blog.puget.tech

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:64:16:91:d8:3d:ed:af:39:ec:d5:c1:72:92:7d:e6:19:6a was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=blog.puget.tech

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:64:16:91:d8:3d:ed:af:39:ec:d5:c1:72:92:7d:e6:19:6a
Serial Number (int): 295395094772233294070439931278413835671914
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: a3:8d:71:bf:f8:29:67:b6:42:5b:53:1f:6c:3b:12:e0:4b:92:ae:27
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 9a:8f:3a:1e:ca:62:b3:c4:0d:a3:86:36:62:6e:69:51:2b:2f:96:8a
Fingerprint (sha256): 64:6c:6a:99:2e:d7:94:7d:99:79:7a:58:c1:a5:d8:79:dd:b2:02:94:39:d9:ee:bf:52:7b:42:16:a3:d4:1d:90

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate blog.puget.tech

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for blog.puget.tech

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

blog.puget.tech

Other certificates including the domain name puget.tech

(limited to 100 certificates)
www.puget.tech
projects.arturo.ai
puget.tech
www.puget.tech
puget.tech
clients.puget.tech
clients.puget.tech
portal.puget.tech
puget.tech
support.a-blogcms.jp
billing.puget.tech
puget.tech
clients.puget.tech
sni.cloudflaressl.com
cisupport.tekchand.com
puget.tech
account.puget.tech
status.puget.tech
invoice.ltol.com
srrit.tachihelp.com
projects.arturo.ai
clients.puget.tech
blog.puget.tech
www.puget.tech
support.deploypartners.com
support.a-blogcms.jp
blog.puget.tech
puget.tech
sni.cloudflaressl.com
projects.platinumwfm.com
clients.puget.tech
clients.puget.tech
support.getforsite.com
clients.puget.tech
billing.puget.tech
clients.puget.tech
puget.tech
billing.puget.tech
puget.tech
blog.puget.tech
blog.puget.tech
blog.puget.tech
www.puget.tech
support.getforsite.com
fee.stir.ae
clients.puget.tech
clients.puget.tech
status.crossknowledge.com
projects.wjddesigns.com
invoice.puget.tech
*.puget.tech
puget.tech
assets.puget.tech
landing.puget.tech
clients.puget.tech
support.sdatec.com
blog.puget.tech
billing.puget.tech
status.telehouse.com.sg
projects.puget.tech
www.puget.tech
puget.tech
status.puget.tech
portal.puget.tech
billing.puget.tech
puget.tech
sni.cloudflaressl.com
clients.puget.tech
community.tago.io
support.sdatec.com
puget.tech
invoice.puget.tech
blog.puget.tech
puget.tech
blog.puget.tech
blog.puget.tech
support.a-blogcms.jp
fee.stir.ae
portal.puget.tech
puget.tech

Certificate

The complete raw certificate details for blog.puget.tech in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGVTCCBT2gAwIBAgISA2QWkdg97a857NXBcpJ95hlqMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMjUwNzI4MjdaFw0y
MDAzMjQwNzI4MjdaMBoxGDAWBgNVBAMTD2Jsb2cucHVnZXQudGVjaDCCAiIwDQYJ
KoZIhvcNAQEBBQADggIPADCCAgoCggIBAM/e0LRYBNOOX8JQxLznySz/ef5gRHe/
QBsRabCSB7GEkluk63Q2+XuIYMMvXFJ8VfcsEEemY5kxdsM1LMSgrF2YgWTON0nO
DmMuVknqMl8REsseCmr+zKtNV7vLo4naTtfvI5/robBlMa979qzd8MklGMdvIamO
2vvJ3l0z9H9JoPuWQGPtZc3Kl21H2LbXJVLKwoDZ8B7NwfbNAkEgaKWczWAUY7sy
LdbJ6MtA9TV4vzXxbHdq+D8RTlbcCA2FTJ8lhzbfLLyAvC44oVozS/QZbESBreV0
RoqmHNYjUD7epKKcFzn5dH96gtUYv+yU4Sgh8pvDklvmKvtbGbXamYIR8LFM1ox3
ft8Q2aOLUsVOqBvj7Fg0ZjO81pp8sg6JDYezCPjRrmqxdgnAsT4yJII49nXOnxPd
WZthgdpXid9arXKjUxRgoTG3luM8bnhuJJOGKv5mO36bZnWATldMFN6VAEERNtTI
XBrqHDUFhcsPyT0LaEFTRjqufLWIZMcpzUPEG23FdZbpXNzFnDinQX04bX39MepG
JQ3zCBz16nXrRieX/qScgux5G6qpWUqJgElhJbgBDqeEQ2kx/3mNhpF7JhVZd2P6
tUXYZMvNdyGtT4nX58zX95WV3MGehS0d8SNArtJ5D2BjA2uj0HT14c2APS5EbETQ
fc/H4F+3nOCVAgMBAAGjggJjMIICXzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw
FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFKON
cb/4KWe2QltTH2w7EuBLkq4nMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z
qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50
LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50
LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPYmxvZy5wdWdldC50ZWNo
MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH
AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB
9ASB8QDvAHUAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFvPCvn
kwAABAMARjBEAiAIfqAxSQnXLr2A8WGU4JLuGHcE6xZimQaQ0D4b27kaagIgXrjP
TA0J1zDci24snJYGb/s+yqiv+AhHsuiLn8IcdvUAdgAHt1wb5X1o//Gwxh0jFce6
5ld8V5S3au68YToaadOiHAAAAW88K+etAAAEAwBHMEUCIQDTk2JAt7SqiPYwfzyT
WavnkD7nDfTHfynrqfjmymosjgIgNsXKZL3LoKCEXak09533U0FeGmSp6HdLDRN7
CPcraXswDQYJKoZIhvcNAQELBQADggEBAGoMRMeRZQihE/Pmlc0wqzHBrBKZWKMB
akc3nqrGox0Fsv3GmHg2AKifYMqeAKS2CAAojjLDCjEYPtUhe0P5tp3XKr1cHHGz
w8gl27CbjavACY3mjCzHLzY8EfFgGswWr+WY7YqWp4SDOC09aPf0hihXukF5wbkz
7yDmWEd2lAOdFYCVKGyeXIcccxCiA8TBpp1NahJKoFLH9BG2O8Z4goc18Z4CW2CG
E+zaPCLuB3cvqfew66ZHKp4Arz3xkGILdhLM7J5ZRy91c1YvW1Z7Jz+2tqkfZ/Qw
4i8xBDtWFEXdKj/ETR1PSlOXHUBwW5XD6Mv5v78JJGIL5C9xWZSQBdc=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 295395094772233294070439931278413835671914
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-25 07:28:27 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-24 07:28:27 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'blog.puget.tech'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 848037130362924076936608041698492171377299264393318533620134978870165455850555696102758786017860974510365634452450544832126161315716128939898300227047916447583465510784620385103855018073732281689030806020011032012485295998288966982516912943883317846870776097897857998325714480615796525085514679480222136202784210719044099567330130857020686122835361675072659188663285273993642169326502787799777835793064466711053281774064709945975000747356226080617887618836379075335324894363127296191006016273285667833115004524473699483359451987740265010727051697350664709736874979227713262717985525083209123079227220091908574688647375488682414561481126602373821615376390624626467333376488038023245966607534722529959977744580063522935346537602492963571883858873290950404683525853547856581509588293110846181571719500887735817187908279858028263829367878219262370093137123351914936659448216020021274611856412118993775641636918987532535898797071496679170758985281372297628989571906600478448091053611927231844615294965863775645004362835191116301572328480447145016781843589853608920759051304609241863060289982599633156955980893925252188171968858113048677781530078199482788674198925147985704969701590202120055590658311783972127128850768734211418045361741973
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a38d71bff82967b6425b531f6c3b12e04b92ae27
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.puget.tech'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0075005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f3c2be79300000403004630440220087ea0314909d72ebd80f16194e092ee187704eb1662990690d03e1bdbb91a6a02205eb8cf4c0d09d730dc8b6e2c9c96066ffb3ecaa8aff80847b2e88b9fc21c76f500760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016f3c2be7ad0000040300473045022100d3936240b7b4aa88f6307f3c9359abe7903ee70df4c77f29eba9f8e6ca6a2c8e022036c5ca64bdcba0a0845da934f79df753415e1a64a9e8774b0d137b08f72b697b
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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