www.zamia.cr
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:21:e5:9c:3d:81:19:e1:f4:b5:1c:0d:27:58:c7:7f:83:a5 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.zamia.cr
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:21:e5:9c:3d:81:19:e1:f4:b5:1c:0d:27:58:c7:7f:83:a5Serial Number (int): 272871380360471815478413329268314698908581
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3a:80:c8:67:62:79:0b:f6:4c:58:5d:eb:4f:2d:4a:8b:dc:f3:19:95
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e7:34:bf:ad:da:74:8a:74:bc:b2:24:64:78:80:ac:63:4b:80:97:ad
Fingerprint (sha256): 35:40:06:77:d4:5c:93:ec:fc:fb:f5:fe:1b:c7:e1:47:d5:76:db:b6:d8:20:03:84:05:ec:8a:57:80:42:ba:2d
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.zamia.cr
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.zamia.cr
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.zamia.cr
Other certificates including the domain name zamia.cr
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.zamia.cr in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgISAyHlnD2BGeH0tRwNJ1jHf4OlMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA0MDcwNTIwMjlaFw0x OTA3MDYwNTIwMjlaMBcxFTATBgNVBAMTDHd3dy56YW1pYS5jcjCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAMp6OhYsZwNIjZWrHRWlkVmRbCAJlcihV1EH fTzQTnfF9tix6IP+iC7J2aOh/klv+bGbtIxRxWcYaXtE13JB2/CbRTofzvksaqi6 zWelxvGYvfY6Tu7Xfp+XcdxuJXhTh6EBQlOegPqJSwGiYsXP7bKs963SHuDQ9pdX pMxCAMggRpcXhD41ZtCxZGoage6KLlS5mEwgQesBxRq3ez27uvgKe/yxR5AcDCGu QZij0EWaHjPNKj25iTIm9MzEToDP116jbQwjxER1R3bC6Y8DAAJalmOsOUq+yfve 899Cgl6/9FudhTQkMdR4iiBFv9oKzLJjS0vdp0tnzGJ0eNtXFC8CAwEAAaOCAmAw ggJcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUOoDIZ2J5C/ZMWF3rTy1Ki9zzGZUw HwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEEYzBh MC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQub3Jn MC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQub3Jn LzAXBgNVHREEEDAOggx3d3cuemFtaWEuY3IwTAYDVR0gBEUwQzAIBgZngQwBAgEw NwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5j cnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdgB0ftqDMa0zEJEhnM4l T0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWn2dJl4AAAEAwBHMEUCIQDilZvf6R5FuGcE JH8hA2yM1Qh8s+r1xWtmgjQYWp8EpQIgJSh2RhKZdV+3kb3G19B+rNAUBg7mpI/m 07eZgVnmJA8AdQApPFGWVMg5ZbqqUPxYB9S3b79Yeily3KTDDPTlRUf0eAAAAWn2 dJmPAAAEAwBGMEQCIBlGIEk1QNCdZaa4Gd/eirimo+wu/NCSOohji9FDHpmEAiAn ykGRqMMFJ2mPKQuY7KALN5exFhLhjyW8VJDm7WP7kjANBgkqhkiG9w0BAQsFAAOC AQEAlGQL80yuD7jcDv3GaDaKsQUNsr2bdt9mxP7shAdRB3CuPZqsE3WYJlO1d5e8 cpqNXZr0bpNQgcPFWJdjXuSglPo2Zfj50nz+9m78BHeT0/GrzYFxW6k5hopCaL1L kGlUNCNhkio9dnoO1HxNsyDloTBoUV62En6vUiaO09fZLNMNRLKg/1xMGY8desL4 7bH7WFjhSqioWVtiVPDiiPXXsxPbTAfscs3n6oE2svKW8aVVfHJXnKcMn9dikWD5 qRFlt1rNi2OMBQgs07UK7dbOo/3xk54akckLSa95Ceazr3tq7799oRYLP3w0YSrd iN072l5E7KNOZB6tpYfGuwdXOQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyno6FixnA0iNlasdFaWR WZFsIAmVyKFXUQd9PNBOd8X22LHog/6ILsnZo6H+SW/5sZu0jFHFZxhpe0TXckHb 8JtFOh/O+SxqqLrNZ6XG8Zi99jpO7td+n5dx3G4leFOHoQFCU56A+olLAaJixc/t sqz3rdIe4ND2l1ekzEIAyCBGlxeEPjVm0LFkahqB7oouVLmYTCBB6wHFGrd7Pbu6 +Ap7/LFHkBwMIa5BmKPQRZoeM80qPbmJMib0zMROgM/XXqNtDCPERHVHdsLpjwMA AlqWY6w5Sr7J+97z30KCXr/0W52FNCQx1HiKIEW/2grMsmNLS92nS2fMYnR421cU LwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 272871380360471815478413329268314698908581 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-07 05:20:29 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-06 05:20:29 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.zamia.cr' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25560409934328566693186025147381558944805258066272691566783207619492404168693662170307624255728653517425090216463946883876904348809994713840878069003036319710128734572242072434524600972077587466107958760898931306157061424630398025350673154577987505298470012938786791165255428538840612941586239688862053158432969333241668665351941914012365127432561119476421342769371909720799996238768671828415737916548532208925090425227458110401235926015080610639957534180414677587749895977396311125220806616608992806771359269045255033915138844949154665224370163473527871615308238768174151654556129972679980255988452207621239668675631 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3a80c86762790bf64c585deb4f2d4a8bdcf31995 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.zamia.cr' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000169f67499780000040300473045022100e2959bdfe91e45b86704247f21036c8cd5087cb3eaf5c56b668234185a9f04a50220252876461299755fb791bdc6d7d07eacd014060ee6a48fe6d3b7998159e6240f007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000169f674998f00000403004630440220194620493540d09d65a6b819dfde8ab8a6a3ec2efcd0923a88638bd1431e9984022027ca4191a8c30527698f290b98eca00b3797b11612e18f25bc5490e6ed63fb92 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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