digirad.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:a0:aa:ab:d9:f5:81:42:da:35:da:5c:96:8c:6f:51:42:10 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=digirad.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a0:aa:ab:d9:f5:81:42:da:35:da:5c:96:8c:6f:51:42:10Serial Number (int): 316008897565410927442177359716380975383056
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: cb:c3:4e:a2:3d:b0:b2:5e:a3:89:6f:ed:1d:2e:49:7d:cf:71:c8:31
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 1d:59:40:9b:23:e1:07:d4:a5:1a:14:6c:87:37:38:66:2d:77:7d:bc
Fingerprint (sha256): 2e:2b:ed:2e:bb:f7:d9:9d:8d:8e:d0:db:e3:ae:a3:69:89:21:49:ee:eb:7e:b9:ff:84:df:be:ce:12:13:51:56
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate digirad.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for digirad.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
digirad.com
www.digirad.com
www.digirad.com
Other certificates including the domain name digirad.com
(limited to 100 certificates)
digirad.com
www.digirad.com
support.digirad.com
www.digirad.com
www.digirad.com
digirad.com
digirad.com
digirad.com
digirad.com
www.digirad.com
helpdesk.digirad.com
helpdesk.digirad.com
digirad.com
digirad.com
servicedesk.digirad.com
digirad.com
digirad.com
support.digirad.com
webportal.dmshealthtechnologies.com
*.digirad.com
www.digirad.com
www.digirad.com
digirad.com
wvpn.digirad.com
*.digirad.com
support.digirad.com
helpdesk.digirad.com
wvpn.digirad.com
*.digirad.com
digiserv.digirad.com
digirad.com
www.digirad.com
digirad.com
helpdesk.digirad.com
*.digirad.com
digirad.com
www.digirad.com
digirad.com
webportal.dmshealthtechnologies.com
digirad.com
*.digirad.com
www.digirad.com
support.digirad.com
www.digirad.com
support.digirad.com
digirad.com
webportal.dmshealthtechnologies.com
dgkbox.digirad.com
www.digirad.com
www.digirad.com
www.digirad.com
support.digirad.com
www.digirad.com
www.digirad.com
digirad.com
digirad.com
digirad.com
digirad.com
www.digirad.com
helpdesk.digirad.com
helpdesk.digirad.com
digirad.com
digirad.com
servicedesk.digirad.com
digirad.com
digirad.com
support.digirad.com
webportal.dmshealthtechnologies.com
*.digirad.com
www.digirad.com
www.digirad.com
digirad.com
wvpn.digirad.com
*.digirad.com
support.digirad.com
helpdesk.digirad.com
wvpn.digirad.com
*.digirad.com
digiserv.digirad.com
digirad.com
www.digirad.com
digirad.com
helpdesk.digirad.com
*.digirad.com
digirad.com
www.digirad.com
digirad.com
webportal.dmshealthtechnologies.com
digirad.com
*.digirad.com
www.digirad.com
support.digirad.com
www.digirad.com
support.digirad.com
digirad.com
webportal.dmshealthtechnologies.com
dgkbox.digirad.com
www.digirad.com
www.digirad.com
Certificate
The complete raw certificate details for digirad.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgISA6Cqq9n1gULaNdpcloxvUUIQMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMzAxNzA0NTJaFw0y MDAzMjkxNzA0NTJaMBYxFDASBgNVBAMTC2RpZ2lyYWQuY29tMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1NvbvBEHXgtsYAhosv+ZSWFbhAb3XLiciRKf XvzPjw9mrHcEVx+U4Bwoz56uUMXpFIw12zdk+7UMW0WgzAIM9JqysMJSQFYeeHe2 oePEmOhSgvlHE3LeJJX4BoGlJBXTF8lPIr8uTUYrZgk03Ua8hgnKVzL+8Sx30KQ9 MDZyNlNYgYbkEtKz8QMcxWxqaL3JFl05GWQCGT0arjLjRX6jK11F7+e584GyFHON WAECa73P530TjDkG7mFWnqPJclWNh2ENPlWyNOC0gmeoXvOlWZo2Gp3KHe5p0fYp rc3R4NhHvWeG6mQWV1zXqBd1yiaM7gn3WtA8AdDECNP1fInq2wIDAQABo4ICcTCC Am0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTLw06iPbCyXqOJb+0dLkl9z3HIMTAf BgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEw LgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcw LwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcv MCcGA1UdEQQgMB6CC2RpZ2lyYWQuY29tgg93d3cuZGlnaXJhZC5jb20wTAYDVR0g BEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0 cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAA dgDwlaRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAW9X+2vJAAAEAwBH MEUCIQD3DA2kgdqLNt7TAwEFodOsNzHYjcdJe/R7Pbu0GXwhgQIgFQeBw753PEvf uvGFiGB6JAZ4I2gTl1BiSAPELgiFblAAdgCyHgXMi6LNiiBOh2b5K7mKJSBna9r6 cOeySVMt74uQXgAAAW9X+2u6AAAEAwBHMEUCIH9xxp0DVGsEK6xrmklwWMu9zc8e F0eWLK8KaZQJuV+HAiEAroGdr6rJa5Z7vDhfVG/FWX3Gariy/maBHvYCz7UO/S4w DQYJKoZIhvcNAQELBQADggEBABkIPKn1b5h9bcABeGjNxl2jVy5M7BNPP2i6R48x tZjvgfMPIaq1a6JNCOo+s6hUHa7b24sxkBjIW3bNCve6tuRj1+UoaWodvjM2Y4Vx jPRMimRvk5WuaauKv3EVzLfu7XVoYZe6UFXLgIe9Kq8uBa6qQSPtINvYBW/5XL7y GXVx5E1JCEnrw5dCVEGEM44zE+wfGmUVp0b62i9XHkxTQHtlvoNZNgzVD3E0b9J1 cxfRQU6wwnHdeLQaY1x648HEXfZH8pWF/6J3yRsQgzvUvujriwHI6ltJwxzf/TYK 8Dig9YuoPLtw1Aajk5LWJwKc7zgYqKUT/aUsAAOTyZstt2w= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1NvbvBEHXgtsYAhosv+Z SWFbhAb3XLiciRKfXvzPjw9mrHcEVx+U4Bwoz56uUMXpFIw12zdk+7UMW0WgzAIM 9JqysMJSQFYeeHe2oePEmOhSgvlHE3LeJJX4BoGlJBXTF8lPIr8uTUYrZgk03Ua8 hgnKVzL+8Sx30KQ9MDZyNlNYgYbkEtKz8QMcxWxqaL3JFl05GWQCGT0arjLjRX6j K11F7+e584GyFHONWAECa73P530TjDkG7mFWnqPJclWNh2ENPlWyNOC0gmeoXvOl WZo2Gp3KHe5p0fYprc3R4NhHvWeG6mQWV1zXqBd1yiaM7gn3WtA8AdDECNP1fInq 2wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 316008897565410927442177359716380975383056 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-30 17:04:52 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-29 17:04:52 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'digirad.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26870936840204657781216375285592648055956066293357581981734842590013479829653920327408984005028243544104256835281756817912048472143026423291660080778636580326911074161299185863496820482455242934839128605131436045599424977484819606400884563806642011797058438710021795596858408979858223078518014413241259584910228912630341976097085058532040584771811123795486539928057834190841354433335279878474124563998471622601724477339140384496242111554046316599868028284508387883488579349154048635946004469655652583349110207306461310200286974620000569545072628228943713438213088568784096768261980334251179833336819399024009324128987 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cbc34ea23db0b25ea3896fed1d2e497dcf71c831 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digirad.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digirad.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016f57fb6bc90000040300473045022100f70c0da481da8b36ded3030105a1d3ac3731d88dc7497bf47b3dbbb4197c21810220150781c3be773c4bdfbaf18588607a2406782368139750624803c42e08856e50007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f57fb6bba000004030047304502207f71c69d03546b042bac6b9a497058cbbdcdcf1e1747962caf0a699409b95f87022100ae819dafaac96b967bbc385f546fc5597dc66ab8b2fe66811ef602cfb50efd2e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0019083ca9f56f987d6dc0017868cdc65da3572e4cec134f3f68ba478f31b598ef81f30f21aab56ba24d08ea3eb3a8541daedbdb8b319018c85b76cd0af7bab6e463d7e528696a1dbe33366385718cf44c8a646f9395ae69ab8abf7115ccb7eeed75686197ba5055cb8087bd2aaf2e05aeaa4123ed20dbd8056ff95cbef2197571e44d490849ebc39742544184338e3313ec1f1a6515a746fada2f571e4c53407b65be8359360cd50f71346fd2757317d1414eb0c271dd78b41a635c7ae3c1c45df647f29585ffa277c91b10833bd4bee8eb8b01c8ea5b49c31cdffd360af038a0f58ba83cbb70d406a39392d627029cef3818a8a513fda52c000393c99b2db76c