watershape.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:bd:81:1c:4c:c2:bf:11:26:12:df:ab:ef:6e:67:eb:13:46 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=watershape.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:bd:81:1c:4c:c2:bf:11:26:12:df:ab:ef:6e:67:eb:13:46Serial Number (int): 412934128427759175077558717830691484799814
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: cc:dc:a0:42:ed:af:48:8c:d0:87:32:85:c8:11:3c:27:87:77:a8:e6
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 2a:95:97:f5:25:aa:52:8a:69:8a:21:51:d9:17:47:c0:ee:07:16:9f
Fingerprint (sha256): 46:c0:94:60:8d:f5:07:b4:84:bc:0d:63:7f:1a:45:bf:b6:1c:69:a4:13:46:f8:22:fe:14:77:44:5f:9e:00:9a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate watershape.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for watershape.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
watershape.org
www.watershape.org
www.watershape.org
Other certificates including the domain name watershape.org
(limited to 100 certificates)
people.smartapartmentdata.com
watershape.org
forms.makios.com
watershape.org
events.betterlivingaustralia.com.au
form.businessfinancialgroup.biz
watershape.org
hours.gini-apps.com
forms.keystone-solutions.be
edu.mountainsandrivers.co
forms.watershape.org
event.globalwomanclub.com
intranet.thejoyfactory.com
store.watershape.org
store.watershape.org
register.build-conference.com
intranet.thejoyfactory.com
hr.totalrefund.us
watershape.org
store.watershape.org
go.watershape.org
hrm.nethunk.com
go.watershape.org
watershape.org
www.oklahomacannabisexpo.com
www.luxuryhospitality.org
events.betterlivingaustralia.com.au
byteskill.bytecode-asia.com
forms.stateracoaching.com
www.nothankyou.com.au
people.cocrs.com
hrms.happybrands.co
hr.interconnecta.com
watershape.org
events.andalworks.com
forms.makios.com
people.jbss.biz
watershape.org
forms.makios.com
watershape.org
events.betterlivingaustralia.com.au
form.businessfinancialgroup.biz
watershape.org
hours.gini-apps.com
forms.keystone-solutions.be
edu.mountainsandrivers.co
forms.watershape.org
event.globalwomanclub.com
intranet.thejoyfactory.com
store.watershape.org
store.watershape.org
register.build-conference.com
intranet.thejoyfactory.com
hr.totalrefund.us
watershape.org
store.watershape.org
go.watershape.org
hrm.nethunk.com
go.watershape.org
watershape.org
www.oklahomacannabisexpo.com
www.luxuryhospitality.org
events.betterlivingaustralia.com.au
byteskill.bytecode-asia.com
forms.stateracoaching.com
www.nothankyou.com.au
people.cocrs.com
hrms.happybrands.co
hr.interconnecta.com
watershape.org
events.andalworks.com
forms.makios.com
people.jbss.biz
Certificate
The complete raw certificate details for watershape.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgISBL2BHEzCvxEmEt+r725n6xNGMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MjMwNzA4MDFaFw0x OTExMjEwNzA4MDFaMBkxFzAVBgNVBAMTDndhdGVyc2hhcGUub3JnMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnrr4PUR1/T784AqfsI1g3VHDTk5a4rHJ fgVQPQFfgWO0w5wWNrhw5rpRsHZ8kO4BBlw+2hG6Cxi/7R+LOKeDV0vVHJY62B3r T0Xst8SKsZT2tN0nRxMpO1daj8GyQjF3EDwVJXbvIeNqjprNyaO+eVzV+bZNYnKR R5t2lAOOsTFD8dfqgAth1GsXkrI+Eq7KRGnrr9OwWTTLZK1/UlYs7wo1jEDdGEDO +Gzyb7GVVtLJUhdrw5bcjIbVt/UvhRmrWUE2B4najezMVwkRRGSX1fJtda3ycOCH ql2POSSGNxsgOSB6d+0p+0WOTsMnp0iCVj90zgsm2ByunIRjRr5g5wIDAQABo4IC djCCAnIwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTM3KBC7a9IjNCHMoXIETwnh3eo 5jAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRj MGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5v cmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5v cmcvMC0GA1UdEQQmMCSCDndhdGVyc2hhcGUub3JnghJ3d3cud2F0ZXJzaGFwZS5v cmcwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQC BIH0BIHxAO8AdQDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWy9 hKIXAAAEAwBGMEQCIBWqzcEkmgcIqngmcNBEZ0en92iDAJ2g3c2PqjNShCLHAiAO pk8kW/iK16xHaSSF6Eij2Jzc7AO5i1AmGLahJ/08YQB2ACk8UZZUyDlluqpQ/FgH 1Ldvv1h6KXLcpMMM9OVFR/R4AAABbL2EogkAAAQDAEcwRQIhALZuud1V2zxoggCO ulIjpup2ICQ9tB54dllRvM55NfeuAiA9gKa2fH7yr6ME05RV8TD4uDiW5GthhSrp xR62TNbFtDANBgkqhkiG9w0BAQsFAAOCAQEAhsRdxOTiKsOeG6LdDOcEwbH5ieKV uHKnn0K0claQt9ifHv57l6QMrToaWYzTQhnhu8Humza4m0z57+nbP3e7kQVbYwvP kkrXKKqTcc3aE1IkVBvSolIyYkbVAxeDz5IgywspSzCGxN8sk/6Dv1vrFBh/H26s KnK8DHTdkz688k0qctBACUIGSIRTjDzompFOsa8GGJ5w8ZcFfPWG9P3b/u0pru0W QPLBV+upyArYTHNTA38x2rxMfHOMDJGi/YLmDqHTV93P+ulxjDbl/kZEwFsQg2nP HVwWTlUeRpoTM8uVuNQ59FTaszt5rx+BLCe23a7ddEYbP/4mLvxVVsUozA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnrr4PUR1/T784AqfsI1g 3VHDTk5a4rHJfgVQPQFfgWO0w5wWNrhw5rpRsHZ8kO4BBlw+2hG6Cxi/7R+LOKeD V0vVHJY62B3rT0Xst8SKsZT2tN0nRxMpO1daj8GyQjF3EDwVJXbvIeNqjprNyaO+ eVzV+bZNYnKRR5t2lAOOsTFD8dfqgAth1GsXkrI+Eq7KRGnrr9OwWTTLZK1/UlYs 7wo1jEDdGEDO+Gzyb7GVVtLJUhdrw5bcjIbVt/UvhRmrWUE2B4najezMVwkRRGSX 1fJtda3ycOCHql2POSSGNxsgOSB6d+0p+0WOTsMnp0iCVj90zgsm2ByunIRjRr5g 5wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 412934128427759175077558717830691484799814 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-23 07:08:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-21 07:08:01 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'watershape.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20037850372518562694498649132257834665288884580910035983664982365373053765316683392100282935113032128235385489537933522836670335335724434131840326550868350472211451664116688995644090314613359983369333905284868474117069257390299771553911641910254615536814038769443701278684329481897713222940719770567152562288487151393860651331857187273775345068800382922684024850270980166711845864720666925279023812591488118058387964257835885034591412535063323709703766774722665960643279542522631084087763285883328466481418624815955609265849412111635772570445493289677651568714583730934688956248558237163430795923264262353557120770279 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ccdca042edaf488cd0873285c8113c278777a8e6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'watershape.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.watershape.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016cbd84a2170000040300463044022015aacdc1249a0708aa782670d0446747a7f76883009da0ddcd8faa33528422c702200ea64f245bf88ad7ac47692485e848a3d89cdcec03b98b502618b6a127fd3c61007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016cbd84a2090000040300473045022100b66eb9dd55db3c6882008eba5223a6ea7620243db41e78765951bcce7935f7ae02203d80a6b67c7ef2afa304d39455f130f8b83896e46b61852ae9c51eb64cd6c5b4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0086c45dc4e4e22ac39e1ba2dd0ce704c1b1f989e295b872a79f42b4725690b7d89f1efe7b97a40cad3a1a598cd34219e1bbc1ee9b36b89b4cf9efe9db3f77bb91055b630bcf924ad728aa9371cdda135224541bd2a252326246d5031783cf9220cb0b294b3086c4df2c93fe83bf5beb14187f1f6eac2a72bc0c74dd933ebcf24d2a72d0400942064884538c3ce89a914eb1af06189e70f197057cf586f4fddbfeed29aeed1640f2c157eba9c80ad84c7353037f31dabc4c7c738c0c91a2fd82e60ea1d357ddcffae9718c36e5fe4644c05b108369cf1d5c164e551e469a1333cb95b8d439f454dab33b79af1f812c27b6ddaedd74461b3ffe262efc5556c528cc