negarin.shop
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:36:29:d4:17:dc:f9:73:34:25:66:2f:a9:2a:7e:67:2f:0e was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=negarin.shop
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:36:29:d4:17:dc:f9:73:34:25:66:2f:a9:2a:7e:67:2f:0eSerial Number (int): 279767705207775425578434526419305321934606
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 73:bf:f4:20:d5:5f:45:03:1b:80:1f:a2:54:c8:cf:d8:a0:ec:cb:e6
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 1a:2e:0e:5e:89:ad:44:dd:70:0b:a0:98:4e:50:b7:23:f1:3d:f0:18
Fingerprint (sha256): 2e:14:50:56:06:4a:16:d1:ef:d2:ef:98:97:81:23:09:1c:67:70:07:23:d9:a9:2b:f5:f8:e9:97:4e:ff:b5:9a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate negarin.shop
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for negarin.shop
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
negarin.shop
www.negarin.shop
www.negarin.shop
Other certificates including the domain name negarin.shop
(limited to 100 certificates)
Certificate
The complete raw certificate details for negarin.shop in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYjCCBUqgAwIBAgISAzYp1Bfc+XM0JWYvqSp+Zy8OMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMjYxOTAyMDRaFw0y MDA2MjQxOTAyMDRaMBcxFTATBgNVBAMTDG5lZ2FyaW4uc2hvcDCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAMLbsIOtwUyKBCGlr7j+ox3lBX4/i1wTKXs2 0VniHTlmOGHOdn64Q5k8999z9zGKxQhLCd2NGCKMmCLFtkUORaM52PNB6dstFIVg CnMKfQDSnL5JVR0gY6fL4ye5kwFnc/NtSGWmKnQu9NMxKCXyaO0tnwy24WRPhCiU vsvBqkoIXMNKmlsVIhX0nZohu2yzq23rZj/z3yOm5svO5Bc9z+XiGdUehSH0+QTn cSootXK93D+dHyXonW4/7IZsmh2Mw7AsdoMMNTWpZoMyYZVpmFppcFt1oHLfX05a 8NwQyscJkmyYKNvVv1jQAKtYFkBrvxWV0CoWuAhCZagIJNGQPcIEi6Ip54KsPZDZ qG5pdSWHdwZpY6xV3hLJKwxRkk8auPPa5lbVCixkSpxOXxxDSuSulI2oLTqXLUk/ 0zTfRbbKM/gk7ib3VJJ2UDBXQvL8lROqr/ZcBWKBJ5Ibd+h6r9tj4Y7PsWgFBFTb nvRDd5r5B24/rSWEcH7zDFk+AH+I8lBAvUmfYHeSDmgtRkM/nRqc/aAvTkOJaeBd Fm9uVAqCaRvBb+vnuslqpIeJjCRPAvFxuA0NLxVqbMWCC0ePHmbVrX3QPkWTOhWw TYnXNioyL4fuf++CFIwnSCGIVuksXiIij0oDCCOBS2gBDB8fgWyQzdyRx7jWZxat pgNjkRQbAgMBAAGjggJzMIICbzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFHO/9CDV X0UDG4AfolTIz9ig7MvmMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wKQYDVR0RBCIwIIIMbmVnYXJpbi5zaG9wghB3d3cu bmVnYXJpbi5zaG9wMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEB MCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYK KwYBBAHWeQIEAgSB9QSB8gDwAHYAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1 loFxRVgAAAFxGG/9MgAABAMARzBFAiEA6nQQR0LX1gCu7TLeLGDGlKe6jSABIlfi hJDLhOHvJPwCIGk0sFRhrte/+d000GvJaTp9KLYhSVHhA4n3p5FZVAchAHYAsh4F zIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFxGG/9JAAABAMARzBFAiBS mqORE36GlrzEOVPzjb5bxRGPKJr18S0RtZBL/KUKuQIhAOwOa9exUHRfNxxEQB0a gA5L0dXuvFMZ3G5lAv2qZfedMA0GCSqGSIb3DQEBCwUAA4IBAQCVJM6DLBETgDHs ihkj9DmGZ6MijRZLS/bk1I7r7rrwIH+3UNiHFSYxoAk7yuSQkmfgOnsSh8F1t3YM uge2w2S9QwLyapSqafxoHB3xHDHjodN19OAvaJBclnLdD80s+y0rSYx4x/dtcjdJ ni5GDPnviKz8T4mcvL1Puc5EA3BKS5up5of4Do97SVr0yx8xJvpNad21a+phaU0C P+vT9OctP22vwOr/RkwpJL6H0aJ8Z/kHnMmT6mdzoC0IUyczMyNdLdFar6hkYi5u 2oCOS0AnJnwuj++XpURFSzpgHltbIucLF/Wm4d2yd8WE5tMzwbhRnRSy4LsmHbvo 3Y0yQC0x -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwtuwg63BTIoEIaWvuP6j HeUFfj+LXBMpezbRWeIdOWY4Yc52frhDmTz333P3MYrFCEsJ3Y0YIoyYIsW2RQ5F oznY80Hp2y0UhWAKcwp9ANKcvklVHSBjp8vjJ7mTAWdz821IZaYqdC700zEoJfJo 7S2fDLbhZE+EKJS+y8GqSghcw0qaWxUiFfSdmiG7bLOrbetmP/PfI6bmy87kFz3P 5eIZ1R6FIfT5BOdxKii1cr3cP50fJeidbj/shmyaHYzDsCx2gww1NalmgzJhlWmY WmlwW3Wgct9fTlrw3BDKxwmSbJgo29W/WNAAq1gWQGu/FZXQKha4CEJlqAgk0ZA9 wgSLoinngqw9kNmobml1JYd3BmljrFXeEskrDFGSTxq489rmVtUKLGRKnE5fHENK 5K6UjagtOpctST/TNN9Ftsoz+CTuJvdUknZQMFdC8vyVE6qv9lwFYoEnkht36Hqv 22Phjs+xaAUEVNue9EN3mvkHbj+tJYRwfvMMWT4Af4jyUEC9SZ9gd5IOaC1GQz+d Gpz9oC9OQ4lp4F0Wb25UCoJpG8Fv6+e6yWqkh4mMJE8C8XG4DQ0vFWpsxYILR48e ZtWtfdA+RZM6FbBNidc2KjIvh+5/74IUjCdIIYhW6SxeIiKPSgMII4FLaAEMHx+B bJDN3JHHuNZnFq2mA2ORFBsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 279767705207775425578434526419305321934606 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-26 19:02:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-24 19:02:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'negarin.shop' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 794951945302352123227423961942909706260205388701903759433894276794767977290077501057789982942292230893559719305926746600762269570166527011991864988322153383641568616401494978324292223941561837180357877954815543652150300478043775009970306585575041118408980872114891824362229196618211499393369272455009615093214862840509610861818137585239733166873054323254841343868763394395148231204516378522331488947981638477611355180099196210129605567943975837635357218374166550209143505126492311592638716478675191655262928243244722332526938503676532642208731007033139551174658947231536737453762714711960565318141019691046436494056528979896759747707421746626951781683951664110744126755410736597092562990505934474279136690919451307146558946051195974378955512032081048615126291332696968084194349712288293719270210343784950512752652472444211199207474966472398055042093339923570721580886111244565170546239053172929965667688507409684831043414780334932333799266448101327957614596031432547903524535867823128517371306500687097016183375253183429760822876919752403939683873889095661959339449312594284099801404518760244958809989181681301382082442928587461898629530661175315730028244237859860984959016328802174508860585554727366190314400939877112508831860069403 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 73bff420d55f45031b801fa254c8cfd8a0eccbe6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'negarin.shop' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.negarin.shop' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076005ea773f9df56c0e7b536487dd049e0327a919a0c84a11212841875968171455800000171186ffd320000040300473045022100ea74104742d7d600aeed32de2c60c694a7ba8d20012257e28490cb84e1ef24fc02206934b05461aed7bff9dd34d06bc9693a7d28b6214951e10389f7a79159540721007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000171186ffd2400000403004730450220529aa391137e8696bcc43953f38dbe5bc5118f289af5f12d11b5904bfca50ab9022100ec0e6bd7b150745f371c44401d1a800e4bd1d5eebc5319dc6e6502fdaa65f79d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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