averie.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:14:a2:24:b6:e8:19:69:9f:62:c3:70:10:53:91:f4:78:89 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=averie.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:14:a2:24:b6:e8:19:69:9f:62:c3:70:10:53:91:f4:78:89Serial Number (int): 268358030701490919217392305610233042204809
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: cb:a3:c7:84:49:89:11:7a:dd:ba:d2:30:b1:59:6d:dc:60:da:22:d2
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a9:18:29:01:da:cc:05:79:14:23:3a:9b:3d:0e:e6:c6:d9:48:e3:29
Fingerprint (sha256): 35:96:63:29:f7:e6:8c:9f:5e:7a:ba:53:4f:2d:01:96:8a:20:40:75:96:52:a8:87:cc:59:38:b3:b6:b6:1e:86
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate averie.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for averie.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
averie.org
Other certificates including the domain name averie.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for averie.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTDCCBTSgAwIBAgISAxSiJLboGWmfYsNwEFOR9HiJMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMTAwNjE2NDZaFw0y MDAyMDgwNjE2NDZaMBUxEzARBgNVBAMTCmF2ZXJpZS5vcmcwggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQDpu7SMlbxv4aX3bKaCsL1yWeAl4+b/OaxoieCE sN/5npUNYrV3hRgU9EPaiBrUivRMrV2OsHljwcLyyS2D2wiA0N0HHdppsdWxTnjs u/61U2+D66Vm+g6jXQ2VeUuMVDyV8FnNE8eTFaZvZSHqph6r7xkzJPfsCRPbAvI1 TXIshoQbkITc8zlSaaFM86rJxZWhfp+zPDkZBoIUG5X9eCA/1goXitJD4Y6Sz58U qwn/tt5MBRl1htKPO1QVXxFtRG4jNU0khAL4GFS/K/msfq3nK1VZW2yvdhhfi7An vfuyEfWsKJA4JoNHh2r6+6Z9csCJ3oT0HdDTMjV3UAlOSGdePgnaZQBPw2+WL7dY RhHzN6kb0KwYQrRRlnUGOmpC7G92d9RVjVakCmfLse+R+AgpBB6ZcBsRkUpR5pwM c0af4YPmQ5aGdistTVsdA1sUwxCLCKj97qCnxeLmnqHJkYcqMGvNWhMQMA+nMLEN 7vDgNOP9yTACXNDPeSUUjDkOjtQvukRB/szfpQviQ2KkDLNA72XF6YpmfdEBWu4A VKWes959L2WsT57cZfDEuPhrW97rcYttHpZ5K7ga8LMxmrTZpn9KH92Rv9ut42BE 2DUg2c2MgavAZ0V+owtn9x5Go3Hg0KNkjhCltp2KhPgtJ448rZEqeEsQF7tw3CW2 WCa5owIDAQABo4ICXzCCAlswDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTLo8eESYkR et260jCxWW3cYNoi0jAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMBUGA1UdEQQOMAyCCmF2ZXJpZS5vcmcwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdQDw laRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAW5ULBowAAAEAwBGMEQC IFchQeoUy3Lg2Yy/kzqNk18ZMp4bYFg3YAzaaj0QQet2AiBXatUMhJ07cd0lXoYj KLDiru/COqgulmUmvg+2Dx9T/gB3ALIeBcyLos2KIE6HZvkruYolIGdr2vpw57JJ Uy3vi5BeAAABblQsGkgAAAQDAEgwRgIhAJaXRkgsxXuAD7O80/xngbjBIaUM37xM E2ZCKiVpaR29AiEAohNzU1QDOlnefRUFVS/L3g9F5UXco+ebOC4xI4L7XDkwDQYJ KoZIhvcNAQELBQADggEBAHtSjWoPj6w5hL1P6V7M+RH8NkokNX0iva80OK/2XEPH XSDk7eMR30A8FAtuPNBcJDIhOcNjIXc/DXWbWwNV/d0Ok49Qsby75JHmJfgV4lSa fyTUEc11cMZwwJGbmyaQQBApfRCrDE0YRgTSaps8BugtalkXKZqhBTp5y2kIyZp/ qQkPzfuCMVa3Ej3RWVt0Toje8Eqi78Lekq8/OJR/H74hj2Pua5UWUPVf9KC+Ra2G QJMTIsXp8Hnc5XLGpRuyGf8XWL/3SkxW4gLKI7H71wZXjrxUosFE32++3e8zQfrE wztMfcK5g3mKeCFy6JMEYenQ01dv+tYzWQfVtRGDMz8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6bu0jJW8b+Gl92ymgrC9 clngJePm/zmsaInghLDf+Z6VDWK1d4UYFPRD2oga1Ir0TK1djrB5Y8HC8sktg9sI gNDdBx3aabHVsU547Lv+tVNvg+ulZvoOo10NlXlLjFQ8lfBZzRPHkxWmb2Uh6qYe q+8ZMyT37AkT2wLyNU1yLIaEG5CE3PM5UmmhTPOqycWVoX6fszw5GQaCFBuV/Xgg P9YKF4rSQ+GOks+fFKsJ/7beTAUZdYbSjztUFV8RbURuIzVNJIQC+BhUvyv5rH6t 5ytVWVtsr3YYX4uwJ737shH1rCiQOCaDR4dq+vumfXLAid6E9B3Q0zI1d1AJTkhn Xj4J2mUAT8Nvli+3WEYR8zepG9CsGEK0UZZ1BjpqQuxvdnfUVY1WpApny7HvkfgI KQQemXAbEZFKUeacDHNGn+GD5kOWhnYrLU1bHQNbFMMQiwio/e6gp8Xi5p6hyZGH KjBrzVoTEDAPpzCxDe7w4DTj/ckwAlzQz3klFIw5Do7UL7pEQf7M36UL4kNipAyz QO9lxemKZn3RAVruAFSlnrPefS9lrE+e3GXwxLj4a1ve63GLbR6WeSu4GvCzMZq0 2aZ/Sh/dkb/breNgRNg1INnNjIGrwGdFfqMLZ/ceRqNx4NCjZI4QpbadioT4LSeO PK2RKnhLEBe7cNwltlgmuaMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 268358030701490919217392305610233042204809 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-10 06:16:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-08 06:16:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'averie.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 953548359614024487369430236625195827512464024563617413362292408395385368716394803835340517989867869901787245365351528948986705395460972933022022835091889305709724766920050526932750365461542734159791653579723423703953932169401737638518017728415478837576956707682494731538820410702556604682431217576177055313669332564177826353253523139537783620865702604511154685071604253161805937063470060449597286754400246848031296740876071617673844026312513207318602092512164303436116375116288164225345518530847928546634869884051992844099124281982920899645867456095319323098797033634229291854133874421551642527724173792099179139630700348826935013814576726922826762849922589522068120277673543172516645642857994766384134534529536540514476470126158212973751009128371356967982795021164216903486153893022041437097399465762275463769320998476880943705184915903539837087408453803660945979803594310882880806796324837774550051480973873873741999005967737384829630607495838252725869076722147303158986667793914057700059089037821037378917683171563859026348480308998848102399365410415690176597848271680821761690568316015154147490104545648737559222751158198300752928093463341704010575666164761879332610880356241211036933978860192265464405085056223794763010744433059 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cba3c7844989117addbad230b1596ddc60da22d2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'averie.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016e542c1a3000000403004630440220572141ea14cb72e0d98cbf933a8d935f19329e1b605837600cda6a3d1041eb760220576ad50c849d3b71dd255e862328b0e2aeefc23aa82e966526be0fb60f1f53fe007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016e542c1a480000040300483046022100969746482cc57b800fb3bcd3fc6781b8c121a50cdfbc4c1366422a2569691dbd022100a213735354033a59de7d1505552fcbde0f45e545dca3e79b382e312382fb5c39 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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