www.abbigail.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:22:51:cd:4a:a4:68:27:19:dc:25:a3:f4:d6:d8:65:0b:f8 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.abbigail.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:22:51:cd:4a:a4:68:27:19:dc:25:a3:f4:d6:d8:65:0b:f8Serial Number (int): 273015191673031188556806997927592726957048
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 36:7d:f6:8b:8d:f3:8c:15:a2:4a:7c:43:d5:9c:ca:73:97:70:cb:6c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 32:1a:97:a4:2b:6f:c5:90:35:35:4a:f0:f8:90:3e:7f:61:c7:75:e1
Fingerprint (sha256): 6e:5e:4a:50:90:55:52:1d:3d:fa:08:74:c1:b9:65:ba:14:05:e9:eb:b2:11:be:83:5c:ee:1f:6d:a2:b8:e9:be
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.abbigail.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.abbigail.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.abbigail.org
Other certificates including the domain name abbigail.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.abbigail.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWTCCBUGgAwIBAgISAyJRzUqkaCcZ3CWj9NbYZQv4MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MTgwODE4MDNaFw0x OTExMTYwODE4MDNaMBsxGTAXBgNVBAMTEHd3dy5hYmJpZ2FpbC5vcmcwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC5gNIRKiFNhSXXfTQwZGWecIQr+Bk2 oO2vBnuECl6rCyE2iETwjg/WJS2xCBVHxTz1nnjQ2MpKcPvtVfmx22ypieLpR+Xv uvxQfjJIzZ7eLvqaNi1X5woijHCCuMohIe5LMGZGBUeIBX7s/YILFQtl1Kxp7Tmt hMGbS7g9j61caEBXjSjsSBTZltL3w+F2+EEBcX5b8CzUuFm2oTSm5vemLN7YeE6M 9kKTBkVCwhZqsTv4QhbEh0w6l/otzoX1WM1ziIA+KGg9jgUjl17yK+fRAM/eIkqe f+Rim3RabpFVW12KfmvR/EynlOewB/TM27edqyizyHoAnF4aRg0o+o4kMi5XORJx L4jwnw4Mw2c8I9620aTWGEpoB3QRcSIqkpGPJtH3qjRESbn1o5aTEKkneLJZwA8x 5FkmtCupHXsuEaOX7DlAlK2ufQH+5D1ASh3B32kzs44EjwVDoWWzaeXjatORAaTN kwgydAZppqRt4HAtrUEwvyrGwQBPxDoKBFY0v0B7NiVEkTi1zJYWXNLIyLMSXptQ UcF0tczbWog0JlYTMDvOz2tcLHA+mMhEV5+vTkYh7Bza7KS0uUkZ2saJvMEyf5P4 ehCFkDcNS3pE6cLgQpmCZYnCQ+sVrLaYWmTKso0U2AMFuIdcIXPANbYLMaFRpn4C DqyKyLWKM7yPaQIDAQABo4ICZjCCAmIwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ2 ffaLjfOMFaJKfEPVnMpzl3DLbDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHd3dy5hYmJpZ2FpbC5v cmcwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQC BIH2BIHzAPEAdwDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWyk BPQ5AAAEAwBIMEYCIQDHAmnDTRRx0s7Gss9bJbfGJWFL7+rmwD+bRGz6CaTmzQIh AM5WDYepv8cJh/+l500QFQPzjE0TilPdmZ59O1VVGm2yAHYAY/Lbzeg7zCzPC3KE J1drM6SNYXePvXWmOLHHaFRL2I0AAAFspAT2HwAABAMARzBFAiEAgvtDPogm5pVp 9FPkqGaok05k8LXzJ5G96NcmUW9qTacCIGz5zWz3xXdA1N5ePXxo1YiB3dUDD9uC 8G6C9poSyZIHMA0GCSqGSIb3DQEBCwUAA4IBAQBdvN7h4AuhFuaYIE6ItDJyxSHo B2i5NtzQWeU9Pbn+pulkTSM3/T0lzyMcHTYZcsv++6cejFUNBJ2TmdAKcK5Cx1h9 zjSSLQ/bpYt2HcHpwR+U78rRMl88VTw/lUSsoL7qd2Z1mdKKJ5uTOu/6FlFJs3Sd XO48cs6QaN8g511j2ZmZ0TQ7wgmuA3Bkspa0YE6IIsUHkmcnNBdxkRlPs3NqqXIp E4ZiTH14wJFJYWxeRgWOGvzcuor+vMrtT4jBzkch5MU/i8Q6cCHnr8LW9/1wtLRG aL0+pEyHKh+ujfWhhhsicQNxsmQMGOCEmdNny9oZGyacBjbIUdr9E0aYdNql -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuYDSESohTYUl1300MGRl nnCEK/gZNqDtrwZ7hApeqwshNohE8I4P1iUtsQgVR8U89Z540NjKSnD77VX5sdts qYni6Ufl77r8UH4ySM2e3i76mjYtV+cKIoxwgrjKISHuSzBmRgVHiAV+7P2CCxUL ZdSsae05rYTBm0u4PY+tXGhAV40o7EgU2ZbS98PhdvhBAXF+W/As1LhZtqE0pub3 pize2HhOjPZCkwZFQsIWarE7+EIWxIdMOpf6Lc6F9VjNc4iAPihoPY4FI5de8ivn 0QDP3iJKnn/kYpt0Wm6RVVtdin5r0fxMp5TnsAf0zNu3nasos8h6AJxeGkYNKPqO JDIuVzkScS+I8J8ODMNnPCPettGk1hhKaAd0EXEiKpKRjybR96o0REm59aOWkxCp J3iyWcAPMeRZJrQrqR17LhGjl+w5QJStrn0B/uQ9QEodwd9pM7OOBI8FQ6Fls2nl 42rTkQGkzZMIMnQGaaakbeBwLa1BML8qxsEAT8Q6CgRWNL9AezYlRJE4tcyWFlzS yMizEl6bUFHBdLXM21qINCZWEzA7zs9rXCxwPpjIRFefr05GIewc2uyktLlJGdrG ibzBMn+T+HoQhZA3DUt6ROnC4EKZgmWJwkPrFay2mFpkyrKNFNgDBbiHXCFzwDW2 CzGhUaZ+Ag6sisi1ijO8j2kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 273015191673031188556806997927592726957048 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-18 08:18:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-16 08:18:03 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.abbigail.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 756787051381508643300347522306294963427189245045815769320301302563423392741795552632246102430745410404965396842343983590687088952891895975627154570016387265107920024189005724350676525827179016340333242348460180682440446221649837540553876362300345355854536846709704649582426697496111805624270765189590563921478578397905262074693391816578515302639504153778287778381775259501698778918863408303625218365413345752887364131198062499959260019425612455575679135612970907180560823439095918450688390793587817504278147068963938345209115097112775382210760532524623828413014311491885151762425958325433164663401733012720956159454646944468000611887072729127824468802745199988683732367001817085266582848878734663592885060411183066294975330777371443145105759769012963437419092563978380112543727731747304083203285836375960705911033874128138332609528311245230700750908177408837885321632967867715836646766602431970262931809846466594999260675110789787821699869697962359545828727652074135196857867446628644633138699190162263526338328545488361918284154646191598687249889935372548920500115713522429004473893122109058635629746245424051564814840955305217027179413384434081507619969359917937422742715250011373511442706854683744038884060717687368731889252470633 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 367df68b8df38c15a24a7c43d59cca739770cb6c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.abbigail.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016ca404f4390000040300483046022100c70269c34d1471d2cec6b2cf5b25b7c625614befeae6c03f9b446cfa09a4e6cd022100ce560d87a9bfc70987ffa5e74d101503f38c4d138a53dd999e7d3b55551a6db200760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016ca404f61f000004030047304502210082fb433e8826e69569f453e4a866a8934e64f0b5f32791bde8d726516f6a4da702206cf9cd6cf7c57740d4de5e3d7c68d58881ddd5030fdb82f06e82f69a12c99207 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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