ibcaviation.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:2a:a1:7c:8a:eb:eb:cd:8c:7d:20:f0:ee:a7:d6:81:80:0a was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ibcaviation.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:2a:a1:7c:8a:eb:eb:cd:8c:7d:20:f0:ee:a7:d6:81:80:0aSerial Number (int): 275843369575756106144820081937689128042506
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 32:49:b9:23:cb:a9:fc:8d:2e:aa:59:24:60:67:29:e0:71:0b:36:a9
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 0c:cb:37:e0:df:72:dc:a5:bc:ce:38:88:b1:29:67:95:6b:ba:b7:f8
Fingerprint (sha256): 2d:6d:9d:f4:50:a2:30:25:50:df:6c:db:f3:69:12:66:8c:f6:63:b4:2f:f3:70:81:cf:1d:af:ba:4a:e4:33:f4
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate ibcaviation.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ibcaviation.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ibcaviation.com
Other certificates including the domain name ibcaviation.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for ibcaviation.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVzCCBT+gAwIBAgISAyqhfIrr682MfSDw7qfWgYAKMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMDcyMjU5MTZaFw0y MDA0MDYyMjU5MTZaMBoxGDAWBgNVBAMTD2liY2F2aWF0aW9uLmNvbTCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAOIcCcjFWIAb0ixer8MJlROd1ffiDEbc zmxo0qLyg3q3HOMEymPrZP1dXIcyXDt94R8sZdCm8bP0HQjOFB2cgVHTPLZYz25A jAK/7DkUleSBkI/hs7uc1n+KQGR4o3aSj3Bv8MzMOsld4FnHheoCoPH+08IPpNK3 4BdhwQ/403UnlOdyqY4DB86tP9j8yDUOS0vWma+6ywgCj5k7AKI0CharpvfpIcEm l4p/i5CrsTHIO42AjR/IDhEoMrkxf9DTxkYSBVPLRhEyYp6cXUlYiGiXBmn/P/pz bz5cA0vODNCimrBhOM0dchTJnNV2iM3LOMPTWVj1JSVq/FFk/SNFeky6g3CtD/Jm 48IHvj8V3S2bVkiaGyloMQalUzZKZBoE2KpYN74s0X5mGYQAjxNfO+sp+hIJBPdf nSRrYYaFA3tmOS/N0gSdzVlEz6TLpndh3GbmE0JU5owl7UnEuwPP3mYIIeZy4Ddc keL9wPFMRacpuXaB/IVhvTk6/XkNMQfhqq6qlGg0V9lQ7V5fkD7bSx/qPL81wgp5 DtYhTKkzOj7qea0foPd7W8+bzLfvnZu+FWv+gNAH0qSjm5+R4xjizJxON9ocITMM ylb6dUQEJ1E4lYZV5KmaYL7LhqNnNzWDG71xOCDll+/nPo+bQJ1YBrDixfyYm9I9 IPmqkmRMu1aBAgMBAAGjggJlMIICYTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFDJJ uSPLqfyNLqpZJGBnKeBxCzapMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPaWJjYXZpYXRpb24uY29t MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB 9gSB8wDxAHcAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFvgnLE LAAABAMASDBGAiEAtVM6926ABL1SBeCJ+ag86qNjkUOtHCFkMljUcHu0PW8CIQCd JeUq3BlSOnJdb1uMsx0jNkFx4NQ8aZNm5LNC1YnTegB2AAe3XBvlfWj/8bDGHSMV x7rmV3xXlLdq7rxhOhpp06IcAAABb4JyxFEAAAQDAEcwRQIhAMkehvSZe50x+4Ug /5kD/qRFz1D8bXhO2P8+ayk7SFZNAiBiH87n1urS/eyyku8soPezAP6gOGU27G9U pMuYLw2ujjANBgkqhkiG9w0BAQsFAAOCAQEAkHTCn/E1UucO1hqUU3porfs/QezT xacmiW1xIQZ3FSI2Nh2muQPGDDXK+Zuy83FZkEoX/jP8tlUB9xUsoFi2i9qS02/R OD/GFvpFbpMwp4z7KLHjN2O8Cls1tlIdCj2FNAhITgBSX7LLwvNF1rvIRJxQRGVN 5Za9ajn7DQyxNecuO27mwrHrl2zRDmyfAYK1170gzXwhv1Fzc9sNFM7jVZe3exVv 9/sIk01RHNRlVmD+Xoijw/yt8Ny3p0WN7r5fJc/YfacfamWPybgA5LPT7vRpHmI8 C1lpBSPpFfnF5F0j+gH8zaG3ePS+DBuuHrte0v7qc8rDk9E3hV4XjhRShw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4hwJyMVYgBvSLF6vwwmV E53V9+IMRtzObGjSovKDercc4wTKY+tk/V1chzJcO33hHyxl0Kbxs/QdCM4UHZyB UdM8tljPbkCMAr/sORSV5IGQj+Gzu5zWf4pAZHijdpKPcG/wzMw6yV3gWceF6gKg 8f7Twg+k0rfgF2HBD/jTdSeU53KpjgMHzq0/2PzINQ5LS9aZr7rLCAKPmTsAojQK Fqum9+khwSaXin+LkKuxMcg7jYCNH8gOESgyuTF/0NPGRhIFU8tGETJinpxdSViI aJcGaf8/+nNvPlwDS84M0KKasGE4zR1yFMmc1XaIzcs4w9NZWPUlJWr8UWT9I0V6 TLqDcK0P8mbjwge+PxXdLZtWSJobKWgxBqVTNkpkGgTYqlg3vizRfmYZhACPE187 6yn6EgkE91+dJGthhoUDe2Y5L83SBJ3NWUTPpMumd2HcZuYTQlTmjCXtScS7A8/e Zggh5nLgN1yR4v3A8UxFpym5doH8hWG9OTr9eQ0xB+GqrqqUaDRX2VDtXl+QPttL H+o8vzXCCnkO1iFMqTM6Pup5rR+g93tbz5vMt++dm74Va/6A0AfSpKObn5HjGOLM nE432hwhMwzKVvp1RAQnUTiVhlXkqZpgvsuGo2c3NYMbvXE4IOWX7+c+j5tAnVgG sOLF/Jib0j0g+aqSZEy7VoECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 275843369575756106144820081937689128042506 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-07 22:59:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-06 22:59:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ibcaviation.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 922446379516942057220121954666051608267661788410234291363159569263347867082100466288118824334718823750248857364655536248984654261392845465028113493181149191861407195685978348303745801511814721763113488086867168368884582419521143927121152797287109428460493621989924410123947050570657812403696600039319879694551668068058821881138007060256512669289785501151846611486047735986871268656097922049833561342113886506369936114076125469324213195700234116850768701906426703719789268224795921921624070982655755615893902277840205165092356177265571260930205823107758784993895513003658913283401078573549665632596472276296595124444649862434029442718424537954381519597333177770268312545374193388524198270144696829424505511551155452232727207494443182516624003941934108749830194648921894744813439010956552579429025940144686052560847085449112185721881611946881271270067031847485550953506969815548435564690498029543250088712844075958656886254026284634604714953021048634155262111151612587705962004586902466309575333757664157226123041865842870378071273325231372115842187047135011339669517657134760949580332866904185366412207919545813564770596923713001312045412345085688709441375203953365585590861883908478016586434388604325875550350738925186010967885698689 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3249b923cba9fc8d2eaa5924606729e0710b36a9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ibcaviation.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f8272c42c0000040300483046022100b5533af76e8004bd5205e089f9a83ceaa3639143ad1c21643258d4707bb43d6f0221009d25e52adc19523a725d6f5b8cb31d23364171e0d43c699366e4b342d589d37a00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016f8272c4510000040300473045022100c91e86f4997b9d31fb8520ff9903fea445cf50fc6d784ed8ff3e6b293b48564d0220621fcee7d6ead2fdecb292ef2ca0f7b300fea0386536ec6f54a4cb982f0dae8e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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