www.africo.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:02:08:0e:ea:d1:d2:f2:65:24:89:0a:af:b6:4a:39:9e:9e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.africo.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:02:08:0e:ea:d1:d2:f2:65:24:89:0a:af:b6:4a:39:9e:9eSerial Number (int): 262028133807952733791084405026110481997470
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 2f:16:89:fa:b0:75:5d:d4:ad:4d:48:7d:d4:9e:dc:85:c2:2d:6e:b9
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 11:71:60:9b:29:87:35:12:19:4b:16:e4:07:ec:2e:c2:a1:cd:67:93
Fingerprint (sha256): 41:c3:eb:f1:8b:c7:4d:10:a1:c0:f8:ca:30:de:bb:26:4c:65:94:ac:d1:25:e4:06:f5:d4:8c:ba:5e:dd:d6:bb
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.africo.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.africo.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.africo.org
Other certificates including the domain name africo.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.africo.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUzCCBTugAwIBAgISAwIIDurR0vJlJIkKr7ZKOZ6eMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDQyMzE4MjJaFw0y MDA1MDQyMzE4MjJaMBkxFzAVBgNVBAMTDnd3dy5hZnJpY28ub3JnMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAw5teKhwcckq+6QmdIhCKYFUGsVZRKRCi Wh8Rs4DWde30Xy4xrlr4WtjeUg86Fm4kW4EPMgRcZRVVU3kVl3e4bAGT920m/Of/ XfnKDNSiyLdQ+UaAkzdKjciECDTIodkapEM6tG3eqbWMHOmEJjijLrFQbBP0i6W3 QiIGQ/V8yOkWt6Nm92rkjgK75Z70Q7GkM2fYsJYO9T48LagK5JuCtiCl0cy8VNvN Kwq8HEv23784uqVMhPcCRkgeOU/ZMvNSQ3aNjqOL37gLwoK1V1FPr1j9R1CcldNN PJVNrpJ9WNsoLFmq3YAHY9ZRUcqBw/cuRlrJQcRF0lEjZ74AFmL3xu1rKm4NjLtd D2uuBnfHt8d/WhoN70ZzrxUyktH4+p4pAszHJ0g3Lq1xIDQI2h0BnAx74QWLPUEV 8+/2GKvXaL79zEyBFMNV+fNoVLdMzoMdtCDa50OXFzVzKeRXZWhijW4zRA4Q9T34 ZjDfJBM2YR+Sm/zYLCz+sHL5XRxMd0FGaJzbZRtwVCcB9YoY6uR7AzICTBRUzs9f x1uxbye/Q1/dAKRvWA2+4mHXwhW1DPNLIOHuwKgmHDFBdOOshM06upoyzcwHlr/+ PF1IYe6nv+ViySfOmFrdGCdN4AViBwTiMRNPn7JCzmdeo/BX5uTzGUTtYuT8IOzO VLA06MF+fmUCAwEAAaOCAmIwggJeMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQULxaJ +rB1XdStTUh91J7chcItbrkwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAZBgNVHREEEjAQgg53d3cuYWZyaWNvLm9yZzBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQE gfEA7wB2APCVpFnyANGCQBAtL5OIjq1L/h1H45nh0DSmsKiqjrJzAAABcBK2UKIA AAQDAEcwRQIgVLcZUca/+PZlUTgH3zoDPog9aNM28F0vU4z2sPc8ABkCIQDBrp7S entjvZR6co2OV4YeisPJltuvQV/1eUhwj4UgUAB1ALIeBcyLos2KIE6HZvkruYol IGdr2vpw57JJUy3vi5BeAAABcBK2UJUAAAQDAEYwRAIgR4vnoPn6PV3zWuZL2chs 7z0qUElXOhsPKJU39pVoj1sCICR3v7Pv2OHLy2MDrnHXm20Tc6bET+omVWrezCP+ lFKJMA0GCSqGSIb3DQEBCwUAA4IBAQAAxeqplnwAA/IuM2XNWfLAJXWDb0gmb3JJ CRdzb61yTg9b/WhuuZthGsQ7O9AMivRYbTSuwg3heOOdJEqofC7BUy/FEDuqbceP g09kQE0zSodFhbCKXmzRySpbjkA3q+zsQQmiTzSn631cu6fFlKmIn3c/dlZMH0wW ntacKp2Drtkzcly/njf798LXeKpMF49Tju+MhJCCvdAeAS6hOe/jrWw6bJ8x0f39 z6bE621vCOOs+/53OFnRP462oiP28NXTEyeUfhpmR1lydoRIT3TraB50B5EZkiKP e7hJgU7+lTOl/M2gVxIy54/PmTBiXkgZtMIbhVEcWaOPUxrRtWDG -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAw5teKhwcckq+6QmdIhCK YFUGsVZRKRCiWh8Rs4DWde30Xy4xrlr4WtjeUg86Fm4kW4EPMgRcZRVVU3kVl3e4 bAGT920m/Of/XfnKDNSiyLdQ+UaAkzdKjciECDTIodkapEM6tG3eqbWMHOmEJjij LrFQbBP0i6W3QiIGQ/V8yOkWt6Nm92rkjgK75Z70Q7GkM2fYsJYO9T48LagK5JuC tiCl0cy8VNvNKwq8HEv23784uqVMhPcCRkgeOU/ZMvNSQ3aNjqOL37gLwoK1V1FP r1j9R1CcldNNPJVNrpJ9WNsoLFmq3YAHY9ZRUcqBw/cuRlrJQcRF0lEjZ74AFmL3 xu1rKm4NjLtdD2uuBnfHt8d/WhoN70ZzrxUyktH4+p4pAszHJ0g3Lq1xIDQI2h0B nAx74QWLPUEV8+/2GKvXaL79zEyBFMNV+fNoVLdMzoMdtCDa50OXFzVzKeRXZWhi jW4zRA4Q9T34ZjDfJBM2YR+Sm/zYLCz+sHL5XRxMd0FGaJzbZRtwVCcB9YoY6uR7 AzICTBRUzs9fx1uxbye/Q1/dAKRvWA2+4mHXwhW1DPNLIOHuwKgmHDFBdOOshM06 upoyzcwHlr/+PF1IYe6nv+ViySfOmFrdGCdN4AViBwTiMRNPn7JCzmdeo/BX5uTz GUTtYuT8IOzOVLA06MF+fmUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 262028133807952733791084405026110481997470 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-04 23:18:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-04 23:18:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.africo.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 798006552038155208873023323373739012141401053882666194850860281811416351375276553881958014188385797152899415185159156649651181375411846756905882815659341014372019890336489587632360428072751768039522975194932523789028955570027444216368198440564453576489773771108427806288486701302888988760214769420940813997519909513650642343239551707875364174408263520812126602839651108560567893140191192766295163215269622117435116718429517175918104713859118443040579799504496260001725910473468401441450793732022509959563396064533121236621043624488629910115796322775540810253556213701775105504661472643486251493917356893163774016653597222594466354523752211592559593205120818763886037878883742290860424383976321721632564891753128247300106517137572190223355299478325404131689251811637321746686960192120420898769433189389694495890677039056419220838325379604830049603576446344454582415000900707522651563843017442051344645419019710907292887047883567458439494014429059822642727791013482429035912588702412464142569318205228015363406880484953783775805962801527193892955143312930332688505365901688767587073049935079610289477143365608491435184211751016365024862177363863153109571374502191542045253592812370258528926096256289832657845886211411520263825158733413 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2f1689fab0755dd4ad4d487dd49edc85c22d6eb9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.africo.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000017012b650a20000040300473045022054b71951c6bff8f665513807df3a033e883d68d336f05d2f538cf6b0f73c0019022100c1ae9ed27a7b63bd947a728d8e57861e8ac3c996dbaf415ff57948708f852050007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000017012b6509500000403004630440220478be7a0f9fa3d5df35ae64bd9c86cef3d2a5049573a1b0f289537f695688f5b02202477bfb3efd8e1cbcb6303ae71d79b6d1373a6c44fea26556adecc23fe945289 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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