banner-flags.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:e9:59:17:a9:b5:46:89:69:26:11:bd:3b:2b:54:35:62:fc was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=banner-flags.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e9:59:17:a9:b5:46:89:69:26:11:bd:3b:2b:54:35:62:fcSerial Number (int): 340741073444401356242851540398545330070268
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 7b:00:00:87:8a:e6:18:95:02:ea:72:e3:3a:e5:dc:5b:b5:22:7b:c0
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 6a:ba:61:a8:22:ee:7c:18:f4:d6:87:df:f6:c1:4e:a2:a5:fc:0d:cc
Fingerprint (sha256): 59:7c:32:75:7d:86:0e:96:1e:d7:bf:95:7e:8a:bb:7d:32:d5:d5:93:75:e0:7f:93:61:e5:b4:7c:94:02:7e:d4
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate banner-flags.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for banner-flags.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
banner-flags.com
Other certificates including the domain name banner-flags.com
(limited to 100 certificates)
www.newmanufacturedhomes.com
wolverineslots.com
www.pewrevolt.com
www.banner-flags.com
www.banner-flags.com
banner-flags.com
banner-flags.com
www.banner-flags.com
vgasm.com
nameszilla.com
banner-flags.com
www.postal-envelopes.com
banner-flags.com
banner-flags.com
watchcenter.com
www.banner-flags.com
waterchimes.com
wolverineslots.com
www.pewrevolt.com
www.banner-flags.com
www.banner-flags.com
banner-flags.com
banner-flags.com
www.banner-flags.com
vgasm.com
nameszilla.com
banner-flags.com
www.postal-envelopes.com
banner-flags.com
banner-flags.com
watchcenter.com
www.banner-flags.com
waterchimes.com
Certificate
The complete raw certificate details for banner-flags.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWDCCBUCgAwIBAgISA+lZF6m1RolpJhG9OytUNWL8MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMjgwODI3MzlaFw0y MDAxMjYwODI3MzlaMBsxGTAXBgNVBAMTEGJhbm5lci1mbGFncy5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCyn+KropH/BF4ADcMBxMYgDgMwwbeX ItOMgWsF+elrC5V/ACve+0HVEAAGsM1j2wdRFaNpxWKQS8jVj4P6eNbLFtR4r6Ef ZFS78mrCWoXxoz+PBSsaibqvO4Xz9tC1t/gN9ZHbn0KdWxOyLVihzEz1MmmVefiw 2JmMUKFwBwoLfYVtqCgx6Rwv0jWX714mc7ko93hXnNwRVkDD5ImoZj00SkHpKyZ4 cRVIxLtefrIbKiinfz0jMmZ92Pn8Jylemi+P/Y7z/7NvDi50XRqzwFZBpMv2xa2s 0jOCb0/StnXz/r1SaoFG6yTnHa0HOP9rdsiladyH6ly9clSONDzjoIjlv+ItATuR cdOAzUHp88lsrJQRd/1MPbm3/t6tMO/wcEAYNrCyWI40w5w/gTQBLNEsm4/dvVpg b4VVLB+TF2K1EZC23RI6JdgSKsRJlBkJJI9MaHn0IR52rIobkHKpmpIGN3iE+OCt e0nXmKRdOMAOeq2it/cepBrpc8ZaWbJ9qCwt9jqK2z3dg+nD8AUxHleFXO94vF68 ATzuj9VyPUcGJtFwM+rN8EQ3IY92BqSz9g2EWj+P55PkvFd+eC//qSORebMBUqxQ eqclF1m8SvgCUzrLjjzHV1gyJVrNlrfSyKGGQgpZtQXGF44pXEKwwufPdZiGASA8 JYAKTZidO/w/GwIDAQABo4ICZTCCAmEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBR7 AACHiuYYlQLqcuM65dxbtSJ7wDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEGJhbm5lci1mbGFncy5j b20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQC BIH1BIHyAPAAdgAHt1wb5X1o//Gwxh0jFce65ld8V5S3au68YToaadOiHAAAAW4R sUKbAAAEAwBHMEUCIAUJSN45wp2xJsK5MIjfzDtRvArAK+vTql2xLkvbDXUlAiEA 5P/GgmIwJdqA+kQKNBD1n1wUAzFZwaxar1ZSL32i1P8AdgBvU3asMfAxGdiZAKRR Ff93FRwR2QLBACkGjbIImjfZEwAAAW4RsUM+AAAEAwBHMEUCIFoBS0VOKqGGYhfp ETZK7i9IguoZGAJOC/xd/wolXibTAiEA6XWJvqQroDUM8wnMpmsQ75kzms5JwHbK tubX+JGKYG4wDQYJKoZIhvcNAQELBQADggEBAG8gNin6aT2XNL5VcVCXthqm2f4Y g9ohazWxNL7Q5i89S3YhYQfkamgSpTX91BTrHvVKgqCZIzdllZ5beRKFzcl5X60f orGiBJAHJ9rgZ8tOKM37F816vV1rQfk0IUf1giXyjxpKkUVYbmwdlm4NPRt1RpR+ ndLjxGDnBIuEsLXhP5XLKvKAu/Wyuc4uq3ugDXHIads0AyxAazG2Uv25oCBME0kh ZfCesoe+4lmnQl/BQtOWYMf8Rq1VotVX/3MFcx3I9eiWsN2/NaOU7faeADSEdyDX onD/BFKN0c/W3jzrubKvATrongOvSPtD8esTU4Qu3k5jXKEzM27J2O0/ofU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsp/iq6KR/wReAA3DAcTG IA4DMMG3lyLTjIFrBfnpawuVfwAr3vtB1RAABrDNY9sHURWjacVikEvI1Y+D+njW yxbUeK+hH2RUu/JqwlqF8aM/jwUrGom6rzuF8/bQtbf4DfWR259CnVsTsi1YocxM 9TJplXn4sNiZjFChcAcKC32FbagoMekcL9I1l+9eJnO5KPd4V5zcEVZAw+SJqGY9 NEpB6SsmeHEVSMS7Xn6yGyoop389IzJmfdj5/CcpXpovj/2O8/+zbw4udF0as8BW QaTL9sWtrNIzgm9P0rZ18/69UmqBRusk5x2tBzj/a3bIpWnch+pcvXJUjjQ846CI 5b/iLQE7kXHTgM1B6fPJbKyUEXf9TD25t/7erTDv8HBAGDawsliONMOcP4E0ASzR LJuP3b1aYG+FVSwfkxditRGQtt0SOiXYEirESZQZCSSPTGh59CEedqyKG5ByqZqS Bjd4hPjgrXtJ15ikXTjADnqtorf3HqQa6XPGWlmyfagsLfY6its93YPpw/AFMR5X hVzveLxevAE87o/Vcj1HBibRcDPqzfBENyGPdgaks/YNhFo/j+eT5LxXfngv/6kj kXmzAVKsUHqnJRdZvEr4AlM6y448x1dYMiVazZa30sihhkIKWbUFxheOKVxCsMLn z3WYhgEgPCWACk2YnTv8PxsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 340741073444401356242851540398545330070268 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-28 08:27:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-26 08:27:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'banner-flags.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 728724595873007452823435770062802331175417399737471488626426228866296508136310614713033682786599239395589583374089816347947949487350252194153434463693793157571276148209353222796026656544282141926246305362179177455667368371707010319554461169223512310249198094446310308529485882541836865339891528497316950560562584684328283012539363202704714942508834151562770384621122759884033950734493170714409694913462302411000083157569757294423855341182086344720159766563979616126775266797368951150137361456900324605792232870287326744465356850630673741774881687658539637478682438043908992885681534735085323190008535618238601105945022535881583350098426135101408427784494479301897179952041896221395127137639859009103368344091756786227516894738866124648534016232708448869189050159985656928116993415233907871434817140806998422348681838501518596868819228751895744904954108476342980734304567816440886001359538254780435271491380884838790517381330263045401538827833692909382239494176222133280405079843771981721533911353409468982977939370255673287791531975166364357142730417434457069710672626474903975611891381590091883351168687421200309872322241755188914059663411749897809341433511079755186655228319047851611184182507375016663430039577031397984881927274267 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7b0000878ae6189502ea72e33ae5dc5bb5227bc0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'banner-flags.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016e11b1429b00000403004730450220050948de39c29db126c2b93088dfcc3b51bc0ac02bebd3aa5db12e4bdb0d7525022100e4ffc682623025da80fa440a3410f59f5c14033159c1ac5aaf56522f7da2d4ff0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016e11b1433e000004030047304502205a014b454e2aa1866217e911364aee2f4882ea1918024e0bfc5dff0a255e26d3022100e97589bea42ba0350cf309cca66b10ef99339ace49c076cab6e6d7f8918a606e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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