www.vzh.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:63:e2:c2:d1:22:2a:92:97:b5:86:1c:df:21:63:d3:c4:b1 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.vzh.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:63:e2:c2:d1:22:2a:92:97:b5:86:1c:df:21:63:d3:c4:b1Serial Number (int): 295326229194822134845274109702049014990001
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 52:a9:d9:a7:35:37:de:62:4d:d1:65:b7:26:42:6c:20:4b:b8:80:48
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 56:14:c6:ca:cc:b1:5f:64:52:78:c6:36:4c:88:b4:96:42:8c:06:b5
Fingerprint (sha256): 31:8c:5d:1f:ea:af:92:f5:08:4e:be:bf:c9:f1:8b:82:27:95:c3:6c:91:f0:19:de:90:24:9d:af:47:66:97:23
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.vzh.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.vzh.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.vzh.org
Other certificates including the domain name vzh.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.vzh.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTjCCBTagAwIBAgISA2PiwtEiKpKXtYYc3yFj08SxMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMDcyMDA5MTRaFw0y MDA0MDYyMDA5MTRaMBYxFDASBgNVBAMTC3d3dy52emgub3JnMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEA0SCcOpZPgJvKLv4j/JSji5jwcPfykVb+S1vg 8ZXmaOufJPn4ajxxmKfy40ti9NQ3InLZgb79Vi3d8LiORkUDZfdPZBc8QKirqWIZ ehQKARQCnAjRIOps3tJOsbLoNS4JHjmp2lsrzYFZj5N7y+/Byj9x/DJgaYejfWzn Any885koXcISJECIXvOHq8pP4b2ay8mRGzcU1IIPRo9WZvBfShtOD6WJshzMrw51 udkdHvtY3oSoWZ3V+ksrp957QjLCz/hmlDDQXHVeA7DiOaWug/VPfyI0ydo0F138 Y9DHQBsD3B+AtLxfzQJnd425Swe4Q4s0q9YXNmcjWni5RDc7Ra1ANsDQbp85U5n8 2yUN62FkSHSL65oFP3N8hZBg/m7QI64hemDrXI1DaLeJPWYAYn+1v0kPwRBjQR5R QQ3jMfOaLkTKe/HHVE7OVahHc9VNjr9Kx0PIrNT59snw25mz/pTj7nG+oBB2KVpT xPutr5mknYe22GsrADjfTGiVJ166EDct4YmPDRolUMS9iqEoIMVqLxnsU/5TYpN2 BtODjImi8Jp81hZPxt6tRm40NAedUR5KIlj92KfMr+XcBXYl7zHOXkseb1SGYTjz yq7/csDNwru+Evru0keyCddPduDEe2fLDr6JLS4rrjQEZOWbbVRZFgvXkcHehIGo vsEaH68CAwEAAaOCAmAwggJcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUUqnZpzU3 3mJN0WW3JkJsIEu4gEgwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAWBgNVHREEDzANggt3d3cudnpoLm9yZzBMBgNVHSAE RTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRw Oi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2 APCVpFnyANGCQBAtL5OIjq1L/h1H45nh0DSmsKiqjrJzAAABb4HXF5cAAAQDAEcw RQIhAJysNSNVLxKrmGMpcRzJekkaBM/QUEtgQKH/8imARjwWAiAeNWgJ/5ATpT1X TS3BtV5IzsOZn8St9zxVJn7WBzgzVgB2AAe3XBvlfWj/8bDGHSMVx7rmV3xXlLdq 7rxhOhpp06IcAAABb4HXF8oAAAQDAEcwRQIgNy7UNGWtMqzNKL5F77NLlnJvHtRd R7yBGkZQa0//BgACIQC2v/IrpU6vpSY3CZP1MIpwzhPm5UZlF1DevIcUEEXPoTAN BgkqhkiG9w0BAQsFAAOCAQEAZlMVU+6vt88VvYskLvpZt0PsuUr2QrxbwgkvrnYw nw79djcefSmdEd/VWVsFK3hsnbmGaDiEFZ9hhMLbwPB3UEAkfX3NUCQ0D8HmuBt9 UtX9d3Kdn8tSmMIcIGwYvnKOO246bMjNKonXRMDX3X98O5ji8hjaKlA8BSJKe9Bk Fim4taL+LQ4FBNvR8NP+dikJ3MVa9s29e7cDYJgvjnghRWpt0tjqg3SozY5KcvTl 2yJ6Mb+FLrghv0mNdI0VYXSfsYrUetuYypUb+LuU0z59XFcQqtpquIveYI2o3laS z0otuY4VKG+fj+9XNWjahwbla5jBuGt/TGc2GFNuuQgGNw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0SCcOpZPgJvKLv4j/JSj i5jwcPfykVb+S1vg8ZXmaOufJPn4ajxxmKfy40ti9NQ3InLZgb79Vi3d8LiORkUD ZfdPZBc8QKirqWIZehQKARQCnAjRIOps3tJOsbLoNS4JHjmp2lsrzYFZj5N7y+/B yj9x/DJgaYejfWznAny885koXcISJECIXvOHq8pP4b2ay8mRGzcU1IIPRo9WZvBf ShtOD6WJshzMrw51udkdHvtY3oSoWZ3V+ksrp957QjLCz/hmlDDQXHVeA7DiOaWu g/VPfyI0ydo0F138Y9DHQBsD3B+AtLxfzQJnd425Swe4Q4s0q9YXNmcjWni5RDc7 Ra1ANsDQbp85U5n82yUN62FkSHSL65oFP3N8hZBg/m7QI64hemDrXI1DaLeJPWYA Yn+1v0kPwRBjQR5RQQ3jMfOaLkTKe/HHVE7OVahHc9VNjr9Kx0PIrNT59snw25mz /pTj7nG+oBB2KVpTxPutr5mknYe22GsrADjfTGiVJ166EDct4YmPDRolUMS9iqEo IMVqLxnsU/5TYpN2BtODjImi8Jp81hZPxt6tRm40NAedUR5KIlj92KfMr+XcBXYl 7zHOXkseb1SGYTjzyq7/csDNwru+Evru0keyCddPduDEe2fLDr6JLS4rrjQEZOWb bVRZFgvXkcHehIGovsEaH68CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 295326229194822134845274109702049014990001 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-07 20:09:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-06 20:09:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.vzh.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 853165291037908926322691728859911209648520035224389327143890050673991137106215579311165814987857205860932851435950222432174332013718828648025406954387904770496932184437337736926517705099727733183768159328231586154009909116163704071059071514801461400226271163341463643890990089562429188408983720325653956658197054219630929032770651729269765201538522160603546806674882710966464149243900422127802660504615602738648882501517904252228762406485744744999105311243081634832782665250643336856156743426629672970269326766662880575011589761183642109399032360941082638510550525308961206635262102417193614538584746116128108334263796209160651446982441048169457816922430549533573529479263978970634556017253884230318216639904269772829426996791876333343849271091671934040275720193602074068113838230172579663363332051938067371026543633758649274855155003881447259355133430357470368875223592274031222402834235322417333409549512799627180330498419789043773745921340378997137583974458639635600753943637211642837069613298890686766313368102267721159801079764066560440941932575615428081289805680347147857844881489035147006711417448257012523133986307411974679525962296759482630339376604186692776819387114829028196136928619667803178021194481230674165612697755567 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 52a9d9a73537de624dd165b726426c204bb88048 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.vzh.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016f81d7179700000403004730450221009cac3523552f12ab986329711cc97a491a04cfd0504b6040a1fff22980463c1602201e356809ff9013a53d574d2dc1b55e48cec3999fc4adf73c55267ed60738335600760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016f81d717ca00000403004730450220372ed43465ad32accd28be45efb34b96726f1ed45d47bc811a46506b4fff0600022100b6bff22ba54eafa526370993f5308a70ce13e6e546651750debc87141045cfa1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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