leafhouston.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:c7:d4:b8:98:e9:4a:16:17:93:7e:0b:03:e8:cf:b2:26:cd was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=leafhouston.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c7:d4:b8:98:e9:4a:16:17:93:7e:0b:03:e8:cf:b2:26:cdSerial Number (int): 329335803631685216961729991093038401857229
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 9c:15:41:8b:41:75:ef:65:d2:d7:e7:1c:f5:ab:cf:1b:bd:a7:6b:28
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 7e:db:89:24:f1:b5:cf:90:e7:d1:52:80:cc:a9:3b:77:78:01:17:f9
Fingerprint (sha256): 4b:e8:8c:fa:41:1c:fd:da:a8:9a:f1:ef:40:2d:5d:dd:70:79:58:1a:18:97:dc:00:90:86:8d:52:86:aa:02:93
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate leafhouston.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for leafhouston.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
leafhouston.com
Other certificates including the domain name leafhouston.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for leafhouston.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVTCCBT2gAwIBAgISA8fUuJjpShYXk34LA+jPsibNMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MDYyMTI1NDVaFw0x OTA5MDQyMTI1NDVaMBoxGDAWBgNVBAMTD2xlYWZob3VzdG9uLmNvbTCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBANakzEKHG3xo7clAwnJc6CjWP/fIjnTd KIYBYWlZN0JbE+wgQAvEaAZCjCkDMdrheSy/O5gAEXSzN1dHtaLt2JMUZ0rpUPvr x4EH1GqQPKNDMZRkaVkLtH0u2T9mltMNOkBFGfv0NNNSt3umEM3dyJwsFCtn6+/C bgA4IZElnQcfTSl2ojGCVVpuVTiSwnx7jz+IfUy1nAnCRgnyIpEeIRcz5xFsbcbh i9w199te684xPNoxSoj+PcbabyZTqmXZszUWHup6TjvXBRn9/f0xyTZne3AS6wcc 6eTjNzwPJVU8+t09g9f0LPcw/+gl1vJnhi2pl2X3GfP33epc2VvAzDFCOAw7e9B2 vC8RgO9UHHFF8mcq0afy6Gq+yppH/BO32XJgkoyKPFR4twtPj41JjjTvW+Wqr1HQ IrWdA62rDuFkG8flOi5w9OqwKfX9qOiCUZUiHsZvraaE7lYqFthtyvY/dTDIGYDI o81fnab+efpbskedVNUcgn3wpeOHBqL2oSI3q6vmtPsER70twqvoxMl439WFjuxC KZgzig0AGPMF+f5wiN/kMeWPim66r/ADdneu76IzNjUvJOBpkVGH19DTlMGjCmz0 O4OFMPjIjI5REZuOcmZtza09HWGJDAw2KrW/9dVY05FcEcBxN6cz8Qg8x32iNu03 TZR0ra7vejOJAgMBAAGjggJjMIICXzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwV QYtBde9l0tfnHPWrzxu9p2soMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPbGVhZmhvdXN0b24uY29t MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB 9ASB8QDvAHUAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFrLuXh nAAABAMARjBEAiA2ipSLrOjb8elUJW7x2rWW9vuZzgTndA65WAFhjMA4iAIgZLk4 DVq4UN8Xgf3TiGv5tXCp0g3VTdf0JgYK3GRsCkMAdgApPFGWVMg5ZbqqUPxYB9S3 b79Yeily3KTDDPTlRUf0eAAAAWsu5d+XAAAEAwBHMEUCIQCgc+DVJu9t4D8mUR+0 Y3awJMG5Pr/MT0+qT5nlhq+V+QIgEaOhh1H7U5XutmGiyVFFYutemkXv19PT8zl1 S9OPSYkwDQYJKoZIhvcNAQELBQADggEBAEjQdfwJG4OxFUhm87fKKXuQ+8tZx3lI ZnHukirjRbz/e2eUtAieC7Jj3dByAjbtZnh8ckStZmeEPbORys+1pEbvCB343EwW NrB0hfuwj16IW31NP66Nycmeusc8CIJMuaig9raq6pUxd4vmsDPZjYHk3lCXjsjM 18GaW+noEZY68MM+mugjeO5ym9WXya2CLX6qwGxQpQxYE/a3WlAmpK8WX1hqIarL qnxtTU//7/iVtngBetq5I5eJ4nfRLHFnzy6413JkBJVRR6DasnJzKby+jFIrGZvU guEs3pccA5sGwK50nDiW9fNUTRAeK4pZ230wtULnlM+SMurzywkBX5o= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1qTMQocbfGjtyUDCclzo KNY/98iOdN0ohgFhaVk3QlsT7CBAC8RoBkKMKQMx2uF5LL87mAARdLM3V0e1ou3Y kxRnSulQ++vHgQfUapA8o0MxlGRpWQu0fS7ZP2aW0w06QEUZ+/Q001K3e6YQzd3I nCwUK2fr78JuADghkSWdBx9NKXaiMYJVWm5VOJLCfHuPP4h9TLWcCcJGCfIikR4h FzPnEWxtxuGL3DX3217rzjE82jFKiP49xtpvJlOqZdmzNRYe6npOO9cFGf39/THJ Nmd7cBLrBxzp5OM3PA8lVTz63T2D1/Qs9zD/6CXW8meGLamXZfcZ8/fd6lzZW8DM MUI4DDt70Ha8LxGA71QccUXyZyrRp/Loar7Kmkf8E7fZcmCSjIo8VHi3C0+PjUmO NO9b5aqvUdAitZ0DrasO4WQbx+U6LnD06rAp9f2o6IJRlSIexm+tpoTuVioW2G3K 9j91MMgZgMijzV+dpv55+luyR51U1RyCffCl44cGovahIjerq+a0+wRHvS3Cq+jE yXjf1YWO7EIpmDOKDQAY8wX5/nCI3+Qx5Y+Kbrqv8AN2d67vojM2NS8k4GmRUYfX 0NOUwaMKbPQ7g4Uw+MiMjlERm45yZm3NrT0dYYkMDDYqtb/11VjTkVwRwHE3pzPx CDzHfaI27TdNlHStru96M4kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 329335803631685216961729991093038401857229 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-06 21:25:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-04 21:25:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'leafhouston.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 875670067802024960265682065499090476663077959846612729277192350585369968171949750854154914277957398731719811428684275008036498990627840523899956159228949528926196257956118788417195983200369461037324533091863519043264181250470420630884724775745181326306750657756364721472079982583486071154987046425969219303716380164393907459622190675689344969619287842248710880797932536749103775444302599681460509328919903643743698278342315186530352308837020575472646603883052769071202116115075213158034852407305137358302071730884941441252736919380670339107344582705144610044880653589292949302933843160097138306808203866801006983283424805774861230110064870915281066383417366960726294924930156599932510523262315455009338972516678614364390474025079308992509146389181892234943784795592638817278942585802954096781688844579431808065470249027336203135529959192420786143518792995055058644267325587613554099069810778949778941556465406730462760925708500805410651626378220239474329534659065079066463828932681051996723772549675757771027443441414141350914580755317299583581137641381018973969082023549451038121244599711777538108793829193234873589869513703045875500074148951025419860037520064310440420289527863976057085432648514972246931254088630354138494037275529 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9c15418b4175ef65d2d7e71cf5abcf1bbda76b28 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'leafhouston.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016b2ee5e19c00000403004630440220368a948bace8dbf1e954256ef1dab596f6fb99ce04e7740eb95801618cc03888022064b9380d5ab850df1781fdd3886bf9b570a9d20dd54dd7f426060adc646c0a43007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016b2ee5df970000040300473045022100a073e0d526ef6de03f26511fb46376b024c1b93ebfcc4f4faa4f99e586af95f9022011a3a18751fb5395eeb661a2c9514562eb5e9a45efd7d3d3f339754bd38f4989 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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