leafedin.site
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:ed:58:dc:b8:17:6d:fd:f1:f3:c9:80:4f:ed:e1:d1:12:97 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=leafedin.site
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:ed:58:dc:b8:17:6d:fd:f1:f3:c9:80:4f:ed:e1:d1:12:97Serial Number (int): 429214182790061008362834919461152437113495
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b5:44:39:fd:13:ba:c6:9d:ab:78:d6:4e:d3:b2:75:e1:ad:08:2f:3f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a9:05:7c:cf:79:6a:5d:7c:32:07:9d:4e:dc:46:31:b3:1f:8a:18:95
Fingerprint (sha256): 48:31:c6:37:97:2f:31:a0:df:c4:8f:5c:1e:fe:e7:0f:20:38:e9:f7:7d:e2:02:9b:ea:13:27:79:fe:e0:b5:d6
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate leafedin.site
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for leafedin.site
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
leafedin.site
www.leafedin.site
www.leafedin.site
Other certificates including the domain name leafedin.site
(limited to 100 certificates)
Certificate
The complete raw certificate details for leafedin.site in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGEDCCBPigAwIBAgISBO1Y3LgXbf3x88mAT+3h0RKXMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzExMjYxMTM4MTJaFw0x ODAyMjQxMTM4MTJaMBgxFjAUBgNVBAMTDWxlYWZlZGluLnNpdGUwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQCqpX/KqrdtYg4YVVql0FEwPUIf6Lw9gCzR AZUuCMNgODDLM6WHcuNQUZFdVCStuBEv3Tye5JtzuPI1E4APomUhsD1CYjZBWwjK 6Yjbkwc7C1JJzp/Z9rToW0BVTufXR6JdUnPJ9ty51Af3aLDHgPgFSq+XwFXGVwDv Ay82RYr1C321PLR9GP1+6Ar+gYozQ56DsK2PBoiqXY/h0vCspQP0tDmzCoZ6XAFJ +HmshQc1Z+kxWhDu0PoYHs/VJTPld57a+ab2b9VF67XIxG+5DjtoM7eakXwMlIrq vxAJl5ip7hMNlw2DiShEa5NNhkDUfDvACXDC+1y/SekebMprCUP/IkSq5rgz75q6 OQ+jl22pJCVftMQzUb6GF71xRpebN3U5Vd02cvHctg5h+7vShMlDZJWy+r7tXy61 MRPmCGrwwDGTmw1R35jt5FcvLOC62wpn6jizI1PP/7ignZ0zF6LwcREcDzbFdg2V IMD8EsbEmviH9MQCK+RT+tEQqHhOTjpfNzI6HAEZSQi/eNlrh9BCpB+wQhI3FJPF 3Fr3UyAw0H74FFoB7zPDvasJEA2OGHYImNscDhx0edUwbEbm6qMApqeC1yA/URDO Khl+gRUYI/UB4lU4rZs+y+69MiwSNxgzreOlLhljyLyUpWqUetPqpQF/42mPxc5P ZHUZ0WrAzwIDAQABo4ICIDCCAhwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS1RDn9 E7rGnat41k7TsnXhrQgvPzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMCsGA1UdEQQkMCKCDWxlYWZlZGluLnNpdGWCEXd3 dy5sZWFmZWRpbi5zaXRlMIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEE AYLfEwEBATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5v cmcwgasGCCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBi ZSByZWxpZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNj b3JkYW5jZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0 cHM6Ly9sZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQAD ggEBAD6S3siV6Id68jewo2NvpwiwdQhtDFtLmq051noJ/it/bWH2WGAk8iWPAfhf mQG4jK3F/WTd1rgpNWm/KT8dFkar7efy4ctfIi2/Qd9qw5CYqG9PzvUOlHIHb/4n yLk7LkWt8pxpAzrsrX/4LzMvRpkln0UK80Ut2Hya9BrKAyC9w319qLS0kXOCUnLD 981TAM+FDBGCpxSujtFqYCrpP9+ZJ+Xv1rILv6EVMN37byFYh3NfbSGw7k4Yp/fx MCxmsgEmkOPxM7Du3wMCgg1KPZvZkEuub+UkF3yYP+Yhu90823uMYLRfAguPeKy4 QPSvJvFeT0MtX6Ik/ZFL5z7CZFU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqqV/yqq3bWIOGFVapdBR MD1CH+i8PYAs0QGVLgjDYDgwyzOlh3LjUFGRXVQkrbgRL908nuSbc7jyNROAD6Jl IbA9QmI2QVsIyumI25MHOwtSSc6f2fa06FtAVU7n10eiXVJzyfbcudQH92iwx4D4 BUqvl8BVxlcA7wMvNkWK9Qt9tTy0fRj9fugK/oGKM0Oeg7CtjwaIql2P4dLwrKUD 9LQ5swqGelwBSfh5rIUHNWfpMVoQ7tD6GB7P1SUz5Xee2vmm9m/VReu1yMRvuQ47 aDO3mpF8DJSK6r8QCZeYqe4TDZcNg4koRGuTTYZA1Hw7wAlwwvtcv0npHmzKawlD /yJEqua4M++aujkPo5dtqSQlX7TEM1G+hhe9cUaXmzd1OVXdNnLx3LYOYfu70oTJ Q2SVsvq+7V8utTET5ghq8MAxk5sNUd+Y7eRXLyzgutsKZ+o4syNTz/+4oJ2dMxei 8HERHA82xXYNlSDA/BLGxJr4h/TEAivkU/rREKh4Tk46XzcyOhwBGUkIv3jZa4fQ QqQfsEISNxSTxdxa91MgMNB++BRaAe8zw72rCRANjhh2CJjbHA4cdHnVMGxG5uqj AKangtcgP1EQzioZfoEVGCP1AeJVOK2bPsvuvTIsEjcYM63jpS4ZY8i8lKVqlHrT 6qUBf+Npj8XOT2R1GdFqwM8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 429214182790061008362834919461152437113495 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-26 11:38:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-24 11:38:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'leafedin.site' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 696176904740166157076967713875192801726959999861568105738036728124618476032723013187466038625563039146312546141658372738968063561218530349670436867973153322353876081413441534230633056867216850832932740678979605653266048427056448021706431198549908772221615399489470899386390572123921134899412142531772785860852210335667662404279542999192904231875682643193974834220772880541597066052950873312240296156763394493487771263383927313756891423152998870182140375715545950625090306519141127241582232268157980747522096587621780012027176724737815552130186066799168243579691524422233537893911740562054504981998010334177044179159789028724209256559822226585797179202375729444047876551960853534950243578943006557119217009667648115042935703427275404209056472257757743757031638631406689565778408261844007705568557800744107278021913976877879879335710369782222680133048715937014451221424465585460486086250086427081271505210594685339893930543108377267396631831972713793608039369025897501390232069220900195369019125161268219956721154538626942914306750321069976141454804442899333279841300519369677257457114848650165613190432132841875240825988691592091749356023185295291634227212696629114888094055691661198533444781268779605452960818767703430241432678088911 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b54439fd13bac69dab78d64ed3b275e1ad082f3f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'leafedin.site' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.leafedin.site' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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