40daysabroad.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:77:d5:aa:7a:09:47:36:dd:3b:07:4b:61:1b:2f:83:85:ec was issued on by Let's Encrypt.
With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=40daysabroad.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:77:d5:aa:7a:09:47:36:dd:3b:07:4b:61:1b:2f:83:85:ecSerial Number (int): 302114470187629619964194259565046894134764
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d1:3f:a4:78:ae:52:4c:c9:17:42:b9:6e:37:3b:11:cc:14:fa:5b:2e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e4:05:79:6e:c7:61:47:34:f2:57:ac:98:9b:75:61:45:d7:7d:1e:9e
Fingerprint (sha256): 4c:83:de:d9:ed:94:4d:d9:dc:15:74:79:89:7f:55:24:61:5b:10:35:f5:87:91:3f:e9:ee:35:c9:f4:1b:b8:43
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate 40daysabroad.com
10
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for 40daysabroad.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
40daysabroad.com
bebetterhere.com
blainecthomas.com
btsixer.com
cktconstructionllc.com
emmagracekrais.com
familyjacobo.com
lazzapazza.com
sheliathomas.com
thelollipoplife.com
bebetterhere.com
blainecthomas.com
btsixer.com
cktconstructionllc.com
emmagracekrais.com
familyjacobo.com
lazzapazza.com
sheliathomas.com
thelollipoplife.com
Other certificates including the domain name 40daysabroad.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for 40daysabroad.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGAzCCBOugAwIBAgISA3fVqnoJRzbdOwdLYRsvg4XsMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTgxOTQ5MThaFw0y MDAxMTYxOTQ5MThaMBsxGTAXBgNVBAMTEDQwZGF5c2Ficm9hZC5jb20wggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0lxcDVqOzNajS8bdNrpY1Id+lJvKA rbN2jnkfkJ/4SxfTDOmDhZ/7jKwr20sQZ6Za0is+Zd0N7TuBNodTK0YhW1YboC0/ 8DmHbCnteF31sV4GJ608LMlJmtdKuE8/HigtCffgOsDX5YAPThQpsnYAwG5A4xSb veCeNxCupX/Pudbsk8jV7KmaYnOGy49W6vLMHM7mIGoemB0jfGWFXDwzxPDq9qRh +sOQwB3N5PceeRR8oWd47G9LMOxakUpkkCni5SITUd/oavWg++v1/G7y7uHhzzBs wSx3JB4KCG8iIbuNQbf5tJkiomFGCyaf9D2mKA7a6JGpKuI3NReG3z7pAgMBAAGj ggMQMIIDDDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFNE/pHiuUkzJF0K5bjc7EcwU +lsuMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEB BGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZy8wgcQGA1UdEQSBvDCBuYIQNDBkYXlzYWJyb2FkLmNvbYIQYmViZXR0ZXJo ZXJlLmNvbYIRYmxhaW5lY3Rob21hcy5jb22CC2J0c2l4ZXIuY29tghZja3Rjb25z dHJ1Y3Rpb25sbGMuY29tghJlbW1hZ3JhY2VrcmFpcy5jb22CEGZhbWlseWphY29i by5jb22CDmxhenphcGF6emEuY29tghBzaGVsaWF0aG9tYXMuY29tghN0aGVsb2xs aXBvcGxpZmUuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEB MCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYK KwYBBAHWeQIEAgSB9gSB8wDxAHcAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklT Le+LkF4AAAFt4KG7BwAABAMASDBGAiEA+pt7Q3tbwJgN0IkTz/yE1exyHGoRNR19 scttgAbMldcCIQDc6Gqf6LgYXefJPL9HzL1vjPYUidAGpplW4cbBCf0AmwB2AF6n c/nfVsDntTZIfdBJ4DJ6kZoMhKESEoQYdZaBcUVYAAABbeChvQgAAAQDAEcwRQIh APTJ+NOKNbmxEqCON02SkM5rtR6mFU2XpoYnuYF4Id5ZAiA7xT0vts7hKy5wEaz9 9C9EfKkMWVciqDmXNB8xzLhoozANBgkqhkiG9w0BAQsFAAOCAQEACzUCOahbYCxe Mvbg1Dz/jIUHLNNRZfPs6GLabj6+V16KhMPkYTMLJY9A+3St0VyiCx/5WAJXxa0M rJM1d2dsd42HW4LahsDVsuiFYKh+DEmYfjAsb3Vo7r8SjYePBJADlCMUXgOtLu/C DDF7DrCmJzcE2vF+5avSSfWcIsbs6pJmOJrSKO6PehsMQF7sG3+uxnSW+4WycXo2 03L3r66YVxTWISFa2wy5GLgDTiI59n2GTUNLMju30MNWWspJywf1Ub3Ghk2+QIBU pL5oNyQ1SjUikexP9WTzokoJA1+ZbhVv4p91LO5mKTcRLtNjrEDKuitwkyUkMcoW yGHjOiRswg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9JcXA1ajszWo0vG3Ta6W NSHfpSbygK2zdo55H5Cf+EsX0wzpg4Wf+4ysK9tLEGemWtIrPmXdDe07gTaHUytG IVtWG6AtP/A5h2wp7Xhd9bFeBietPCzJSZrXSrhPPx4oLQn34DrA1+WAD04UKbJ2 AMBuQOMUm73gnjcQrqV/z7nW7JPI1eypmmJzhsuPVuryzBzO5iBqHpgdI3xlhVw8 M8Tw6vakYfrDkMAdzeT3HnkUfKFneOxvSzDsWpFKZJAp4uUiE1Hf6Gr1oPvr9fxu 8u7h4c8wbMEsdyQeCghvIiG7jUG3+bSZIqJhRgsmn/Q9pigO2uiRqSriNzUXht8+ 6QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 302114470187629619964194259565046894134764 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-18 19:49:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-16 19:49:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '40daysabroad.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30876651615637157836725771042122837376162611788151658343200166786443818918239871986434969798896102978182464886141998604212135406997929631192391125770767767389591391377123687637017305033760750474769695970025053667696968274465002805641066522784144597424874869115374453887293762423122177242476565117314834499039032154838973764086279192988302243408248672162054540875872719521340547389569536826739649246966619564975095250557908266823232246802413791599796718161544076957701547750755477986277331649652347582362859403804731422175816020604176026938274039409552457214827899336441968547773747094420766087322871189265301989441257 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d13fa478ae524cc91742b96e373b11cc14fa5b2e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (188 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '40daysabroad.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bebetterhere.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blainecthomas.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'btsixer.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cktconstructionllc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'emmagracekrais.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'familyjacobo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lazzapazza.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sheliathomas.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thelollipoplife.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016de0a1bb070000040300483046022100fa9b7b437b5bc0980dd08913cffc84d5ec721c6a11351d7db1cb6d8006cc95d7022100dce86a9fe8b8185de7c93cbf47ccbd6f8cf61489d006a69956e1c6c109fd009b0076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016de0a1bd080000040300473045022100f4c9f8d38a35b9b112a08e374d9290ce6bb51ea6154d97a68627b9817821de5902203bc53d2fb6cee12b2e7011acfdf42f447ca90c595722a83997341f31ccb868a3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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