www.rawapple.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:8f:a0:e6:07:82:33:15:ba:05:49:72:c9:00:64:89:43:e4 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.rawapple.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:8f:a0:e6:07:82:33:15:ba:05:49:72:c9:00:64:89:43:e4
Serial Number (int): 310211107124870328118970287922288716760036
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 15:60:a2:e8:01:18:44:31:48:20:42:2f:ce:01:21:df:11:24:81:f9
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): b8:70:74:70:54:17:bf:14:4e:c1:33:ed:c6:27:3c:ea:86:9a:9d:c9
Fingerprint (sha256): 4f:8d:5b:3f:81:df:ca:12:65:a6:11:3e:85:0c:39:5b:99:75:4f:8a:05:c1:14:62:8d:33:63:13:31:01:42:d9

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.rawapple.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.rawapple.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.rawapple.com

Other certificates including the domain name rawapple.com

(limited to 100 certificates)
rawapple.com
www.rawapple.com
09640.com
www.washingtondcevent.com
www.rawapple.com
www.rawapple.com
rawapple.com
rawapple.com
rawapple.com
rawapple.com
rawapple.com
www.rawapple.com
rawapple.com
www.rawapple.com
rawapple.com
rawapple.com

Certificate

The complete raw certificate details for www.rawapple.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 310211107124870328118970287922288716760036
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-03 09:27:51 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-01 09:27:51 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.rawapple.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 839472820371081036824319662025325000008553443187595774842526433643095571998538203369191402128279367919658189310339974960176801692780630765312909913038924272907044340078281646892271029525753146401445099387907339623233619374114477593853721455258031149624815896694249962487896969661433956518908747271353323259142705178135799279300937195379132450896594728756241744694336404045481970412448843707769014208316398134500521342521825501483143831274679705816818593904423686840271021004961485895532781528460829062090995283594598450749516539124379088462685625449724471769968185446593514595604268856410603489619081663956780051647733236196046581034725778232526881890687211133775001222682215719936173433640979071453692266478682209371423271981626758105771082506453786114939290447203541884484460097808918260534691891982879887285211825948088560995373242178805382369605195783395146219011912007136616887680154091812650828204069827320287775735598647734292081490473272335141739290794962594527392448265429999938146160797257457428480415239503476539512081619669437033561494647066108038523533373682326338954681810515103728009095362258990281489815692725311648498941723512938209135022501003048859266399044546043603545044293729959989713532001460322182093213640431
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							1560a2e8011844314820422fce0121df112481f9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rawapple.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f2007700f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb273000001709ff004430000040300483046022100d1296f61d59aed12f3a0c2633c6362dddf75b10d82cbac3d930465df54f2487c022100f5c77bda8a4096d2d7bac6962b61595997a561984baec5667514e62160180a70007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001709ff0042d0000040300483046022100cc69087bad6feae1d092e3ceb4994d1970c8d77fc19201ca3ca80f7252719a91022100e309ce4a3ee9a3abf6fb3ad0260d29b049819d0497c78ddc470a33e1ac262cb7
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0091417ff561fa01cc0b68e021371000099f1e64b3b05a8ab7dfef86cdc2a99d32ccf50f83ab3cd4f253a61a979d496ddff2b56dc7ba6d83c0127e3b562075470d69e7e46e4a3105038a237bf12ba7645675cd59cd599f6c06b22595a9a11df97049e2aec907dd1ac25ddb3e560b6303027bf5f55deacfd97066610a0fac47fc198ac3645e1916ca97fb58d7b24febe627127535335c6fca8482c405746300e4eeddccf85947a5b74c16c4279113a92048a3d8819ced4c418d3e9a94be6866d33b6992811530d8da27d41111f6042ddc4c80be5cc497963654d4b37dc620db71ae46ab94dee33f861aa4eb663ae965ab9c84de9abb4776dd20ad8bc84e6c075f41