ocalafarming.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ocalafarming.com
Other certificates including the domain name ocalafarming.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for ocalafarming.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVzCCBT+gAwIBAgISBF1po/WuTKB5iGcLSLJIQXLBMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMDMxOTI4NDZaFw0y MDAzMDIxOTI4NDZaMBsxGTAXBgNVBAMTEG9jYWxhZmFybWluZy5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDABkzW/0l9GfYDb+z738PzMKAJOAvu L9zAHpz/wtd1ZFb4kF3QbzdFetX36wF3CXslOIEm/lTvIdfJavmMp/TYsdO99Jn2 lgVWj0MtuXoU879kRin0769tbqwU3xeRTjNiM2q3pWN82bB3gPd1jNT19AaLUYur prESlxF/shgaPQizYLLPHm3RHny8xkf7FMiF6/P+o6OMH/ClQdBYVquqG5Z8CXS3 wemp/IQGMYohRG8haODJ4O5/pILm4cBADazsZjNjm46L/DO0zKo3Z9bnQ+uarTpY DfI73PAp44v+hJUjGlhBU+1d4fGCjyvXjl4C15WyQ8AKPBNOUbNmet+r8rwiUmNu 6wXejA8fRO9ttEn/w+7OAHCFRxXhYSq6lE+jl3xIsTIeJtSJvdcpisPWVeiviZdk kfB9j/PZhkbWbWo0xlWp2QZJsyCgRzYGbrD+v5TF4ObyUsyQYunUsrN++dLw5Sq1 vQeh1yBWsgtglQs/hUaJiWJ+p6S3bLxvofQHFBHxLFJ8t9k4+fWKvIHLUJG2EhJV fd2HfcZoi1WfEaaxR1p2JO/ouxSni0QsIkC7o77DfKZcM63+PaKD1qhIpQx4tenj TCHRwcng8dIrVil4lhy5jmZdq4vOS4DQqqnr5yl6WLEQ8GrUsmPnV7ecbqdfM9RY uhLCNmC5Abf9GwIDAQABo4ICZDCCAmAwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSY Hr41XH2tJHsU2dIaTUD2blQSPzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEG9jYWxhZmFybWluZy5j b20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQC BIH0BIHxAO8AdQDwlaRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAW7N c3TKAAAEAwBGMEQCIC7WGSaVTf5Ct3oF7YXkKNauudMdPmdxxPRz7E28tRCGAiAH rKpTDWzwU5BXCndxX1PLHkrkSYwG0kO9XIDYeGd5NAB2AAe3XBvlfWj/8bDGHSMV x7rmV3xXlLdq7rxhOhpp06IcAAABbs1zducAAAQDAEcwRQIgTOCbAf7kb2/usG7M vPHgvSQXlwzVOExVquAzFckBhjUCIQCqTR97W/USmzc/KpPDoy5ur8VV+WQaTZDm q5IkHOTYiTANBgkqhkiG9w0BAQsFAAOCAQEAjF6MiY7oz3l3GdJJuF0Uog9OilgE Ie4kpLzqTxxw5H0Rr6f1y0sjNqv98v9JZ5yCSoE9uEqn/0uejvxowY59nHEdllWH TZ0UtE2In2Oq0yGEC5rZG8McPvqntTWosga1sHYrK3np8ZQn6N8fZUSAsXDHeD+Z SFZiLMdj4QQHdZdtKWTU40a5EL8VX9FSeKdM0yuNpB6Xs89nXD4FmyiQFi8Pxwo0 meuUDTpV1zOFQgtRrq5GM9XALXWBE/na4p9VmbULPX2QBcpC46QNJgg9QFchHIvu agShtTCTmm3VK0fg+/u0BzHySgbu7dBBhIq4h02rD0AMn+eEx4vHyyAIPw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwAZM1v9JfRn2A2/s+9/D 8zCgCTgL7i/cwB6c/8LXdWRW+JBd0G83RXrV9+sBdwl7JTiBJv5U7yHXyWr5jKf0 2LHTvfSZ9pYFVo9DLbl6FPO/ZEYp9O+vbW6sFN8XkU4zYjNqt6VjfNmwd4D3dYzU 9fQGi1GLq6axEpcRf7IYGj0Is2Cyzx5t0R58vMZH+xTIhevz/qOjjB/wpUHQWFar qhuWfAl0t8HpqfyEBjGKIURvIWjgyeDuf6SC5uHAQA2s7GYzY5uOi/wztMyqN2fW 50Prmq06WA3yO9zwKeOL/oSVIxpYQVPtXeHxgo8r145eAteVskPACjwTTlGzZnrf q/K8IlJjbusF3owPH0TvbbRJ/8PuzgBwhUcV4WEqupRPo5d8SLEyHibUib3XKYrD 1lXor4mXZJHwfY/z2YZG1m1qNMZVqdkGSbMgoEc2Bm6w/r+UxeDm8lLMkGLp1LKz fvnS8OUqtb0HodcgVrILYJULP4VGiYlifqekt2y8b6H0BxQR8SxSfLfZOPn1iryB y1CRthISVX3dh33GaItVnxGmsUdadiTv6LsUp4tELCJAu6O+w3ymXDOt/j2ig9ao SKUMeLXp40wh0cHJ4PHSK1YpeJYcuY5mXauLzkuA0Kqp6+cpelixEPBq1LJj51e3 nG6nXzPUWLoSwjZguQG3/RsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 380235824117633389067089122617353213932225 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-03 19:28:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-02 19:28:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ocalafarming.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 783392061030214122083798207687574675546205510306635808504571581034378396134940298612840752553013084995297459390367495876688597380801033826936525278031631272774237588654943449281050459147101076913122686608716619919957406611427646199848940583080911411467301871673837078657743685203563674202587983877273445221155602276664052770984162585155854665794387111379760232717221557548698647422842175254482146397043960990764906515089278021967585631834045657488988845930938335767303524137330515244411130936213938082076222459821592427741679478775894812944632150125886464405497851150873021369260113048753223220355079218406053335771089649312604437450152651222253349270539042139554891861859612464007579954225211882444739534037809174993461743649594884942386424032957939577118488707737836078299899887124896615786652463200286676729905112328291979878922192284434371313756526944567970974365717648722667829465138675120120086101435592793744086111161093365561630533164744912370461107105493980635473730721244743965633264830111697177512742075456620150169605843804728487621869738535602895525235000209928167280032573893394258745936969313716785637660806050235130139293936789456898588271861997905496886698798597536058918624551639909839062080682025807775314157763867 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 981ebe355c7dad247b14d9d21a4d40f66e54123f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ocalafarming.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016ecd7374ca000004030046304402202ed61926954dfe42b77a05ed85e428d6aeb9d31d3e6771c4f473ec4dbcb51086022007acaa530d6cf05390570a77715f53cb1e4ae4498c06d243bd5c80d87867793400760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016ecd7376e7000004030047304502204ce09b01fee46f6feeb06eccbcf1e0bd2417970cd5384c55aae03315c9018635022100aa4d1f7b5bf5129b373f2a93c3a32e6eafc555f9641a4d90e6ab92241ce4d889 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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