www.jaquan.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:f5:ce:91:d0:7a:5f:28:ff:b8:3c:fc:39:22:55:bb:50:e1 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.jaquan.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:f5:ce:91:d0:7a:5f:28:ff:b8:3c:fc:39:22:55:bb:50:e1Serial Number (int): 432092901701283574381702256232913943875809
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 21:87:94:5a:61:93:89:d9:4f:d6:a2:4d:e5:e2:ef:49:20:c2:a1:c3
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e4:29:04:33:d6:d6:f8:ad:c8:7a:a3:3f:98:c8:c6:0e:f2:f9:92:c1
Fingerprint (sha256): 62:ac:0c:5a:68:2e:c8:16:83:c5:4e:66:e0:24:26:50:f9:65:a4:e1:1c:3d:31:a6:dc:1e:75:98:f5:58:ed:25
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.jaquan.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.jaquan.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.jaquan.org
Other certificates including the domain name jaquan.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.jaquan.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUzCCBTugAwIBAgISBPXOkdB6Xyj/uDz8OSJVu1DhMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMjMwMjExNDhaFw0y MDAxMjEwMjExNDhaMBkxFzAVBgNVBAMTDnd3dy5qYXF1YW4ub3JnMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxTTWFmbxyPOS4xZj4irQtaQIluxAMZOL 0W711khzgT1BxPw6sNZXZL1ROnUuJx8Nrl0/9hmiykOdyYPVt8tP/m5CskcASYei bIMAtjGeXxZ6aOQorQPMCqGrdy3BBVEIRpE4qHU0e7wxlQLChMd4Ca+LMGCpA3ex YPxz1dfSS6ce77H1v63Bu/dJLzyv27vJ82d29D6nOeS5zyXQeXm/TKACEEFIUUoG oH17ZYu+nMqSaJUKE5ni6ermJt4patCuuawIFhges9wJPwBHglg4W1iQ+0imkqjV nAflzeS+SEVqhC9p86z1n6fr5sYsuRoIRdCZweWo1kh/vrA46wrsr4JXIw6oNYvq rUkZFm7jGKmljP++AFMiQj5WdgVuRc51OE8tP0E7xM6ZjIH1Ibt9sOHwhOFJvw0V /PwCsIHgBGUXoySF9UFzum88s/CKLjpheTPcTaRljBp5zrEtK1hXgBjMX5cYaSnj COUkoFGissw/XpilBxPj0ehAfoi8RFiSJUb0646ix9FVE0lWZv3the9Ux9skCWyf FH9BYuxfpY+LmqZhiQZQTwXBhifLhXGarbC9rtwjO/w7G/TV9eJHlTtKNNbzGapv Dix5hR3V8IZAY+cJxXS4LdZXIckYcru4t+vYBpYDkSNNb7BSekM8k026oN5mRerP hUj7w/TAw7ECAwEAAaOCAmIwggJeMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUIYeU WmGTidlP1qJN5eLvSSDCocMwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAZBgNVHREEEjAQgg53d3cuamFxdWFuLm9yZzBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQE gfEA7wB2APCVpFnyANGCQBAtL5OIjq1L/h1H45nh0DSmsKiqjrJzAAABbfaZWuIA AAQDAEcwRQIhAP9dX71UdNlohDDBcumtzkgwxK6MbpJLhZtmy8zo1gueAiBHgAvl 6u3y2Dr8t2wKom59/qm88/buP9E9TbssxYYXeAB1AAe3XBvlfWj/8bDGHSMVx7rm V3xXlLdq7rxhOhpp06IcAAABbfaZWwkAAAQDAEYwRAIgXgcFTvKWuuRU9x1ZTtke qdbbbJn+d7o6iwCL9uTEVJgCIG1OPHDj6xHtWi21ohz1p3xXzw3TqyV4Rf0rPU4F vfXjMA0GCSqGSIb3DQEBCwUAA4IBAQApqSdyuJCiISTtLkmXsc37PJ5mU4i1B3Y1 mZA7RnSDu//fm/WMRCyZox516DTtudqokq6outgaZw3hg5coMIJswco6eiZN5iIo hjnAqd31F974NnKdBrP2LmCcf+lER7Kwe+dvszzROd9aPbw5MSZCI+/7hNd1qELs pnDhUw1pc7YnyVBlhVWGqSqIXOAP6BS3UkMWnWSf5+rPxbaITnbjP00ts2HxozxQ EHohtJOHgiHX9k5JjqjPfviYh7caJ91sRuvjxqvN2ywq55GfQAxVMnYy6pPVMSy1 Cq6w0K2UPSWdl5YxEgRzPFLcAC06PtIZEVvNrhXXwUpgXjBO3GG0 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxTTWFmbxyPOS4xZj4irQ taQIluxAMZOL0W711khzgT1BxPw6sNZXZL1ROnUuJx8Nrl0/9hmiykOdyYPVt8tP /m5CskcASYeibIMAtjGeXxZ6aOQorQPMCqGrdy3BBVEIRpE4qHU0e7wxlQLChMd4 Ca+LMGCpA3exYPxz1dfSS6ce77H1v63Bu/dJLzyv27vJ82d29D6nOeS5zyXQeXm/ TKACEEFIUUoGoH17ZYu+nMqSaJUKE5ni6ermJt4patCuuawIFhges9wJPwBHglg4 W1iQ+0imkqjVnAflzeS+SEVqhC9p86z1n6fr5sYsuRoIRdCZweWo1kh/vrA46wrs r4JXIw6oNYvqrUkZFm7jGKmljP++AFMiQj5WdgVuRc51OE8tP0E7xM6ZjIH1Ibt9 sOHwhOFJvw0V/PwCsIHgBGUXoySF9UFzum88s/CKLjpheTPcTaRljBp5zrEtK1hX gBjMX5cYaSnjCOUkoFGissw/XpilBxPj0ehAfoi8RFiSJUb0646ix9FVE0lWZv3t he9Ux9skCWyfFH9BYuxfpY+LmqZhiQZQTwXBhifLhXGarbC9rtwjO/w7G/TV9eJH lTtKNNbzGapvDix5hR3V8IZAY+cJxXS4LdZXIckYcru4t+vYBpYDkSNNb7BSekM8 k026oN5mRerPhUj7w/TAw7ECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 432092901701283574381702256232913943875809 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-23 02:11:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-21 02:11:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.jaquan.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 804531886140364029765164401924833522644537501672494849150767851596350840905934109999282321678942284746376049168859607174862870143280469145118100964215281857913063448467866710320392594098222137256400430015053319498077163145650439375957915481472414526044652683298309773522032632714134860598643659800853827445156627459716507234491753585817013886961443832018047329891697883426266004910901861343001013593872614340673655697035581590262621170530196535818436329502703634580417328616189956480515975169073685317588927005748498349970604575491661107681190077817856632523745805597530179105451852707179468726420365701122029125900582943976867063300974949174343815832018724432456319163377581569419365714508232847627554354741671119433264881637940422971285241788756574953651968801233888092686314116993968286932994058957621567120739215199589906185313573647479126474279402795715762749755696834527073583816902794891640843110586599762343010902263665249464142815763384149599239737645479867511945570355734918656269657888949832689521785604067149031111929662498243307971965117696050045062570678809986173856891641592252945663350806764254106441086892927462539087879365141714248724100723041157972174214635160900429365634209111356767311262894058421772326335988657 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2187945a619389d94fd6a24de5e2ef4920c2a1c3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jaquan.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016df6995ae20000040300473045022100ff5d5fbd5474d9688430c172e9adce4830c4ae8c6e924b859b66cbcce8d60b9e022047800be5eaedf2d83afcb76c0aa26e7dfea9bcf3f6ee3fd13d4dbb2cc586177800750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016df6995b09000004030046304402205e07054ef296bae454f71d594ed91ea9d6db6c99fe77ba3a8b008bf6e4c4549802206d4e3c70e3eb11ed5a2db5a21cf5a77c57cf0dd3ab257845fd2b3d4e05bdf5e3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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