malgosia.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:14:ff:49:e1:70:64:64:62:49:ac:87:0a:c6:21:74:14:23 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=malgosia.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:14:ff:49:e1:70:64:64:62:49:ac:87:0a:c6:21:74:14:23Serial Number (int): 268481841882742120680085050906983770887203
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f1:8d:4c:4c:2a:35:38:45:53:75:19:b9:16:b8:9f:18:38:97:f2:3e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 70:c7:41:24:ae:23:34:8b:9d:1a:5e:54:c6:f7:3f:e3:5e:33:63:20
Fingerprint (sha256): 34:a8:07:6f:97:e1:df:33:f5:ed:8f:14:fd:85:b2:70:74:8d:78:76:32:47:f7:53:5b:d3:34:4a:89:54:6c:8b
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate malgosia.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for malgosia.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
malgosia.org
Other certificates including the domain name malgosia.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for malgosia.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUDCCBTigAwIBAgISAxT/SeFwZGRiSayHCsYhdBQjMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMTMwMDQ4NDBaFw0y MDA0MTIwMDQ4NDBaMBcxFTATBgNVBAMTDG1hbGdvc2lhLm9yZzCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBALWVLAqmZQfjZHCqaOFG9uv6fHB1BQAdCRXX 4dKBt4XS3WdZMPo/mNKSEdUDJmqqXOGXPvjLIOMuL/sCm0nOOzJ2BR3jOAl64tMv MUPGoyLE4tgF8j3HGM5GdKyY+68aiBLgdompBW3N27MbQ9LBe5/aCtOb1r1zwXPy s4cJMTnnpNjZV8eLVBaJEdMoKztlUdkWDmbx4iKsmA9CcFlqgpu/kzgviVRV1PZe r+Xl5vYWY/q31LQByJfrsBgUoeDVlgDCkTKtI4XiqtmaYBXDSqmlEfmwrJiI7JrI vmAa6Ozw+4D/yaaau9Ed6FotNGksCROBamQwgtRAKrAp+wbZ5P9V5UrMSYOGRQXL bM8UJ87wCK9Old/pDxHz8u+T9ynvoQSow77BaOkgfTpNNaCNTKN9PvveVm2tWiT/ VDW8XqIfYEZRTQLpwns8GpkWboUqhPznZNhaplBv/n6jz3cZMi9QgzDh5BG+ixLe bL3ifNUVH+jj3Uqe+ZZtwA/i0Hpjob9mlS/F2bONzguOTy1y8+SPRDtfBsZt4SW7 MNiMR2KdmEOKVsuypXECkASBYdr2fWYdfZbK6unlBUHh/8KiZ/jR8rnfUyskKtfV c0UxtjFsJa1S0op8Z7U/TM8DuG59juhAMv7DP6qWZASvbVepzwU45sc8Ps6WO3rF UttSWQObAgMBAAGjggJhMIICXTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFPGNTEwq NThFU3UZuRa4nxg4l/I+MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMbWFsZ29zaWEub3JnMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHYAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFvnJa1mgAABAMA RzBFAiEAu9ZqSf9LiLXcA+Dsfx5SZy9Zk9Mo/59di84S6UIOOdMCIELhvP3yDb0l SqmlSQPdhFauRXsxQtltSJRipX50QXD+AHYAb1N2rDHwMRnYmQCkURX/dxUcEdkC wQApBo2yCJo32RMAAAFvnJa1zgAABAMARzBFAiAQROUoys2Ga/JIl9WuJQIXz+s5 xQyQaOpLFQrluhk8ugIhAPesD+moB/8W4uEKTjuiBc2fYVWD9x73RBLXTgCstte+ MA0GCSqGSIb3DQEBCwUAA4IBAQBeXwM4Ntgu0ILDebV5uOF04SVA5UFvUGZ22qHV qkr+n4Zk5I3vJfCwkyCPpO89KpSsEItNzCZ5al2viFuANZVICxxd8G5ob9D1NdKR QRGakZoyPpTJ6lfplNF46Jm3VOjqZkpYtCwV2GC0ubP2S4vhBRRJnXqoNB/ciDjv n+nzcg2EKu2weDSpdVm+dIv9HjJWi34YHTuZsLPleoabjPaYVTpEVg4P3K83ZfF+ Vd25p0ymuPMTka8hTxUAMXf4WYweStrc+BAJkIqR5D7TYCf9G6cyuvbfKxVRBwDp dXQn/QzZbz2oS4PwKqertUhfuWdo8Tx4D6vQTHjF8xmHDjYD -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtZUsCqZlB+NkcKpo4Ub2 6/p8cHUFAB0JFdfh0oG3hdLdZ1kw+j+Y0pIR1QMmaqpc4Zc++Msg4y4v+wKbSc47 MnYFHeM4CXri0y8xQ8ajIsTi2AXyPccYzkZ0rJj7rxqIEuB2iakFbc3bsxtD0sF7 n9oK05vWvXPBc/KzhwkxOeek2NlXx4tUFokR0ygrO2VR2RYOZvHiIqyYD0JwWWqC m7+TOC+JVFXU9l6v5eXm9hZj+rfUtAHIl+uwGBSh4NWWAMKRMq0jheKq2ZpgFcNK qaUR+bCsmIjsmsi+YBro7PD7gP/Jppq70R3oWi00aSwJE4FqZDCC1EAqsCn7Btnk /1XlSsxJg4ZFBctszxQnzvAIr06V3+kPEfPy75P3Ke+hBKjDvsFo6SB9Ok01oI1M o30++95Wba1aJP9UNbxeoh9gRlFNAunCezwamRZuhSqE/Odk2FqmUG/+fqPPdxky L1CDMOHkEb6LEt5sveJ81RUf6OPdSp75lm3AD+LQemOhv2aVL8XZs43OC45PLXLz 5I9EO18Gxm3hJbsw2IxHYp2YQ4pWy7KlcQKQBIFh2vZ9Zh19lsrq6eUFQeH/wqJn +NHyud9TKyQq19VzRTG2MWwlrVLSinxntT9MzwO4bn2O6EAy/sM/qpZkBK9tV6nP BTjmxzw+zpY7esVS21JZA5sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 268481841882742120680085050906983770887203 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-13 00:48:40 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-12 00:48:40 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'malgosia.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 740792798256662321371460970004814739119775438468047659797845509316333811685948464169873264923463449982181588960365131538103046365492582448785135056302110051191010006222861228528433505246996153887949527341256417888037875972271506400431393089411156968654070062709990073303817923466302358441682389525491218258720877559454679608906829801785882004876364387045873113870944485770667243780701436282713309041981692024046252420645271274155452113277572608577660675045109060207390860209122569112801884144124059482126018423937253239309484018390634668391043554390444778861095357511136571995986841766273615587621762649531230510534040833116404489566736682376681086243444784488879033654701254612492374542330393685942718254111791936252575811665894096195160881308959948299363496627402999502647749967434831962153265749582758814228739171861036623191185644730258157540871784787211007751878681164739251134425556385517365946524267991831731613774342783759551625818942915341445884487172845103391052937393364315427126687342505743243870588896887521844954951962965492212965343405048305287909924286301070102289514702322042200779160657255102361739892742252743151485444644576850910026617554612335170875974099334856333428313697782217737369605419930975950425330090907 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f18d4c4c2a353845537519b916b89f183897f23e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'malgosia.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f9c96b59a0000040300473045022100bbd66a49ff4b88b5dc03e0ec7f1e52672f5993d328ff9f5d8bce12e9420e39d3022042e1bcfdf20dbd254aa9a54903dd8456ae457b3142d96d489462a57e744170fe0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016f9c96b5ce000004030047304502201044e528cacd866bf24897d5ae250217cfeb39c50c9068ea4b150ae5ba193cba022100f7ac0fe9a807ff16e2e10a4e3ba205cd9f615583f71ef74412d74e00acb6d7be . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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