sternatia.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:51:89:0e:55:3b:f3:ee:29:0d:de:b8:a8:f8:fc:86:00:ca was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=sternatia.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:51:89:0e:55:3b:f3:ee:29:0d:de:b8:a8:f8:fc:86:00:caSerial Number (int): 289081908172210079116917782024430536753354
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3e:16:f3:8f:93:0e:29:87:72:2a:0d:21:3c:d9:40:0a:81:24:99:d9
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 11:08:d7:8b:41:1b:6d:59:fa:b1:ff:dc:7e:84:92:bd:68:dc:41:fd
Fingerprint (sha256): 6b:10:7e:45:44:a6:10:eb:21:0e:a4:e9:25:41:4a:91:3a:34:b9:85:6f:e6:fd:59:6d:77:c0:2c:16:27:e5:98
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate sternatia.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sternatia.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sternatia.org
Other certificates including the domain name sternatia.org
(limited to 100 certificates)
www.sternatia.org
sternatia.org
sternatia.org
www.sternatia.org
www.sternatia.org
stimatchmaker.dating
sternatia.org
sternatia.org
sternatia.org
sternatia.org
www.sternatia.org
www.sternatia.org
greennewdeal.world
www.sternatia.org
www.sternatia.org
chicagobirthlaw.org
torricella.org
tiggiano.org
hookah.ae
sternatia.org
sternatia.org
www.sternatia.org
www.sternatia.org
stimatchmaker.dating
sternatia.org
sternatia.org
sternatia.org
sternatia.org
www.sternatia.org
www.sternatia.org
greennewdeal.world
www.sternatia.org
www.sternatia.org
chicagobirthlaw.org
torricella.org
tiggiano.org
hookah.ae
Certificate
The complete raw certificate details for sternatia.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgISA1GJDlU78+4pDd64qPj8hgDKMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjgwOTQ3NTBaFw0x OTA4MjYwOTQ3NTBaMBgxFjAUBgNVBAMTDXN0ZXJuYXRpYS5vcmcwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDq7/GmSegNjXim6P091MTK745rsDX0Kgfz GbMIVM+oSXX0d5cBRCvin31igFJRghhbndTalBo5KbqxhwgoVh3iBvztHlfyFHR0 K1jaxsfEF+Xm09cN98UNJgehbHZ5kstoPvIz7N5irrw22xSKxEVhhls+RZ5rZh4J d19eJuvx0sF/G2NGAJxvBoWFImi106h9OPsqDfgg3Vwxsk/8JhAadHf2+Fv0ZzZD H6549o34L4pvw4T3WGbK75u9SVW64dfZjIaNY6TSGe4LvTaiv/4boadThy5bNn5R D2Tk2gv5T2rnQEsBqx7IrNmeKozEIUP2KuqXo0O4KOSR+KnWPhgt9acPWKB/ck/8 9R1SoEC1maPLHq3KfrLAVHIDLOfbR9Ialkw2LT0IbbEIrRvMSXn7RMYGB5FwBmDN KquYPU/GvgOOssNhgNWg6Pc7GBDPV0LwJYgeK5JRVXOhTt2GG3E2P/VEsOanYgB8 iza3rC8J95ebh1UpqdVHfap1i2fPxyUdHsRHaBm6W+QGkq+HIiDl5Sh2hMaduB9q p9QJT3l4wC1hPkXCDDcckOytGlGvSKQs+Dw9iu3+zFNxCCwfvtRxVfWRN8Qhe0+/ NHGrW57jsyxnSERnW/ThOfz7LQVA+NCf1AEsYTJaJIpwGa3+anxbuLSSKBLvAgtG 71bRsK/7cwIDAQABo4ICYjCCAl4wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ+FvOP kw4ph3IqDSE82UAKgSSZ2TAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXN0ZXJuYXRpYS5vcmcwTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHy APAAdQDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWr+Da67AAAE AwBGMEQCIFbq0prkZjhvXNj8Duj9O5pms1sOy8aITu2nmy1NxE8/AiAZ7N9QlFZP LgE6llGCma7fEXD6qxUeZrFFh/NkpSSzNAB3ACk8UZZUyDlluqpQ/FgH1Ldvv1h6 KXLcpMMM9OVFR/R4AAABav4NrrMAAAQDAEgwRgIhAOxgAP+pzlxATfQUvwYfnZP/ FRnzJKVq78vs6VjpCxpKAiEAtSqzRi7PQF2NVLvaORziedAIcmKuMoX3jwE2h/dl Pe4wDQYJKoZIhvcNAQELBQADggEBACy5SuNLbRL6ugLF+DSQAhFt+QYsBDKibUlr SpquyOJ1xjEpZY0gllWt3jNF+bLKaRyQ5JVYj6H5XbS9I6Yz3Q49kB4+XFGxICG5 ljQhkEOcsHdgfwcHan2G4GlStsFro5aiGEGLCOaXmw4gV7Im64Xn3Iq4YVCg82iB iEkg/wwaDXzmPKoflTlu7VNdFMkMeaDX6sUBVvINkaOtGjWttx2omdYtSO4mbpzj OIVhK07tr1FievgicY+EMoXXU90o6MmhK/HISEbqmKcXaqnBCavurpVtZ234K3/+ 5/POZQ1nNHbjv/nHc9B0ju+dq3cOV/MCZlEw7HJM5bNb+/l1sNY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6u/xpknoDY14puj9PdTE yu+Oa7A19CoH8xmzCFTPqEl19HeXAUQr4p99YoBSUYIYW53U2pQaOSm6sYcIKFYd 4gb87R5X8hR0dCtY2sbHxBfl5tPXDffFDSYHoWx2eZLLaD7yM+zeYq68NtsUisRF YYZbPkWea2YeCXdfXibr8dLBfxtjRgCcbwaFhSJotdOofTj7Kg34IN1cMbJP/CYQ GnR39vhb9Gc2Qx+uePaN+C+Kb8OE91hmyu+bvUlVuuHX2YyGjWOk0hnuC702or/+ G6GnU4cuWzZ+UQ9k5NoL+U9q50BLAaseyKzZniqMxCFD9irql6NDuCjkkfip1j4Y LfWnD1igf3JP/PUdUqBAtZmjyx6tyn6ywFRyAyzn20fSGpZMNi09CG2xCK0bzEl5 +0TGBgeRcAZgzSqrmD1Pxr4DjrLDYYDVoOj3OxgQz1dC8CWIHiuSUVVzoU7dhhtx Nj/1RLDmp2IAfIs2t6wvCfeXm4dVKanVR32qdYtnz8clHR7ER2gZulvkBpKvhyIg 5eUodoTGnbgfaqfUCU95eMAtYT5Fwgw3HJDsrRpRr0ikLPg8PYrt/sxTcQgsH77U cVX1kTfEIXtPvzRxq1ue47MsZ0hEZ1v04Tn8+y0FQPjQn9QBLGEyWiSKcBmt/mp8 W7i0kigS7wILRu9W0bCv+3MCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 289081908172210079116917782024430536753354 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-28 09:47:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-26 09:47:50 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sternatia.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 958460484909767654509073170872231692665793643438998476281170699989906656183432447738399931445709247170022417169443185674292070177042975065212448192305906373043535340303427473703973605627788988059428025664100448148932529356922301732272034709116550517263750638971196902737594775227490205273590758010317488979750364480995611434880202258300169765917723771118682204109554458075349512786848903599469664133361148481985205130640387194698295306592010628151228173064012745974448194140300403599673502182942354150299292724663064208322421787243508385514831728041911414740100174471164600131736947845627226948373940035653640965604417485341021467372783194507616388507612966115135592747956362275787089390546795228859808812455544361533325609514458246360779347690032926337065850313447914876539131273527199364261030374575002538234757656157453649579702289475767607394658772396328991562311122736939589284936645808233644434426707064254906431605341948256239816662344490072940098902006156238045066590886033784205941302498859797383128299718649433511272442499489050034105084623209758158597442226966074984966084771688544083322247476224161731368382675239416540958663516121072026931274987045662131503919856762596350201478420930965879387286478463134954881526266739 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3e16f38f930e2987722a0d213cd9400a812499d9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sternatia.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016afe0daebb0000040300463044022056ead29ae466386f5cd8fc0ee8fd3b9a66b35b0ecbc6884eeda79b2d4dc44f3f022019ecdf5094564f2e013a96518299aedf1170faab151e66b14587f364a524b334007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016afe0daeb30000040300483046022100ec6000ffa9ce5c404df414bf061f9d93ff1519f324a56aefcbece958e90b1a4a022100b52ab3462ecf405d8d54bbda391ce279d0087262ae3285f78f013687f7653dee . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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