www.zaiden.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:62:c1:81:1f:69:35:8e:d8:f2:0c:e2:54:de:f4:64:8b:be was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.zaiden.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:62:c1:81:1f:69:35:8e:d8:f2:0c:e2:54:de:f4:64:8b:beSerial Number (int): 294941741200104179290199581151714802437054
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 2a:42:7b:cb:53:5b:37:eb:29:e6:18:ec:b6:ae:fa:07:50:be:82:3f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 91:c5:79:b3:02:27:e9:e4:ca:6b:6c:11:fa:d5:9c:bd:45:21:cb:dd
Fingerprint (sha256): 3e:99:84:32:f3:4c:d6:03:e8:81:1d:5d:c6:78:6c:86:4d:0b:ed:3d:c5:62:e4:b7:4b:45:33:52:db:1f:b2:04
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.zaiden.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.zaiden.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.zaiden.org
Other certificates including the domain name zaiden.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.zaiden.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUzCCBTugAwIBAgISA2LBgR9pNY7Y8gziVN70ZIu+MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMjUwMzUyMzNaFw0y MDA1MjUwMzUyMzNaMBkxFzAVBgNVBAMTDnd3dy56YWlkZW4ub3JnMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAorr9rBpCtLVvPjF0BMvVyeCLI1JDdLXA uLklprg5KMIT94pypkW+cCKMoMmbDuYCwYF3rmwCukFojxepTaY+nzOi7CbYD8H2 pPcWR1FYYpUste//u4AvbKcKkoaTYuFiKS/uwjh851FEg9Oaklr5k0+o2gTjdzou EBD4QOcwG/02WspCjX6MGIxOhuwqxBZtQmLdr3uFE7INKTJoZykzFOgVG3T40J0A BK1ditP6yyn5HoG+QwfoIuJ36wPFSLYS0rVjx1arX/LsRn0mkWrOoM9h9bgNiaaa O3pOQdk5R6kg0P+uYt2oaWLLxlfGfnAwWvxhz4DsYFS3eAlK6JdRTAmq36xFrrmn 2OiwwTFiX/+PC+0siuIqorqPFCDxc/sTAm4FQAA2taUe5uX1nRhGdldpkzzIITp1 l6uJ9EQ0yPfOiy7X3rUR+tJmClsMtqYBK8cdTvcRZ3Zttof4lneGdCj4qxW/oXtp sm3PwuTVV1MLR6COJfJpDKLSN2aEgE17wnn1SxZJzkboXsJs0OEsWooQBujdndhI jljHvO/yZnCffM37VGYwUIrXDY0RVBwiL7z3lGatvu9quRbLiDbdw8bGDAdnnklp OYJFxwiQG+LS4yaA0pIQH2ztIECnloa38873iZQg5wXfY+dOGhPtMoD355+3SO6b nFKSBQRzGykCAwEAAaOCAmIwggJeMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUKkJ7 y1NbN+sp5hjstq76B1C+gj8wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAZBgNVHREEEjAQgg53d3cuemFpZGVuLm9yZzBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQE gfEA7wB1AAe3XBvlfWj/8bDGHSMVx7rmV3xXlLdq7rxhOhpp06IcAAABcHqwg8UA AAQDAEYwRAIgW6RpJKh2cY0dIPpNzFSkIWELN4t3i/w7/YTuoyvqc7UCIAtqmErZ Neg6Do8pB9erNNLBC7wiesihOMp3rHu0aMTcAHYAb1N2rDHwMRnYmQCkURX/dxUc EdkCwQApBo2yCJo32RMAAAFwerCEYgAABAMARzBFAiEA4bhEMHC9KW8KcZWxK/nE uoHE2jLcXfW/NwemL6HMpSgCIFeS//nsn4vjVaDc2kW0jk0aJlVsbp3kaaxex7sK gxOHMA0GCSqGSIb3DQEBCwUAA4IBAQCE/riR3VQfMxDP+5nsKMy/gV4ejjcyRO6+ J0C6W7NocwolwJ19eM9YKxs0eyKSIWS4l6MdH9dg6k8vIoLp1Dh4fUEkF/CL6jGd u79EZOpGJE/lS1ajF+RDXA53dQPTJDEbsp7fy/3bpUqCpCsMtljE3+dueqBaoEwr /WawW+V4UkEWczOFtWY/NNfdKerWSZl3eHgTHXc/hHS7l/cDjsESUxb3rGqFSNXs 7kKIBte5weIpPjcmvGW5W+TVBawgLFDQjUycwhz4liNy+dhzmExvyhk0R4uRmAaM mfYzRrLu3OhKkiFau2HdkEo511QdY2cGcKcRNyGgA1ZI4vMzPeie -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAorr9rBpCtLVvPjF0BMvV yeCLI1JDdLXAuLklprg5KMIT94pypkW+cCKMoMmbDuYCwYF3rmwCukFojxepTaY+ nzOi7CbYD8H2pPcWR1FYYpUste//u4AvbKcKkoaTYuFiKS/uwjh851FEg9Oaklr5 k0+o2gTjdzouEBD4QOcwG/02WspCjX6MGIxOhuwqxBZtQmLdr3uFE7INKTJoZykz FOgVG3T40J0ABK1ditP6yyn5HoG+QwfoIuJ36wPFSLYS0rVjx1arX/LsRn0mkWrO oM9h9bgNiaaaO3pOQdk5R6kg0P+uYt2oaWLLxlfGfnAwWvxhz4DsYFS3eAlK6JdR TAmq36xFrrmn2OiwwTFiX/+PC+0siuIqorqPFCDxc/sTAm4FQAA2taUe5uX1nRhG dldpkzzIITp1l6uJ9EQ0yPfOiy7X3rUR+tJmClsMtqYBK8cdTvcRZ3Zttof4lneG dCj4qxW/oXtpsm3PwuTVV1MLR6COJfJpDKLSN2aEgE17wnn1SxZJzkboXsJs0OEs WooQBujdndhIjljHvO/yZnCffM37VGYwUIrXDY0RVBwiL7z3lGatvu9quRbLiDbd w8bGDAdnnklpOYJFxwiQG+LS4yaA0pIQH2ztIECnloa38873iZQg5wXfY+dOGhPt MoD355+3SO6bnFKSBQRzGykCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 294941741200104179290199581151714802437054 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-25 03:52:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-25 03:52:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.zaiden.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 663882246620237825621714523717653523302768412433521934423320261222826991458969660221106245991319347555808305837937594661682021481670030615189590926407527064217092349521443752344251352407717881291748121538013841850780452806484095971401537619760872692518574915702989513034089109749137773036973275642818053724327098179483793865024880714327407668571017669903433177650963784317457195962366994037830657090525509009775099967410389629760437056802558371736653610939881639453394568377888541248192449423652822225696134433212003083722220012887495818135260296499421415498855735082711241170189563238093083066582229465416458439924064474800870565564299038664172988488006097698071539571432261359214910794941860569310963058763697619951180690695832145184128166541149081823167573146205436996787410952724997857438471886968991940259636609427597731142617328206351043495471473487760386677014023056525216547444246952532082744879958142478949801816399205387258252549549089133337695817887777849995092573963014803819695526227154611308874240856884671348462804773522147094903704291805364873743298248705917385325937869247575616597796494368543736714972795791184242067052882023983283247710483445532109756471713728175565000481893200629664412633033877159596648534580009 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2a427bcb535b37eb29e618ecb6aefa0750be823f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.zaiden.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c000001707ab083c5000004030046304402205ba46924a876718d1d20fa4dcc54a421610b378b778bfc3bfd84eea32bea73b502200b6a984ad935e83a0e8f2907d7ab34d2c10bbc227ac8a138ca77ac7bb468c4dc0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d913000001707ab084620000040300473045022100e1b8443070bd296f0a7195b12bf9c4ba81c4da32dc5df5bf3707a62fa1cca52802205792fff9ec9f8be355a0dcda45b48e4d1a26556c6e9de469ac5ec7bb0a831387 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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