www.aqua-lyros.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:9f:b4:25:74:04:fb:4e:51:00:93:60:8b:e5:36:b1:7b:17 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.aqua-lyros.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:9f:b4:25:74:04:fb:4e:51:00:93:60:8b:e5:36:b1:7b:17Serial Number (int): 315681209643089208366145420824223830604567
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 1e:c8:8a:40:d4:70:e1:29:a0:00:cd:03:52:9b:d3:ec:39:72:e5:c5
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 4c:ac:50:01:fe:e4:4a:6d:8f:8b:5a:b8:ca:6e:bb:68:7e:01:5f:dd
Fingerprint (sha256): 50:04:f2:55:7b:34:c3:b0:cc:74:8a:49:6f:0c:80:db:92:8a:d3:47:59:88:c1:cb:3c:e9:7d:f5:3d:3f:65:a8
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.aqua-lyros.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.aqua-lyros.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.aqua-lyros.org
Other certificates including the domain name aqua-lyros.org
(limited to 100 certificates)
*.lutz-heesen.de
www.aqua-lyros.org
*.aqua-lyros.org
*.antennepassau.de
aqua-lyros.org
regionalklasse-kfz-versicherung.pkwversicherung24.eu
www.aqua-lyros.org
www.msx23.lima-city.de
aqua-lyros.org
vonmirbach.lima-city.de
terra-details.4lc.eu
die-borgstedts.de
testshop-01.lima-city.de
www.jansblog.lima-city.de
medicalnewstohdokhistmx01.hampoelz.net
www.aqua-lyros.org
hartaberehrlich.ml
aqua-lyros.org
sammelnimkreis.lima.zone
www.aqua-lyros.org
*.linda-bau.de
www.adsense.2ix.de
www.aqua-lyros.org
www.aqua-lyros.org
www.patrickfreiheit.de
www.aqua-lyros.org
www.aqua-lyros.org
www.aqua-lyros.org
*.aqua-lyros.org
*.antennepassau.de
aqua-lyros.org
regionalklasse-kfz-versicherung.pkwversicherung24.eu
www.aqua-lyros.org
www.msx23.lima-city.de
aqua-lyros.org
vonmirbach.lima-city.de
terra-details.4lc.eu
die-borgstedts.de
testshop-01.lima-city.de
www.jansblog.lima-city.de
medicalnewstohdokhistmx01.hampoelz.net
www.aqua-lyros.org
hartaberehrlich.ml
aqua-lyros.org
sammelnimkreis.lima.zone
www.aqua-lyros.org
*.linda-bau.de
www.adsense.2ix.de
www.aqua-lyros.org
www.aqua-lyros.org
www.patrickfreiheit.de
www.aqua-lyros.org
www.aqua-lyros.org
Certificate
The complete raw certificate details for www.aqua-lyros.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgISA5+0JXQE+05RAJNgi+U2sXsXMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMjExMTQ2MjBaFw0y MDAxMTkxMTQ2MjBaMB0xGzAZBgNVBAMTEnd3dy5hcXVhLWx5cm9zLm9yZzCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMTjqR9VdabIrql28nDR6O1qtrEu W+sYDkgdbAfWBZ+Ww+YgdX97DWTV8YpeGcS1RVwrxa87Cb2Kg3+Vu269do/JbbB+ jBYJOexWfkSj0dbCQr6l3+cZTRp/jSSVWhOPIW18Sj62SHGr58uhp4QyrG7LAQe4 nvG+Angg9l/PekHAEi94eHHj7K+bx2aXB8eY2wue4g6alg+bTT/dGwFjBFmTqwuJ uRKxZtympg2beJ7JKpHloXpvwLEgEZSC/fi9xDBoQ19ms8bm+XlJwva55EK/H79E Raxp3CcUcLVwRhiWeuDbHlEnqIx+ft7zzSGqjAJs24GlsOCJHATjQc7bM/cCAwEA AaOCAmUwggJhMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUHsiKQNRw4SmgAM0DUpvT 7Dly5cUwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUH AQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5 cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5 cHQub3JnLzAdBgNVHREEFjAUghJ3d3cuYXF1YS1seXJvcy5vcmcwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggECBgorBgEEAdZ5AgQCBIHzBIHwAO4AdQCy HgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAW3uWqS8AAAEAwBGMEQC IGBg5EJCtA9mDe5yL3ITTZ703HMYx8mCRUy0FfgGqEUHAiBlDnZV/QV0IoQe1NEQ D4nz9nw71DYNaZo2btalq9VL1wB1AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaN sgiaN9kTAAABbe5apO0AAAQDAEYwRAIgMOdd3w8i1aOI70BfvCkEs5kU1BcQtwN2 u4rxzc5ex8kCIHXFFMDlqygTDaXTkzWyFxFOnUYpwxt/js5PPPyqACloMA0GCSqG SIb3DQEBCwUAA4IBAQCcKeS5kQCq6bZ+Pt2ZOZ41SV2Ozq5AXihJMQq2xdVvsp0h e5FM11xRfn15BmY0D7Fy4kpn2LBmo1We0fTa5lrwdoXY6JPxsPI3k/QxevYOR9HH 6Fl7cyubZ0b9ZbO+niqPZDtV/14ETUsCPWrzHqsxb/7v3mncSFmdF5I0Pi1WrYaL aId2V2cbs5wuMz3lvewlw+HR3Uv52JyvDah6iemfLhOEWDR2rnZV3FIlbgCUIFCq tV171seETh3WF6MYyrMR+kf1nsxGOU1WLlQPCNEmHhslR3iockoXFHUTRi7E11vB bk1vZoS7RDNgD9cgdcfkd3oWXm4p2YuOJKOS9J9B -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxOOpH1V1psiuqXbycNHo 7Wq2sS5b6xgOSB1sB9YFn5bD5iB1f3sNZNXxil4ZxLVFXCvFrzsJvYqDf5W7br12 j8ltsH6MFgk57FZ+RKPR1sJCvqXf5xlNGn+NJJVaE48hbXxKPrZIcavny6GnhDKs bssBB7ie8b4CeCD2X896QcASL3h4cePsr5vHZpcHx5jbC57iDpqWD5tNP90bAWME WZOrC4m5ErFm3KamDZt4nskqkeWhem/AsSARlIL9+L3EMGhDX2azxub5eUnC9rnk Qr8fv0RFrGncJxRwtXBGGJZ64NseUSeojH5+3vPNIaqMAmzbgaWw4IkcBONBztsz 9wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 315681209643089208366145420824223830604567 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-21 11:46:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-19 11:46:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.aqua-lyros.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24854971416276758945603534661673014719322663056568387623184084489315433711015499102421960566333723703683179023338874143408171460454430194264147840793077808066503742612409987506391133035759472389041771543374002749363237012428481468149963989604221679215850457499407380184242595273276209684293571424420331210846746482193941802032061050724850456286545092210299628009368501973616307218000636572145068248083648117397039101915556179090946392424892052431480604880019224978014971810703433101135238134887940901940952020372268062364483317034690642900603735283355581814643668031482275317083168937829882482755997218117387118392311 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1ec88a40d470e129a000cd03529bd3ec3972e5c5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aqua-lyros.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016dee5aa4bc000004030046304402206060e44242b40f660dee722f72134d9ef4dc7318c7c982454cb415f806a845070220650e7655fd057422841ed4d1100f89f3f67c3bd4360d699a366ed6a5abd54bd70075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016dee5aa4ed0000040300463044022030e75ddf0f22d5a388ef405fbc2904b39914d41710b70376bb8af1cdce5ec7c9022075c514c0e5ab28130da5d39335b217114e9d4629c31b7f8ece4f3cfcaa002968 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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