www.californiai.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:16:e4:ba:f9:a2:17:cd:5e:ea:7b:d2:b3:d0:4d:c1:2d:09 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.californiai.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:16:e4:ba:f9:a2:17:cd:5e:ea:7b:d2:b3:d0:4d:c1:2d:09Serial Number (int): 356239390612718601149474394138785576201481
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 75:94:82:f0:fa:1d:a0:9a:7e:8f:01:17:15:e2:ee:7d:4a:0c:91:29
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 76:fb:fe:f6:60:93:ad:98:54:a6:0d:c7:75:51:c0:e4:98:d1:3f:cc
Fingerprint (sha256): 6e:36:29:90:e5:3d:4f:87:ec:19:aa:0b:74:15:60:cd:9b:33:e1:0a:85:b6:42:27:09:2a:1d:c2:a3:f2:aa:cd
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.californiai.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.californiai.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.californiai.com
Other certificates including the domain name californiai.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.californiai.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXzCCBUegAwIBAgISBBbkuvmiF81e6nvSs9BNwS0JMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTMwNDI0MzlaFw0y MDAxMTEwNDI0MzlaMB4xHDAaBgNVBAMTE3d3dy5jYWxpZm9ybmlhaS5jb20wggIi MA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC1U8j4QxhCe4a3ywRu8Ei5RJZs 6M5blAakjWTihvvIwoDlQNT9g3w1dEqCctSm56F+xTnWT3QsKqufDNwxHu6ezMLr kfn+nx/mSXkpflxdEwpRFh3k8oXCdqCL6Z0qbETcDsrOzuJCNT4O+2nbWBH1uEBN nR5/itXCCj5EIp0w7rHLlDX4NKrrNYnPO1k3Dc+T1+3KBvY01Zris2kHCUjooBjO cnlgh6/NEr7GHnnyfJI8ylJ0DbZ5l3QIGwpiSlT9ybpChr8iGU5kyDlUyn2tbKPn Dv3Lmb69EA3aGsEj0jHE9uHfeWFi6ZKeQV+Va3DjpUOrOw/G446QQhzWS+JKEwxE 7s2DROa0omQgytM2k/w9Mc5LGJiQGcDZcb3oijrP1oNUlN/xXlU40vz/y7iSDQEu vFscYagXpW0VbVt8DPUkVid/PzgcAiWrYS2uFmYtfOidHg1raO1coemer7qXst9n TELAvr0cO+mhMmmsY0OZINxl/s0MTSL2NEQ/YfqJLIcnqtKSYsBaiYOc03TZIl7B PJzSBMPDE8DT6PHw9Nxllm+F91PTbvg3UaXkwrGdl2TYXV2s9frzmoIAzE3igcv2 zevb5o7N+vcmX0GRPOoVBfnfPpQudwuKJtOhktosG4UdjLYbaXtYoNOpxax+aGTj 4AukHG0khUet0MqCLwIDAQABo4ICaTCCAmUwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBR1lILw+h2gmn6PARcV4u59SgyRKTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObem RWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3Nw LmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0 LmludC14My5sZXRzZW5jcnlwdC5vcmcvMB4GA1UdEQQXMBWCE3d3dy5jYWxpZm9y bmlhaS5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAm BggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEE AdZ5AgQCBIH2BIHzAPEAdgDwlaRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6y cwAAAW3Dk2V2AAAEAwBHMEUCIBZEeEyNtDYwAhCfj0F9VXNA76xx2/v63fkS+PiZ opdtAiEAov2gpkiHIq2JMMEl6IVND9rfPJTU/1LVKRgE3EeqXBgAdwCyHgXMi6LN iiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAW3Dk2VqAAAEAwBIMEYCIQCBrSIR JG8HK7TIV7+Rxj6XjlrxXPzFgu0pvLYGaDskDgIhAKv6Y8BSde/7KfOZ8itZWaLQ mdVurl2lxPdp9GUZPo/JMA0GCSqGSIb3DQEBCwUAA4IBAQCWrpbwiP2PtTEew333 E7raK9U/3NmBCTgEYBcj7rNqaBP7MazNerPXb7Kza0/1Ut5kmvXIn/1S0stTzO9g N/cAxJwPSWFKk91v2FZnC8jbfSNQqiTKfn946htFY8imbMeamsmsf3Z8HJ9ywHiG L2y1hVA3YZUYT6ycEjtxBOqOpMK4ClVAoG6kw5ooL35I7FO6PqguI80HwGjcirxD xYetg6PEn9xKZL+rvZ7TGsBLZ/Sdfxs+8w4Ol1h3utIYkUZMG58QuUtgidbXM2bM xU/RgB9+3c8WchvMQYuShYhxtgf6rLMrJ5PxZa+3VyoYqaBSQUyHzs8lji6KUg/v lT84 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtVPI+EMYQnuGt8sEbvBI uUSWbOjOW5QGpI1k4ob7yMKA5UDU/YN8NXRKgnLUpuehfsU51k90LCqrnwzcMR7u nszC65H5/p8f5kl5KX5cXRMKURYd5PKFwnagi+mdKmxE3A7Kzs7iQjU+Dvtp21gR 9bhATZ0ef4rVwgo+RCKdMO6xy5Q1+DSq6zWJzztZNw3Pk9ftygb2NNWa4rNpBwlI 6KAYznJ5YIevzRK+xh558nySPMpSdA22eZd0CBsKYkpU/cm6Qoa/IhlOZMg5VMp9 rWyj5w79y5m+vRAN2hrBI9IxxPbh33lhYumSnkFflWtw46VDqzsPxuOOkEIc1kvi ShMMRO7Ng0TmtKJkIMrTNpP8PTHOSxiYkBnA2XG96Io6z9aDVJTf8V5VONL8/8u4 kg0BLrxbHGGoF6VtFW1bfAz1JFYnfz84HAIlq2EtrhZmLXzonR4Na2jtXKHpnq+6 l7LfZ0xCwL69HDvpoTJprGNDmSDcZf7NDE0i9jREP2H6iSyHJ6rSkmLAWomDnNN0 2SJewTyc0gTDwxPA0+jx8PTcZZZvhfdT0274N1Gl5MKxnZdk2F1drPX685qCAMxN 4oHL9s3r2+aOzfr3Jl9BkTzqFQX53z6ULncLiibToZLaLBuFHYy2G2l7WKDTqcWs fmhk4+ALpBxtJIVHrdDKgi8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 356239390612718601149474394138785576201481 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-13 04:24:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-11 04:24:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.californiai.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 739750783866311629489099397062944051049442340415241050716538675731256430218176105234232885597843613186029423562661745776066612078115129707419432860267710014894318018782543978211751976393560327694955667575251489888092514454929224298643514500113577723804031122220251476149030884371145007140520185150794508376527556786559334673708091726402865900304679176723064865803663727495093439348852158246533831181113009390518360909481975234258393118465598685319113853806308796755785975540743247876120720425946687330271253825382551189366248739027983737782425954234570834847615487687849106637392595735544511575063339545075448706199364289611920746236239470648822854992462750017074373318459240593314257401019916851703104020142819514037436878457963578338412203319908356245491273132065915037561887815933951152834287849410039261603724224840448884454276834772152166669012557959707305737427771736060411176404863554595256156398738309458379274775421687615283453352881993121207769653425481672134229689728561277195612071374534823201948291648261266549582136114265878903607063129115533294169107245242392465464568686712454848525050488978165434362813106162735421959891331211488751650701648809103712994078615828402353215316892767526727112410971650041795814057738799 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 759482f0fa1da09a7e8f011715e2ee7d4a0c9129 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.californiai.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016dc3936576000004030047304502201644784c8db4363002109f8f417d557340efac71dbfbfaddf912f8f899a2976d022100a2fda0a6488722ad8930c125e8854d0fdadf3c94d4ff52d5291804dc47aa5c18007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016dc393656a000004030048304602210081ad2211246f072bb4c857bf91c63e978e5af15cfcc582ed29bcb606683b240e022100abfa63c05275effb29f399f22b5959a2d099d56eae5da5c4f769f465193e8fc9 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0096ae96f088fd8fb5311ec37df713bada2bd53fdcd981093804601723eeb36a6813fb31accd7ab3d76fb2b36b4ff552de649af5c89ffd52d2cb53ccef6037f700c49c0f49614a93dd6fd856670bc8db7d2350aa24ca7e7f78ea1b4563c8a66cc79a9ac9ac7f767c1c9f72c078862f6cb58550376195184fac9c123b7104ea8ea4c2b80a5540a06ea4c39a282f7e48ec53ba3ea82e23cd07c068dc8abc43c587ad83a3c49fdc4a64bfabbd9ed31ac04b67f49d7f1b3ef30e0e975877bad21891464c1b9f10b94b6089d6d73366ccc54fd1801f7eddcf16721bcc418b92858871b607faacb32b2793f165afb7572a18a9a052414c87cecf258e2e8a520fef953f38