ui.s.gem.foundation
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:23:ea:5f:dc:91:01:81:b3:94:80:42:f9:c1:d8:ea:e1:0e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ui.s.gem.foundation
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:23:ea:5f:dc:91:01:81:b3:94:80:42:f9:c1:d8:ea:e1:0eSerial Number (int): 273558277730347479936393345649229955784974
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: c8:b2:28:df:49:85:be:f3:11:a4:3c:3e:91:ab:5c:8d:e0:24:ce:17
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a2:86:84:94:39:b0:96:c8:9e:e2:35:7a:df:5f:99:74:63:2e:7d:38
Fingerprint (sha256): 5a:34:34:80:8e:62:f4:2a:a2:50:b7:ee:f2:f9:e8:81:2e:e8:0c:26:96:e6:48:70:b3:39:de:d6:e0:44:02:8d
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate ui.s.gem.foundation
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ui.s.gem.foundation
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ui.s.gem.foundation
Other certificates including the domain name gem.foundation
(limited to 100 certificates)
globalquakemodel.org
www.gem.foundation
gem.foundation
www.gem.foundation
www.gem.foundation
gem.foundation
www.gem.foundation
gem.foundation
gem.foundation
s.gem.foundation
s.gem.foundation
s.gem.foundation
s.gem.foundation
gem.foundation
ui.s.gem.foundation
www.gem.foundation
globalquakemodel.org
gem.foundation
globalquakemodel.org
gem.foundation
globalquakemodel.org
globalquakemodel.org
www.gem.foundation
s.gem.foundation
gem.foundation
s.gem.foundation
gem.foundation
gem.foundation
gem.foundation
globalquakemodel.org
globalquakemodel.org
globalquakemodel.org
gem.foundation
www.gem.foundation
s.gem.foundation
globalquakemodel.org
globalquakemodel.org
gem.foundation
gem.foundation
www.gem.foundation
gem.foundation
www.gem.foundation
www.gem.foundation
gem.foundation
www.gem.foundation
gem.foundation
gem.foundation
s.gem.foundation
s.gem.foundation
s.gem.foundation
s.gem.foundation
gem.foundation
ui.s.gem.foundation
www.gem.foundation
globalquakemodel.org
gem.foundation
globalquakemodel.org
gem.foundation
globalquakemodel.org
globalquakemodel.org
www.gem.foundation
s.gem.foundation
gem.foundation
s.gem.foundation
gem.foundation
gem.foundation
gem.foundation
globalquakemodel.org
globalquakemodel.org
globalquakemodel.org
gem.foundation
www.gem.foundation
s.gem.foundation
globalquakemodel.org
globalquakemodel.org
gem.foundation
gem.foundation
Certificate
The complete raw certificate details for ui.s.gem.foundation in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgISAyPqX9yRAYGzlIBC+cHY6uEOMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMjcwODI1NDBaFw0x OTA2MjUwODI1NDBaMB4xHDAaBgNVBAMTE3VpLnMuZ2VtLmZvdW5kYXRpb24wggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyXttptgY47rXDgZBfTH79NQMA uLod4lEIm5sLu3S0AGRhI/YuOj90SLkn/BSoqx/mcivh/IjGR/IQ4MMygGGh7irZ 1b6gfmryZ0JTKAv4gwynlf1H/Gw9gYK/JsQ+RvhdtIV4lfFgc2f+/OQmG8+onv32 EoeDeHDfbRfEEcQ3SOsREmT+NarA5eWDffEvs7PFhkF3Ii4088RG2T9XTVSwkxWY j19eQlV4hdgfKsj3mH/McyPnDCxybHHtk03USmhme6EUU61o8JuHHBL2+BlECIUL pPM3pGn+xyWXzB1h8Go7URDc+iJnpE7FLPhUyr3dsasBp5R8rcwo5vXsz7QbAgMB AAGjggJnMIICYzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFMiyKN9Jhb7zEaQ8PpGr XI3gJM4XMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUF BwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNy eXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNy eXB0Lm9yZy8wHgYDVR0RBBcwFYITdWkucy5nZW0uZm91bmRhdGlvbjBMBgNVHSAE RTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRw Oi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1 AHR+2oMxrTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xWAAABab54LekAAAQDAEYw RAIgH+D9deeoUf767rfGMldCbT3oii10/J9Xu66xlvEXWMoCICRvL3B6BiizLzPE K4ekLpb5JQeA/ou6f3hhCENugCadAHYAKTxRllTIOWW6qlD8WAfUt2+/WHopctyk wwz05UVH9HgAAAFpvngwMwAABAMARzBFAiEAtmGXqBfetOfwDVp49U80wJ5p3t1t J7jCqMUqXC5ma/ICIEl/vwVdRH7COz3ltPJ07a2+2j84tAyk4DtYCgI2vJg9MA0G CSqGSIb3DQEBCwUAA4IBAQBWTrJpbgyCTkTIg4ru2LspWmBAD1Sv2Nvb4HfR5EhW prbUe17msbyEbUH9PL31+XDnya2jZCnjy5WDkLiW/C6adoSu/W1JFaHB6k7L1bQY LPOZbQw65q+DU8gmZsmxgC9iTQ0U/hWxQm9ZOYETBJjDr/9LbUOGmVaMcFlLtYRf lzU7sAymAyArPOi02MfN3YL8LrV+GQZ0g0ZT/SJEMBqB/QW8g5xlTt0NxGmGigft 9kEqkvFfm0fc1mjDY+3zqLvqMpe0JU9wQR/G4LTm0F5Y7gIw4Z8Vk7qpZxQulN3A u7zuc2kUZMyo3leEF1AkWeAFzuckq6JicP8INK5ywHGy -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsl7babYGOO61w4GQX0x+ /TUDALi6HeJRCJubC7t0tABkYSP2Ljo/dEi5J/wUqKsf5nIr4fyIxkfyEODDMoBh oe4q2dW+oH5q8mdCUygL+IMMp5X9R/xsPYGCvybEPkb4XbSFeJXxYHNn/vzkJhvP qJ799hKHg3hw320XxBHEN0jrERJk/jWqwOXlg33xL7OzxYZBdyIuNPPERtk/V01U sJMVmI9fXkJVeIXYHyrI95h/zHMj5wwscmxx7ZNN1EpoZnuhFFOtaPCbhxwS9vgZ RAiFC6TzN6Rp/scll8wdYfBqO1EQ3PoiZ6ROxSz4VMq93bGrAaeUfK3MKOb17M+0 GwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 273558277730347479936393345649229955784974 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-27 08:25:40 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-25 08:25:40 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ui.s.gem.foundation' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22517194054337214974228612072596279523664690277724575374821233892805081819936657523973082791581330884830341691358432088780002372962218199149626327551122212106488117289964674094939753643830265390972868290560466883888764260400047897702728266079884664524154783698208282302083314705141532301747359848073883338465019785090251115430474481423850180256924369315684262960714862082237844352658311732513207153335834910024204304117197642440683255536550471968041128045750253842916250209971973205022767368574060790709366345960882550907421426195593225811304783171909072610155784155073824870593001592764041159734598942849746949092379 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c8b228df4985bef311a43c3e91ab5c8de024ce17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ui.s.gem.foundation' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000169be782de9000004030046304402201fe0fd75e7a851fefaeeb7c63257426d3de88a2d74fc9f57bbaeb196f11758ca0220246f2f707a0628b32f33c42b87a42e96f9250780fe8bba7f786108436e80269d007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000169be7830330000040300473045022100b66197a817deb4e7f00d5a78f54f34c09e69dedd6d27b8c2a8c52a5c2e666bf20220497fbf055d447ec23b3de5b4f274edadbeda3f38b40ca4e03b580a0236bc983d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00564eb2696e0c824e44c8838aeed8bb295a60400f54afd8dbdbe077d1e44856a6b6d47b5ee6b1bc846d41fd3cbdf5f970e7c9ada36429e3cb958390b896fc2e9a7684aefd6d4915a1c1ea4ecbd5b4182cf3996d0c3ae6af8353c82666c9b1802f624d0d14fe15b1426f593981130498c3afff4b6d438699568c70594bb5845f97353bb00ca603202b3ce8b4d8c7cddd82fc2eb57e190674834653fd2244301a81fd05bc839c654edd0dc469868a07edf6412a92f15f9b47dcd668c363edf3a8bbea3297b4254f70411fc6e0b4e6d05e58ee0230e19f1593baa967142e94ddc0bbbcee73691464cca8de578417502459e005cee724aba26270ff0834ae72c071b2