graffity.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:af:7f:d8:10:ef:20:ad:6e:3f:7a:e9:5e:44:d0:07:36:a3 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=graffity.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:af:7f:d8:10:ef:20:ad:6e:3f:7a:e9:5e:44:d0:07:36:a3Serial Number (int): 321056205841495296569037095439176097543843
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 25:06:bd:76:66:fd:02:dc:87:82:47:59:dc:0f:fd:a8:62:38:f7:a4
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 22:eb:97:a0:ba:fb:e8:83:ad:44:c2:03:7b:04:35:7b:c5:0d:fb:29
Fingerprint (sha256): 3f:c1:64:5d:47:31:4b:87:bd:63:65:4f:66:18:b5:f9:30:a6:41:1c:b3:b9:88:6f:fb:d0:98:53:5a:be:99:af
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate graffity.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for graffity.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
graffity.org
Other certificates including the domain name graffity.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for graffity.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISA69/2BDvIK1uP3rpXkTQBzajMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMjgyMjU1NTVaFw0y MDAyMjYyMjU1NTVaMBcxFTATBgNVBAMTDGdyYWZmaXR5Lm9yZzCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBALRbg1jkUeY9tMx8EZ7Xff/G8cCLwiTUTEOC vmdIHcah+YT4aZt00Y/3JVfITNSv40KfCxsMVrwfSSYFcazBzZ92WdFFdC5xqtkG 9sN6WGeDjuY8mE3H4xL641pD9zzS5t/FkDmDTIwHI6NoOkzj+LO7jpJK44TzsM32 o1JIXxAhpgoO0ZJgwQ95tJBYwrM8OwtiaH4ZYnixWbbgxXu4gc2xirv8+7GtfhHX Td+o4RYHy7TkLWhSJGSIFpV5pTGKT2cW2wlsh1vFgsa+FN9glHmmYPQ2pf0ps6wc 1w5yb5pRb3JKXsL+RiP95Ez+OATgC54QV2I4Hp/rSnT4g+YhSRjv7IGPMfsHQMYU a7FXv9KQkIfY66fdswrHZCAFRTih2icShs0QPqIgqEFrJ5i7k3aaZbUr1MzH/LE1 H/JlAouzZ2dPYiimLms5/5yvLd2aCHXj91dHaJdEuSdRifALopiwqIpWVxVYvTsH aNV9s8w25uswsgOgqN8CLqPy3frzsFalmjQAXuhmC7byeg3AQuX+LMpSdDQu9yKv Mh9/ijbiEt5tn5tLRZ4ZCWklO24ANYwMp0CRryDRsjRrYn+j5zcJefUFyBdSCOQ2 8fyLEich9UZaxMCqoGVOzQBMwgrOctehuo6qZqj4igq+PbnJ4Ag6VJ7qC/gnogsc tso5LdWjAgMBAAGjggJiMIICXjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFCUGvXZm /QLch4JHWdwP/ahiOPekMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMZ3JhZmZpdHkub3JnMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDx AHYA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMAAAFutHFS+AAABAMA RzBFAiEAlGtPhH3hLv8zoLWCB4j37ZYR/N9+t93oHFu9hkxI75ECIHjsyXy6QJff xnPCrhSqwBr6HxTmmScepvxpvungpKS7AHcAB7dcG+V9aP/xsMYdIxXHuuZXfFeU t2ruvGE6GmnTohwAAAFutHFTJwAABAMASDBGAiEA0K3w0VsSuhg7m5/aL+tihitu OHatY/e4+LQS6AT2NgsCIQDpAotQlBM7AyadeUtGRAl4mn4Bzgi+3jtxNnUJnSMZ JjANBgkqhkiG9w0BAQsFAAOCAQEAU+XZjYpMUUK8QCifPLI43bV36z/pzWpjZi1P xWZc3w20TY7f+yNPVlqmdLuLmRY/4lhrxA/lFD92B/146Ngu0yVWrt9jS/lpzdpC iu/VnKBSlxNOQ+i9V+9ZwriCU0q2LpAhabVpEr5wYAwLZ7mp1dy8rzOef7b1WRE+ vTQC0Cdz/CwC48mR5X+kWUpeFzT2JjIqSr2lqOe7TFvHbJPQcCz+hg+FReqU3LDz /dw+wG7e26FxXG1w3lLZcI7zH3IY8zBRBC4PWr6pPvp8CxYcjRLO0C76+SbKZMI7 ivIuVzvUOaycq1XLivSoQBlCtM42PxMRfbaDtlGBMms8Kh8lLg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtFuDWORR5j20zHwRntd9 /8bxwIvCJNRMQ4K+Z0gdxqH5hPhpm3TRj/clV8hM1K/jQp8LGwxWvB9JJgVxrMHN n3ZZ0UV0LnGq2Qb2w3pYZ4OO5jyYTcfjEvrjWkP3PNLm38WQOYNMjAcjo2g6TOP4 s7uOkkrjhPOwzfajUkhfECGmCg7RkmDBD3m0kFjCszw7C2JofhlieLFZtuDFe7iB zbGKu/z7sa1+EddN36jhFgfLtOQtaFIkZIgWlXmlMYpPZxbbCWyHW8WCxr4U32CU eaZg9Dal/SmzrBzXDnJvmlFvckpewv5GI/3kTP44BOALnhBXYjgen+tKdPiD5iFJ GO/sgY8x+wdAxhRrsVe/0pCQh9jrp92zCsdkIAVFOKHaJxKGzRA+oiCoQWsnmLuT dppltSvUzMf8sTUf8mUCi7NnZ09iKKYuazn/nK8t3ZoIdeP3V0dol0S5J1GJ8Aui mLCoilZXFVi9Owdo1X2zzDbm6zCyA6Co3wIuo/Ld+vOwVqWaNABe6GYLtvJ6DcBC 5f4sylJ0NC73Iq8yH3+KNuIS3m2fm0tFnhkJaSU7bgA1jAynQJGvINGyNGtif6Pn Nwl59QXIF1II5Dbx/IsSJyH1RlrEwKqgZU7NAEzCCs5y16G6jqpmqPiKCr49ucng CDpUnuoL+CeiCxy2yjkt1aMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 321056205841495296569037095439176097543843 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-28 22:55:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-26 22:55:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'graffity.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 735794294642490176033248517988614410157792500776444244052056500700738152762366437650885343893508186289386309492055500303076270521018836575931341837156249103049309599639207266996515845327924759753505072489387905417084519181833848715493795337724806628546296761277348087806487003679938479676113623694169199925953922956392610559230368997938850488398141936192559589782373748603878305659289010866054972957974261379481843738314628542899928172233708846240351829112929935555987534976900240347127851511374221875913476072082572851406913128292645290893438565745675123499675435463073123528249846085745906501852583377946250638204520535524451383696769054062552638364187653498230752368784585240404464473722253497925761442170460713324097131247708199698104279170354386315908881712337371369141083773696088821296886782044821651049971205151387343113246038316842073350052799536126051813947238329871017095936064468525818043375464047159964143061222649180568048840619296847749439824989865387701717155221767593284525439793100918416425889013484873586232379617007291194830435150504966286853843193642132619000809213977834027946186696111100216052744286689674454978275708526082517576802218955660882159883422468583299285883191840547935718205596555699692476501448099 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2506bd7666fd02dc87824759dc0ffda86238f7a4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'graffity.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016eb47152f80000040300473045022100946b4f847de12eff33a0b5820788f7ed9611fcdf7eb7dde81c5bbd864c48ef91022078ecc97cba4097dfc673c2ae14aac01afa1f14e699271ea6fc69bee9e0a4a4bb00770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016eb47153270000040300483046022100d0adf0d15b12ba183b9b9fda2feb62862b6e3876ad63f7b8f8b412e804f6360b022100e9028b5094133b03269d794b464409789a7e01ce08bede3b713675099d231926 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0053e5d98d8a4c5142bc40289f3cb238ddb577eb3fe9cd6a63662d4fc5665cdf0db44d8edffb234f565aa674bb8b99163fe2586bc40fe5143f7607fd78e8d82ed32556aedf634bf969cdda428aefd59ca05297134e43e8bd57ef59c2b882534ab62e902169b56912be70600c0b67b9a9d5dcbcaf339e7fb6f559113ebd3402d02773fc2c02e3c991e57fa4594a5e1734f626322a4abda5a8e7bb4c5bc76c93d0702cfe860f8545ea94dcb0f3fddc3ec06ededba1715c6d70de52d9708ef31f7218f33051042e0f5abea93efa7c0b161c8d12ced02efaf926ca64c23b8af22e573bd439ac9cab55cb8af4a8401942b4ce363f13117db683b65181326b3c2a1f252e