openepda.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:88:d8:10:37:78:bb:ae:80:4c:0f:e9:a0:9c:3f:11:62:1d was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=openepda.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:88:d8:10:37:78:bb:ae:80:4c:0f:e9:a0:9c:3f:11:62:1dSerial Number (int): 307902457145465641715028731214021902033437
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: e8:46:cc:50:69:9b:bf:28:00:2e:11:a0:83:55:0e:f8:31:0c:ca:e4
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 6a:f0:23:2b:12:90:47:c5:9a:bc:8d:af:6e:14:16:60:68:25:67:52
Fingerprint (sha256): 30:a3:10:94:01:a3:30:ae:72:a6:83:4e:53:6d:00:7a:9c:fb:24:47:aa:dc:5a:a9:1e:5d:0e:0a:08:cc:44:3f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate openepda.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for openepda.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
openepda.org
www.openepda.org
www.openepda.org
Other certificates including the domain name openepda.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for openepda.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgISA4jYEDd4u66ATA/poJw/EWIdMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA0MjMyMTU1MzBaFw0x OTA3MjIyMTU1MzBaMBcxFTATBgNVBAMTDG9wZW5lcGRhLm9yZzCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBANaMP+nUQkiVIVc/kSlagg/AOom10omfLV8z AjK1WZVjTiTBctSswo6CpMKMp9W7rxiDWpHwbzM1yBrWMeUU3LE5zwMHygEB9elF yTjHkAGS3ZxgkhN6xhXdxeT+DKTWZa5HI0wQic051BPNkrhY59H596blpFoe8tNQ N23QDeSNFjMRdT7uUnOfz5CERy8SquYvm0Xkxqc3PQesIhL5pqXvuEibytBkWzNj bt3zFWcOhPJAjb7rxYcVFYrmnoz/rLSE4TA2TsMQ1nMAJC8Z01vV5ixgpkpU4DX7 wElwY909OG7a8481G9kmAgz9m8fKbzzRcnHmeqh9P65gFoQc9pkCAwEAAaOCAnUw ggJxMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU6EbMUGmbvygALhGgg1UO+DEMyuQw HwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEEYzBh MC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQub3Jn MC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQub3Jn LzApBgNVHREEIjAgggxvcGVuZXBkYS5vcmeCEHd3dy5vcGVuZXBkYS5vcmcwTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEGBgorBgEEAdZ5AgQCBIH3BIH0 APIAdwDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWpMaUxiAAAE AwBIMEYCIQCGZABTlz9Z5Pm7yALmHQgkTVc1nGdkNLMPaT4HZ70mewIhAPwHKMFR 9S0hHA8MzY75DcXNK3xAt9Nz5NHSdpI8HKwRAHcAY/Lbzeg7zCzPC3KEJ1drM6SN YXePvXWmOLHHaFRL2I0AAAFqTGlMqwAABAMASDBGAiEA89seTaQbPfA2zjBkbU21 pezN5IiynI3MGNZ22x7maPUCIQDMw6re3GSuTcEHh31WmLB9IIy+5dVT8vK1fl/j dQPMFDANBgkqhkiG9w0BAQsFAAOCAQEAWJFUQcPw0xA5FF8G8pe8eohjWjOOuqgX I1j8OShfJjmQL5pNyiXtWKJyXQDNywFfmPsD+3ZkwXRjDk2hEl8DkntgIl5xdYZZ UiiyH94sXIW9e6ZT+0LKr0d0y7KJrgt9eeA9V+oUuSAf89eGD4wLqLoy8sAdRHnO twsjhh3xaqKFMFwJgJ+SOcqAAYAOdr2mmd7M32N2YUj7WdlcE2J4VyRFY0YpMWkM 2/+yggu07MBaCQnR0kCgAJ5zIim/ibouPfyJD251798a0eBJr6p4e2s5mz9Xoe/y 6JvBwC7pDi3Qn9Z+yHMf/kJKZmg5MKumL2MS10kxVH6yNT69Qimuzg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ow/6dRCSJUhVz+RKVqC D8A6ibXSiZ8tXzMCMrVZlWNOJMFy1KzCjoKkwoyn1buvGINakfBvMzXIGtYx5RTc sTnPAwfKAQH16UXJOMeQAZLdnGCSE3rGFd3F5P4MpNZlrkcjTBCJzTnUE82SuFjn 0fn3puWkWh7y01A3bdAN5I0WMxF1Pu5Sc5/PkIRHLxKq5i+bReTGpzc9B6wiEvmm pe+4SJvK0GRbM2Nu3fMVZw6E8kCNvuvFhxUViuaejP+stIThMDZOwxDWcwAkLxnT W9XmLGCmSlTgNfvASXBj3T04btrzjzUb2SYCDP2bx8pvPNFyceZ6qH0/rmAWhBz2 mQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 307902457145465641715028731214021902033437 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-23 21:55:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-22 21:55:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'openepda.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27084156948537342550902105804843361267356581462864953800847672052783589182345155887064035238308396033601440951132600312489810918952661477542662694714711221327629231395310752410112813156043472881270063538079513394536832097845843751756877589091219179072479869888517593562158874184529978019530912598099793041985949692273522379929487265536152721899585434324095827652614743443116006596512994756397086416545532418288519303339227109308241013095139328791338897636462150031217009809419691287286256136305015672561043739993259775851617767473396168639312731895686680369915167400922440344750698704192872685357634374963274096375449 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e846cc50699bbf28002e11a083550ef8310ccae4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'openepda.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.openepda.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016a4c694c62000004030048304602210086640053973f59e4f9bbc802e61d08244d57359c676434b30f693e0767bd267b022100fc0728c151f52d211c0f0ccd8ef90dc5cd2b7c40b7d373e4d1d276923c1cac1100770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016a4c694cab0000040300483046022100f3db1e4da41b3df036ce30646d4db5a5eccde488b29c8dcc18d676db1ee668f5022100ccc3aadedc64ae4dc107877d5698b07d208cbee5d553f2f2b57e5fe37503cc14 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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