africo.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:fc:80:e3:ff:7c:34:71:a5:f9:1e:31:28:9c:04:1c:16:d6 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=africo.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:fc:80:e3:ff:7c:34:71:a5:f9:1e:31:28:9c:04:1c:16:d6Serial Number (int): 347259339276059561066104410184195835172566
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 1a:a6:ae:4d:98:7f:53:68:e9:1f:29:93:79:27:2b:db:25:a3:26:84
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ca:d1:cb:89:b8:e7:5b:ad:79:d8:3f:4d:71:eb:3c:cb:f1:9a:af:fe
Fingerprint (sha256): 66:8b:be:78:cc:b3:2d:50:7c:1b:7f:dc:bf:92:ab:3e:91:3f:aa:f1:63:fe:a7:34:cf:8a:c8:ad:c2:97:d0:da
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate africo.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for africo.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
africo.org
Other certificates including the domain name africo.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for africo.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSjCCBTKgAwIBAgISA/yA4/98NHGl+R4xKJwEHBbWMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjcyMDA5NTdaFw0x OTA4MjUyMDA5NTdaMBUxEzARBgNVBAMTCmFmcmljby5vcmcwggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQDNHPPWuJ8/SgV4ZQq1NT5HDz2J/S4rS3AFCiFN xMMf0DHcJtMy5lEIUor6CcQnqQYBKQMcRcTKJss7ESg4X2WZ/kdmfd9OywQGIugU llYguTv83Erjrv0M0+wY4AO6aasWil7Nm4ZcixjY77pCTUJ8Tmna68p5YHtlinJK exCVbt0Qj59jxJg6UcEOrbU/BbmkivlGzKRkqPZaWglMI1rtmYBi8WGRXHECO+z4 Z5XkOwQUBNz7u6O8PE7BrSQ/NEo2OSviWvMr0AZdeyUP31a9rhxlJtIACOS0UmuF pfOAIFMZ4yryyRzn+RC91pHqJkKluXXsZ05E2gpOcgE+3jIK7ZtWlZ85egPvaaHX sbZJWvvCNQRrYuA6JNDioWlKJPnuBZZ6TBkpXhWP9HwdeC+wROLkdK/asJLaTz7j hjLTu7dXyi6cZlTbCGaAe8PgsetwpS3+NbHJuLXR2dUfkYNivAXgsggqNbAqvOLi 2GZYfs1ukYOnAYFOAA/YWsvf8AcW6HYRU3H69h6aJOb/xXTapWEYxrQKNjrifJW8 e0y+2II8kK+WfRETVka+eh8Z2l/JKwG+2DfnoIM3YHFmxUQY/gC+1ZjJJfRjhDdf 2B5fOgQYj3dZDWWg+AFHUV1GzdM4BkkrjWVQbqMM1P3Tbw6dFxxavlpz8Cy7p6Zg e6yuuQIDAQABo4ICXTCCAlkwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQapq5NmH9T aOkfKZN5JyvbJaMmhDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMBUGA1UdEQQOMAyCCmFmcmljby5vcmcwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggECBgorBgEEAdZ5AgQCBIHzBIHwAO4AdQDi aUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWr7IOG7AAAEAwBGMEQC IC/EwgzESWoKhGoNaxhQdzClcF98wKn3/xG8TKus+bKpAiAFGQg09kVHJvCUIiXB 6AV5n+5BC5KX+Zd70PdWqqtYgwB1AGPy283oO8wszwtyhCdXazOkjWF3j711pjix x2hUS9iNAAABavsg4doAAAQDAEYwRAIgSGYBvru+wZDohSngRJU9InwMndrfgpck uTCEjpqd0toCIDFI3cfujdkW7lrLg5CuK1QhbW3v2thnI7vxrPDfki9YMA0GCSqG SIb3DQEBCwUAA4IBAQBljgCTEKQU+/d/oNhiI8WHEHsIRzeSf+43zt6OxpaKMI5J FPebHlmlfkJFZQRjSMU9NlQLlVO+K+g67hwOcXLDPT85ZiffDlb25vG8xsig9hOo fzoQusFrzQrERBrZHQgB2iEvzof6GGKmiayRhA7JmBGaONFN9z2IQJErg8Rb8Zpq FRt4Kk4bqStD5CYNDDTpOZaoYoMu/xKCpvvlZ1aWg60jWEv6pLeLFFafGvq4Qcub EyPO1HJ/nhEbHHjnW5zMb5mGFfwqnTWyUHal7oIDp5KtlZ39UN111P0jkBVUHPaY 27STPsuBjZWvTxuGy+q7NGCFtxwbICmQkEigOx3W -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzRzz1rifP0oFeGUKtTU+ Rw89if0uK0twBQohTcTDH9Ax3CbTMuZRCFKK+gnEJ6kGASkDHEXEyibLOxEoOF9l mf5HZn3fTssEBiLoFJZWILk7/NxK4679DNPsGOADummrFopezZuGXIsY2O+6Qk1C fE5p2uvKeWB7ZYpySnsQlW7dEI+fY8SYOlHBDq21PwW5pIr5RsykZKj2WloJTCNa 7ZmAYvFhkVxxAjvs+GeV5DsEFATc+7ujvDxOwa0kPzRKNjkr4lrzK9AGXXslD99W va4cZSbSAAjktFJrhaXzgCBTGeMq8skc5/kQvdaR6iZCpbl17GdORNoKTnIBPt4y Cu2bVpWfOXoD72mh17G2SVr7wjUEa2LgOiTQ4qFpSiT57gWWekwZKV4Vj/R8HXgv sETi5HSv2rCS2k8+44Yy07u3V8ounGZU2whmgHvD4LHrcKUt/jWxybi10dnVH5GD YrwF4LIIKjWwKrzi4thmWH7NbpGDpwGBTgAP2FrL3/AHFuh2EVNx+vYemiTm/8V0 2qVhGMa0CjY64nyVvHtMvtiCPJCvln0RE1ZGvnofGdpfySsBvtg356CDN2BxZsVE GP4AvtWYySX0Y4Q3X9geXzoEGI93WQ1loPgBR1FdRs3TOAZJK41lUG6jDNT9028O nRccWr5ac/Asu6emYHusrrkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 347259339276059561066104410184195835172566 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-27 20:09:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-25 20:09:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'africo.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 836788424080972383044690538086109913975319233890864146865831194535994573142738027402285829137127170965253719746807116188053142669975365619746949341663216244736059446183373491427779236123436069302549558782883146043769708370659289769939524092717784943788987520073251284583549230111235433012060726229625197808502971195208766491569361177214497050328104090235754727978762666554212670608593530594991591909579725916715788937151385082159100259495870182092927919985353305097847568552541916837976797734333765824950363431655156652398059745116270210777703214209896690631994025620928909602035752402347518081910428898100960805122144628710293853819353425534154700121909625560618358278884912422979316633255514808027583326673278770750257930550376586505507710723501352644761649378448009656348965922088440709268332195314981707899011962204901922220943716810988583331955114859256450279900113961521011819060919919909710974853706937861525061469570701833857161023118122990939333334228531532370473584635346029834680014972219329576908850337259775510895623606778060051241768620065278218593396393721154841370731278621014021697799306968931156561230009241036940416136792300074148085170179484117835717562347558777386745011627688813369337519642595219870178027024057 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1aa6ae4d987f5368e91f299379272bdb25a32684 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'africo.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016afb20e1bb000004030046304402202fc4c20cc4496a0a846a0d6b18507730a5705f7cc0a9f7ff11bc4cabacf9b2a9022005190834f6454726f0942225c1e805799fee410b9297f9977bd0f756aaab588300750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016afb20e1da00000403004630440220486601bebbbec190e88529e044953d227c0c9ddadf829724b930848e9a9dd2da02203148ddc7ee8dd916ee5acb8390ae2b54216d6defdad86723bbf1acf0df922f58 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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