sfiducia.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:40:75:d8:ba:53:89:67:61:a5:25:21:44:7c:30:5a:bf:4f was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=sfiducia.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:40:75:d8:ba:53:89:67:61:a5:25:21:44:7c:30:5a:bf:4fSerial Number (int): 283271574268995728476140701957635715022671
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b4:61:7d:e0:05:d4:0c:5e:32:66:0e:1b:53:4e:07:94:16:78:7f:d2
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 23:87:2f:59:f8:f7:e6:c6:56:64:07:74:49:a5:5d:2b:95:af:3b:cb
Fingerprint (sha256): 6a:88:3a:be:46:d1:43:db:3e:b4:f9:5c:d9:00:81:6c:de:54:ea:05:d4:50:0b:c3:c1:95:f7:ec:d6:4c:98:90
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate sfiducia.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sfiducia.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sfiducia.com
Other certificates including the domain name sfiducia.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for sfiducia.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUDCCBTigAwIBAgISA0B12LpTiWdhpSUhRHwwWr9PMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MTIxMTQ5MDdaFw0x OTEwMTAxMTQ5MDdaMBcxFTATBgNVBAMTDHNmaWR1Y2lhLmNvbTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBALYz6zmSv9USibRZBYQiwRmnhi1rgc98IinZ Tfti1gBhvQ53NPSLyqVFqFnlf6ZdJJXMg/xhZ2EzVG9jwL9o4KM1yKpXwP63fFRK Yg7INZvfIpoFdc7QRcUkJwP+gsK9lBF0VR5BB+lQaqei7dPM629zC3iwNREskdhN nKQDjxvLrnK9PMXZtk8xnxWQABK86xLQqKvI3ZNvMjWTL8NyxbZCpFyTTcjgapgI 0JZlcply7CU9YAoucdZkp4s4Vfq24F7B9CxX/Y0mhUrz16Ne4qJ17Qtmde0IzUXZ B2vadmCfg9xwf7iWn8C3KNa13i88VspVUEo5NIBsWh52ghSMq0lL/Awj9fhcQ3Tc qA9n1/ozOx+5MwGm9Uu10KxVqDOYC1gC8nkX7LXJd+Eh3hHkDmEYLzwxWnTFzBVv E0r037DFNZhdjjAlb0A4pjZjk4Aps3Hbhc8uJ2e+p8X4LkrMfnvmL1+H1SnbxNIc CkqWKHNUJM8KpQrUJuRraXsh0Tud4Cpn+5E71tN968z00U7k4Vy7oTLXX4ebE5EM 6dh/YUkOOHegxZDCtL4Y60qjS8H8F+brG4bl9FTpjvM/CO/aUpRBSl+H/D171bp/ Xr/X3HxCoOxO4RMvca1GRpyyoARt/P4DqnLSoFEZQj7LFd8bR2dQVwq6J8qAHtVH FabdnkixAgMBAAGjggJhMIICXTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFLRhfeAF 1AxeMmYOG1NOB5QWeH/SMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMc2ZpZHVjaWEuY29tMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHYA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4AAAFr5jri9wAABAMA RzBFAiAnXGq+uFxQVtE2mScZ/850EyEwS8PbABe3htaNjVT7kgIhAOh/bDXYWnMS q7dBZw8FVWUvUrKerNo9HiRUcRMThsx3AHYAY/Lbzeg7zCzPC3KEJ1drM6SNYXeP vXWmOLHHaFRL2I0AAAFr5jriwQAABAMARzBFAiARqnooZ/QOL6rSoIzC/RtmjSVl fb+Uv5HGQcuwiq98QgIhAKLrvurADUSPjf17e5jTLpH6azJC2mq5M9FQC8L7mn6N MA0GCSqGSIb3DQEBCwUAA4IBAQAnj6Intin5tTopZDW3itV5z8vzU8pgdC/O3Jcm KgJ/J9DmJZydlm7VGCYo+vka4/+yaInMQB6Xq7pN36KThrN6DS51PGAKhGsSKFW6 lPDsX1pE/czrjgASi7dvUirCEz5XGK8TZ9MuwmP1ifkPrV6htAz3K7NcUTvWZiAx mojRhdxazvO3C6vqGyGT8G2doq7N4+pQCjrkYTmVRzRL0MSa3y2J8eKMlR/aSmmZ F4e0tGcBxoG4hNuSq6F3ocfw5UaBN7qjDlu2WnBTPgSeDAh0aNRaWw20oMRfOHPj b0agpBtnL695ga4WFVnnRsxAjaPTzX4BZPhuM+3ZCwfCB7Lc -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtjPrOZK/1RKJtFkFhCLB GaeGLWuBz3wiKdlN+2LWAGG9Dnc09IvKpUWoWeV/pl0klcyD/GFnYTNUb2PAv2jg ozXIqlfA/rd8VEpiDsg1m98imgV1ztBFxSQnA/6Cwr2UEXRVHkEH6VBqp6Lt08zr b3MLeLA1ESyR2E2cpAOPG8uucr08xdm2TzGfFZAAErzrEtCoq8jdk28yNZMvw3LF tkKkXJNNyOBqmAjQlmVymXLsJT1gCi5x1mSnizhV+rbgXsH0LFf9jSaFSvPXo17i onXtC2Z17QjNRdkHa9p2YJ+D3HB/uJafwLco1rXeLzxWylVQSjk0gGxaHnaCFIyr SUv8DCP1+FxDdNyoD2fX+jM7H7kzAab1S7XQrFWoM5gLWALyeRfstcl34SHeEeQO YRgvPDFadMXMFW8TSvTfsMU1mF2OMCVvQDimNmOTgCmzcduFzy4nZ76nxfguSsx+ e+YvX4fVKdvE0hwKSpYoc1QkzwqlCtQm5GtpeyHRO53gKmf7kTvW033rzPTRTuTh XLuhMtdfh5sTkQzp2H9hSQ44d6DFkMK0vhjrSqNLwfwX5usbhuX0VOmO8z8I79pS lEFKX4f8PXvVun9ev9fcfEKg7E7hEy9xrUZGnLKgBG38/gOqctKgURlCPssV3xtH Z1BXCronyoAe1UcVpt2eSLECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 283271574268995728476140701957635715022671 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-12 11:49:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-10 11:49:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sfiducia.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 743322604821824893108908438567144720393626000422434669358273599024979595863003695069166915590973477448100634195526628957639644776059126658512960502826457881947986794006397528785148916710695156929653368562340488489095739740204965462143771945386284104498252309292260074453228501049214270675521579663115660197451764879134911005372584710067703704086092700943547411797783357986197047149992365947913912354315552581250930846696904792904288808211441844922935202452769350392666216313935129916634515517746808364591108050478773920229914222194691898609441641660011822553476552762349721124269099882556440954040552370457256969371875124627420581967363066766002579572151008004467706619680574089616040788810644771234493215599088254510003659528627156574118850208159476386788185742690825925398110245213563356241250389275880960635120255625311615895023389848296994110368436894468848544897328551394120301780146802940633706331506791120521244841063370972593061143006352293709883914518951963850160127759596024922606758203995405642796929843625912915238181819212073730053351743527558955932671359794554020785456890712775390328681159068136728123938817546676889504466040499188558056928515797851475173251878165055688825488825848587293819781543061434471801216190641 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b4617de005d40c5e32660e1b534e079416787fd2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfiducia.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016be63ae2f700000403004730450220275c6abeb85c5056d136992719ffce741321304bc3db0017b786d68d8d54fb92022100e87f6c35d85a7312abb741670f0555652f52b29eacda3d1e245471131386cc7700760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016be63ae2c10000040300473045022011aa7a2867f40e2faad2a08cc2fd1b668d25657dbf94bf91c641cbb08aaf7c42022100a2ebbeeac00d448f8dfd7b7b98d32e91fa6b3242da6ab933d1500bc2fb9a7e8d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00278fa227b629f9b53a296435b78ad579cfcbf353ca60742fcedc97262a027f27d0e6259c9d966ed5182628faf91ae3ffb26889cc401e97abba4ddfa29386b37a0d2e753c600a846b122855ba94f0ec5f5a44fdcceb8e00128bb76f522ac2133e5718af1367d32ec263f589f90fad5ea1b40cf72bb35c513bd66620319a88d185dc5acef3b70babea1b2193f06d9da2aecde3ea500a3ae461399547344bd0c49adf2d89f1e28c951fda4a69991787b4b46701c681b884db92aba177a1c7f0e5468137baa30e5bb65a70533e049e0c087468d45a5b0db4a0c45f3873e36f46a0a41b672faf7981ae161559e746cc408da3d3cd7e0164f86e33edd90b07c207b2dc