www.expicorp.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:7f:66:84:15:9e:08:ee:30:35:d0:20:ae:ab:d2:44:e3:f2 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.expicorp.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:7f:66:84:15:9e:08:ee:30:35:d0:20:ae:ab:d2:44:e3:f2Serial Number (int): 391801271403206974648656076577056573678578
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 08:97:c4:3d:30:5d:3c:40:6e:ae:74:e5:27:92:ed:93:fb:25:39:11
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 66:4d:d2:01:45:1f:34:53:74:73:c1:97:6f:f2:42:89:e1:d3:96:3c
Fingerprint (sha256): 54:4f:29:ac:77:3a:1c:52:b7:da:48:39:fb:1d:f2:ba:b3:fd:e5:fa:21:7a:27:9d:04:f5:48:00:9b:7c:64:43
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.expicorp.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.expicorp.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.expicorp.com
Other certificates including the domain name expicorp.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.expicorp.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWjCCBUKgAwIBAgISBH9mhBWeCO4wNdAgrqvSROPyMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTMwMTIwMjlaFw0y MDAxMTEwMTIwMjlaMBsxGTAXBgNVBAMTEHd3dy5leHBpY29ycC5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDOGdwJujaaWxP2w7OihzCcYPIrKY85 XTAInqrPJ115i25JmRHY/qSKHNnt8e+/gdxYJ6KV8Taji23UwddycwUDIR2DYV8Q oOGUSkKI6tI+l5W+XyIoNMhUSTWjtLtPjiC0XbyFBo3lcahdii2VIKA9Af09yF8n YhbDmqOxZVEuPNJN3VgO3gTnyVndalff07Y4UaX1ziIrDuAe1uyFWQKewq6rHWXh rvdFBKq4mW6WYtdl9n+gP0jNWoxJJlh+SGf4kUBTdEnTnZDMNrriOCa5Pq+PtGVr /WUd6ejJSxNJ2LGvq59isJkh31y2hh+BoutTPOFTjr22ie+D3x8BO2jJzU0E/CA6 xPPX9i3hR8KfbsAh/hyTUIL66Di5/ZwRtrFvPPpD2ta6xQu5nuabRR8P0U0r2jgQ OdtqPm+o0CmAWa88pSwPa1VZ/M74M44ZC7IW5T9DdboNeWMjqs6pkdfEzHc3mcKB QhpRPHsMdTm48aG1gnMD+kK6VAw3guchBcEZt/C/5g2XxEeG1jWIx7+hjXNKEkIJ Ugx5pHxjNg2DaNHkJLOgxzHaai++V9DJpqqf4buEcdZraGA8MiRnz1s5XcznI1mj LC2aorn7QW8pbJKDNXTwZmD2oSkDjKnPZH8ucB/AN5hapxBuxsaO7lVasdoBEozU A0aF6RNlNbefQwIDAQABo4ICZzCCAmMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQI l8Q9MF08QG6udOUnku2T+yU5ETAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHd3dy5leHBpY29ycC5j b20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEGBgorBgEEAdZ5AgQC BIH3BIH0APIAdwBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAW3C 6sfsAAAEAwBIMEYCIQCZh/0mVRzJustwMcoK1SuN9sjcpJlwWBzO3vueDFii0wIh AI9VRZTvCV3MkZ8EAACXYihG7HBTX5qRJ/ViinREvhg1AHcAKTxRllTIOWW6qlD8 WAfUt2+/WHopctykwwz05UVH9HgAAAFtwurH3wAABAMASDBGAiEAg9lSj54T+Phh H73nv1iVwMEafN3oXQFoFnTftC5e3/oCIQDzEHfghFlCzRLllSgEcmcEt3tOan3q 224oIJlOybJMXTANBgkqhkiG9w0BAQsFAAOCAQEAE+OvEScFGWEp0U3yfHFjaNUZ VNKhf+oRDXcaNLv1cSfDLzatkwApj0zY4JOb/xEEGv98+VZHFdKf14P9LtgGD7tx WFd7etBdUjt6SsVmzIpTNkRBPDBD2av+6VZkgJn4DNVm9QVeQXL5RHUdukuF6z1I ELj5tnhlJW7RbdcNLcv+hCLGDEWyUaX2ueIrThalGGHsa+5bqjsxQkwMe/sTUNPa 02LzQOnWFL0xm5kY+PA030zsKEq00cxdlbZS6Za8uyptlyilJPq6zXscIzLnA73M QkrpmosnRbY+TfV2YysMUNJMagCmUZZ9jcigPMFtSBQkGLBJ5ff7JHVWFwbGtw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzhncCbo2mlsT9sOzoocw nGDyKymPOV0wCJ6qzyddeYtuSZkR2P6kihzZ7fHvv4HcWCeilfE2o4tt1MHXcnMF AyEdg2FfEKDhlEpCiOrSPpeVvl8iKDTIVEk1o7S7T44gtF28hQaN5XGoXYotlSCg PQH9PchfJ2IWw5qjsWVRLjzSTd1YDt4E58lZ3WpX39O2OFGl9c4iKw7gHtbshVkC nsKuqx1l4a73RQSquJlulmLXZfZ/oD9IzVqMSSZYfkhn+JFAU3RJ052QzDa64jgm uT6vj7Rla/1lHenoyUsTSdixr6ufYrCZId9ctoYfgaLrUzzhU469tonvg98fATto yc1NBPwgOsTz1/Yt4UfCn27AIf4ck1CC+ug4uf2cEbaxbzz6Q9rWusULuZ7mm0Uf D9FNK9o4EDnbaj5vqNApgFmvPKUsD2tVWfzO+DOOGQuyFuU/Q3W6DXljI6rOqZHX xMx3N5nCgUIaUTx7DHU5uPGhtYJzA/pCulQMN4LnIQXBGbfwv+YNl8RHhtY1iMe/ oY1zShJCCVIMeaR8YzYNg2jR5CSzoMcx2movvlfQyaaqn+G7hHHWa2hgPDIkZ89b OV3M5yNZoywtmqK5+0FvKWySgzV08GZg9qEpA4ypz2R/LnAfwDeYWqcQbsbGju5V WrHaARKM1ANGhekTZTW3n0MCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 391801271403206974648656076577056573678578 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-13 01:20:29 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-11 01:20:29 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.expicorp.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 840818778212755551570073132040285777570559014328815773101998516936884567198568842755865613149427778914098761961082629654605743909013850641371717148937450677723890219988522239991953106774629672223588303520756155309546854749521205141771138874888288625120722923382881370526577085252649789528694470387720141120923280681308763242890192105521610335502939255682222307299951896991264815819682929284692422039021667222888667234362233024338456926924673388781762411563518017251281300250446510741088692231801015710993807843332854265619364563993059281261778445698633502243708923182965861696822314673899640274725974786704829944176994283269673166849458055206970072319282092381394375958171052890955126062232011699354023785906393308715548324066227354813858538043167604834699915558315171492549712459217558997706313631655859500981845506272493666146209320032994619934045027056533243835149010396804471198904659417344041113269803238458133836740238476661997117836332579227587573192417572121858225277606257583836113113510416376520494079547826767295335086658654541725132299148304327818262701806600004524691938758369190153917921146010350567098662782805971698796962062932114673289720549268704926941736523056112846409275160100836661257939988682226850828350103363 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0897c43d305d3c406eae74e52792ed93fb253911 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.expicorp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016dc2eac7ec00000403004830460221009987fd26551cc9bacb7031ca0ad52b8df6c8dca49970581ccedefb9e0c58a2d30221008f554594ef095dcc919f04000097622846ec70535f9a9127f5628a7444be1835007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016dc2eac7df000004030048304602210083d9528f9e13f8f8611fbde7bf5895c0c11a7cdde85d01681674dfb42e5edffa022100f31077e0845942cd12e5952804726704b77b4e6a7deadb6e2820994ec9b24c5d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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