app.cafsa.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:38:c0:6d:0a:ae:9c:68:6b:da:2d:51:54:b1:f0:9f:34:f2 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=app.cafsa.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:38:c0:6d:0a:ae:9c:68:6b:da:2d:51:54:b1:f0:9f:34:f2
Serial Number (int): 280648448295059780250763655395803876242674
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 7a:57:cb:a2:16:ea:c2:8d:87:c3:fa:96:c9:cd:f0:ad:37:86:93:99
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): d5:19:50:c8:94:c1:e4:22:d2:47:12:33:88:e2:eb:78:35:66:30:87
Fingerprint (sha256): 6b:75:47:69:fb:04:51:3e:33:a1:89:bb:7e:e4:07:ce:db:4d:8d:49:dc:ff:73:d9:9b:1a:e9:ef:96:cc:ae:bb

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate app.cafsa.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for app.cafsa.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

app.cafsa.org

Other certificates including the domain name cafsa.org

(limited to 100 certificates)
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
cafsa.org.knechted.digital
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
cafsa.org
app.cafsa.org
app.cafsa.org
cafsa.org
app.cafsa.org
cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org

Certificate

The complete raw certificate details for app.cafsa.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 280648448295059780250763655395803876242674
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-17 11:53:17 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-17 11:53:17 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'app.cafsa.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 754799571117589596694559484587788701883851526837917587424946246735203758750884706305385309129590291183327538761040770253948435423302430091994776933576627630896346187578247547424675955999646716011968247599630894137519427197974885759271136430993336280102588925352750333964020104444474751615228403456861756036788707889887805915237942995523795727591558862076580430667709922987668237200931198130592185001520741694056020266324679830088639881269327994393987865933733133839133126765967057885901126218042785694318608037669506394855472563145569491964485345781189748568446910270266345347680675226199128470336760316632974474090853186516175425203942723321998634351842052868680211764674640274709214839518726617947383174101340607921005428887537068527027608511028388489947315749390064842378584996272745126797282180610484285814799381442707651993119889295671431770708135362209274060539318649785675290671632085750001805165183586703617254710326158868650422559101593467968034597940777799439970741169189009765644479435375639885551625484179458359029469474117201595775497008415423363781514908181132551011251434360187422344730121892140472378258988053170448078156108378163663787382113480388411419192548391073178039519097870858420886776958005537965806207814943
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							7a57cba216eac28d87c3fa96c9cdf0ad37869399
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'app.cafsa.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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