sternatia.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:64:cb:f8:5e:6b:e3:b4:56:c0:c4:95:6d:6e:29:57:5a:9e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=sternatia.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:64:cb:f8:5e:6b:e3:b4:56:c0:c4:95:6d:6e:29:57:5a:9eSerial Number (int): 295636217375234228091500245321968753531550
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3e:33:85:af:cf:7c:c0:79:44:6f:e7:d0:f9:0c:14:77:2a:41:57:b5
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 96:81:36:fc:0a:30:a1:1b:ba:63:26:4b:79:5f:5f:7b:84:e3:6d:cf
Fingerprint (sha256): 67:ed:f4:b8:86:f1:b2:06:20:d5:12:2e:33:06:53:85:ec:ff:3b:bf:18:a6:1a:f6:fc:db:94:6c:1a:ce:2e:1b
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate sternatia.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sternatia.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sternatia.org
Other certificates including the domain name sternatia.org
(limited to 100 certificates)
www.sternatia.org
sternatia.org
sternatia.org
www.sternatia.org
www.sternatia.org
stimatchmaker.dating
sternatia.org
sternatia.org
sternatia.org
sternatia.org
www.sternatia.org
www.sternatia.org
greennewdeal.world
www.sternatia.org
www.sternatia.org
chicagobirthlaw.org
torricella.org
tiggiano.org
hookah.ae
sternatia.org
sternatia.org
www.sternatia.org
www.sternatia.org
stimatchmaker.dating
sternatia.org
sternatia.org
sternatia.org
sternatia.org
www.sternatia.org
www.sternatia.org
greennewdeal.world
www.sternatia.org
www.sternatia.org
chicagobirthlaw.org
torricella.org
tiggiano.org
hookah.ae
Certificate
The complete raw certificate details for sternatia.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISA2TL+F5r47RWwMSVbW4pV1qeMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MjkyMjU2MDhaFw0x OTEyMjgyMjU2MDhaMBgxFjAUBgNVBAMTDXN0ZXJuYXRpYS5vcmcwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQCbu2M6me3Cm9pPL8hVXdeUfR2KIChcF7uP +tbns0WODtwAX57BOoYaAwGrkN6lK2O8Luk1kh0WQ2EUi4tp/717tTf22ygvTRkH WRawUWGuB7M3gQpAKJkWfhR1v+MARFeCNYphZITYmQDYYSKukkDulmdAXf7fG7qO 0wP3f/gGeIox+PnRF8tVb7UuokpAV4CWCO2nkx/ZtyUATNxJ+IdMVzdvcIKYRr51 ay/dp/RtXdM1bWRXAcQg1UwrP/3YgYyi42a60hWN7/ZEFLRWAlPcVJaYwacDWXz3 cX5YfsHmkrRTQDOPv9h8vRjS6Aiv+HlfLKlK3+6NSg2hRA49yKdxVDZqajuazQT5 2kbL4lfQ4VMcTarDf5nofFoQqWjnC5OsVflAkJNi1vU3ul+ZvSyzwKRW4H+z4YWR BcpWvFaMNu/3yzIehrCxddG8E5YPu9Rd3tFWJWVQOmtZCjdzjN8U1T3rnk8M2Ymh 9v2M+4KLf6b1P0B+M6NbFm3eJ/DRGaedCyqOIpBEnH3s4dJpknj7NlZfvNPvXgrp pmMIdM4SixTwFvF/ZkzdxpP9qEJoPb2yau/nfbMcfTsx7OFBpdtE0geZ9m1CZdkJ 9i5lsC5JTNJy/lqQme8ErhWPiP5WGwiilewtlibeQ2J/o9/7pO9pTdM95q7qp6K2 tMab3eQrmwIDAQABo4ICYTCCAl0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ+M4Wv z3zAeURv59D5DBR3KkFXtTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXN0ZXJuYXRpYS5vcmcwTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHx AO8AdgB0ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAW1/c/N8AAAE AwBHMEUCIHqY7gbgnGuZlRnsJcjxK3Qm/t+fqerv2i5Ca/8rR+gMAiEAvut7BBFE lS/a9yfYUEOp/RKIfs9dztZ16LEMl8DDgEEAdQBj8tvN6DvMLM8LcoQnV2szpI1h d4+9daY4scdoVEvYjQAAAW1/c/NsAAAEAwBGMEQCIGCeZ+WmUANVfUbUvqmyMLQe NssahJ5b9YpMVhgtdM47AiBz+TPfAS9GyjcwGd6/9Z0Sfvr3QGmxliuBVgMQHq0J wzANBgkqhkiG9w0BAQsFAAOCAQEAQ96X1R3DGaoQAI5mBn21J4fJti2QrGM4venF W82cM0DJr7gFgcAc/2qsfKOR/TE7NUpBGu/enEDXQKquad/DDB3n4kTX79v1JwkG MsNfN0zVVkNqevrXQDXMsDyz7UZIALvsR2U+8Ntop0a3ogpmc2Hh9KUz+0N4AC+V 5HeWPqwASyWDY+IUowoCbHYOj3r+/NUyT+eroPtV9YjzghxRcD9XRESfDrFkKLSU 4gZCGIZPX7xRUw5kAX7Nd0nUEJKjYjD3U22awRqFm1DQDv4PQGEVgWEogtbyh1VU LO6r+/PWep9Dn1dP//z5kpmYBBg2M+FRqgfccU9+uxSSwHMUuw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAm7tjOpntwpvaTy/IVV3X lH0diiAoXBe7j/rW57NFjg7cAF+ewTqGGgMBq5DepStjvC7pNZIdFkNhFIuLaf+9 e7U39tsoL00ZB1kWsFFhrgezN4EKQCiZFn4Udb/jAERXgjWKYWSE2JkA2GEirpJA 7pZnQF3+3xu6jtMD93/4BniKMfj50RfLVW+1LqJKQFeAlgjtp5Mf2bclAEzcSfiH TFc3b3CCmEa+dWsv3af0bV3TNW1kVwHEINVMKz/92IGMouNmutIVje/2RBS0VgJT 3FSWmMGnA1l893F+WH7B5pK0U0Azj7/YfL0Y0ugIr/h5XyypSt/ujUoNoUQOPcin cVQ2amo7ms0E+dpGy+JX0OFTHE2qw3+Z6HxaEKlo5wuTrFX5QJCTYtb1N7pfmb0s s8CkVuB/s+GFkQXKVrxWjDbv98syHoawsXXRvBOWD7vUXd7RViVlUDprWQo3c4zf FNU9655PDNmJofb9jPuCi3+m9T9AfjOjWxZt3ifw0RmnnQsqjiKQRJx97OHSaZJ4 +zZWX7zT714K6aZjCHTOEosU8Bbxf2ZM3caT/ahCaD29smrv532zHH07MezhQaXb RNIHmfZtQmXZCfYuZbAuSUzScv5akJnvBK4Vj4j+VhsIopXsLZYm3kNif6Pf+6Tv aU3TPeau6qeitrTGm93kK5sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 295636217375234228091500245321968753531550 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-29 22:56:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-28 22:56:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sternatia.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 635331060088155743358382695532066733125537333335282564142768007849191260867982685673472490053252462126130941428511879492592676348843186227237254035393117416334913239426350600751450766377698163370628011624458491805988499384551267819622541406521464367507409103255572573435283441108562072421327837935959865409623210270698699466838454017139022486007261015197118496705141367232030032166865481362706984901397357445396678669225588217275857680802792482721137335159130889960150553108194642906460681339518224975660095373570259957067671016587851192083423341697753009539617970442065007130329597050285404127283472315681712770847533021462653878835791672105867020677582087368395880168526888964824254626539164633250125171177189138578344666853685262427328514177663006208101726611450042700428122226490711288574477162594728499713267243552056266840039389504003910023710073293069868984964311746442148732951531394703259964829894243026691078977798269697860969274785731834505216511710767902330068724657169279869982125063850277744555720262568175333758817763945644802906874330970398454479416169714625629307310845143279358895034211163112586852534279064738428111250283050164386393488190790087192684575507542460458404468531043411734374401273533577295798384995227 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3e3385afcf7cc079446fe7d0f90c14772a4157b5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sternatia.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016d7f73f37c000004030047304502207a98ee06e09c6b999519ec25c8f12b7426fedf9fa9eaefda2e426bff2b47e80c022100beeb7b041144952fdaf727d85043a9fd12887ecf5dced675e8b10c97c0c3804100750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d7f73f36c00000403004630440220609e67e5a65003557d46d4bea9b230b41e36cb1a849e5bf58a4c56182d74ce3b022073f933df012f46ca373019debff59d127efaf74069b1962b815603101ead09c3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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