grandma.digital
Issued by R3
About this certificate
This digital certificate with serial number 04:41:a3:51:b9:26:ee:57:9e:90:ff:b7:2d:ae:28:05:3c:e2 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=grandma.digital
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:41:a3:51:b9:26:ee:57:9e:90:ff:b7:2d:ae:28:05:3c:e2Serial Number (int): 370784586071590679528729700558759348485346
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 27:63:e5:4a:6d:54:53:dd:70:05:1f:d0:ab:d0:fa:af:17:d1:9d:73
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 78:68:5d:89:8b:62:5a:57:4a:0d:9e:c3:c9:0d:67:c5:c4:df:4f:4e
Fingerprint (sha256): 6f:8b:5d:9b:89:af:e5:89:c3:e2:c1:82:2e:a1:7e:df:d9:b0:49:07:06:f3:9b:3c:a0:ba:b7:62:11:f2:91:4b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate grandma.digital
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for grandma.digital
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
grandma.digital
Other certificates including the domain name grandma.digital
(limited to 100 certificates)
Certificate
The complete raw certificate details for grandma.digital in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgISBEGjUbkm7leekP+3La4oBTziMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA1MDcxMjE4MTRaFw0yMzA4MDUxMjE4MTNaMBoxGDAWBgNVBAMT D2dyYW5kbWEuZGlnaXRhbDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AN1rfJa1QYZ0FukiMmdA+H7kGNG0gzOVeZN1ZM29ozX5RldVDpnsStYz3AD/ZQmY lXWM3aM09V6BS4oKq73nkK2956EjXESgzk/uycjbDw4l+082SAy2m+OWDMsikKtc Z8LdAuRBGDwFdr5fW/36q23NvYufHFpl7xM8EX4U39a86CNRq5w8g0/zPZWio5C9 8c9OM8Ap9lUF5S2BWbUAQSp6yG+6BY7WE1Est8ZSsev8GNaeFv2L33T5UxrlNzVD XUDsQKcKs9p7a70ntqriMSoy/kxj0q0HyNfV3M3lDMCP3Bs7GqMrlCFJYeWA1uFd Uk6u16SpJd6n3iTjPQZ/TtUCAwEAAaOCAkswggJHMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUJ2PlSm1UU91wBR/Qq9D6rxfRnXMwHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wGgYDVR0RBBMwEYIPZ3JhbmRtYS5kaWdpdGFsMEwGA1UdIARFMEMwCAYGZ4EM AQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0 c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYAtz77JN+cTbp1 8jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGH9lzhTgAABAMARzBFAiEAo60R/Vmt Qo2tG8KBxErDcti5RA06/godgA06Nr9deuwCIFMiXOTzmdh4fq17rhux3brZcn83 p/tCisR2jPCI11wQAHcArfe++nz/EMiLnT2cHj4YarRnKV3PsQwkyoWGNOvcgooA AAGH9lzhcwAABAMASDBGAiEA50/OOsp4jn0pjjiDGHvgp+/Vn5AzR0RL9918HG2j APcCIQDaMN4Ag6MVKVR981i1ejnMnagFEceWqxECOW5vheTF3DANBgkqhkiG9w0B AQsFAAOCAQEAOJuNh2tOreVRYoNkRMf0eKvTEWAL7YKEfLQJDDk91CrGUylkPgBb L4gCvNW0zj5WksdMlfhSyKzFecZeotQPs0jabc03vgaYzynFTDyfBon/CzYcvGzl Ro9Ju7I5/0YUAILOnw0FlWa9Xl1qOzmi5222Oa5We2CIfuM/Z9JLHB/KfFuJO/VE eHEejRgVe8OxbIXLz2S1CHXZKt8CCni58yosytJlyeev0gRgEQxemEhlcqlTcPMe c7i1/sBV7UHT0dcZbFacTRmw8Ki+ZKhPMCT1mieEgopxwPxnmyr+OWaerNMdd3Cw weCTwRMmPUzJXk1rHy89VwGCIBe7Xe+CHQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Wt8lrVBhnQW6SIyZ0D4 fuQY0bSDM5V5k3Vkzb2jNflGV1UOmexK1jPcAP9lCZiVdYzdozT1XoFLigqrveeQ rb3noSNcRKDOT+7JyNsPDiX7TzZIDLab45YMyyKQq1xnwt0C5EEYPAV2vl9b/fqr bc29i58cWmXvEzwRfhTf1rzoI1GrnDyDT/M9laKjkL3xz04zwCn2VQXlLYFZtQBB KnrIb7oFjtYTUSy3xlKx6/wY1p4W/YvfdPlTGuU3NUNdQOxApwqz2ntrvSe2quIx KjL+TGPSrQfI19XczeUMwI/cGzsaoyuUIUlh5YDW4V1STq7XpKkl3qfeJOM9Bn9O 1QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 370784586071590679528729700558759348485346 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-07 12:18:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-05 12:18:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'grandma.digital' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27951669052228356553193657397108339634222628489858804016960402509588659378938085758796742634101890658980462625564280203367188313310481892930186281819058878951813682464218204742658781532220621555872416579390004934303706598222523612346214093443437984629578175466092225587279649137650717806942107113432535082067523219381255490512835412051591764552506790815912082135896109105825836222529914428930251598166201863643393362659402284893376214669922935527387042219777179861119567990385205344664261815152950144652070668380834425981890301863435381185741917001482569635435055091413717412756247796915641225325897490466185733426901 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2763e54a6d5453dd70051fd0abd0faaf17d19d73 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'grandma.digital' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000187f65ce14e0000040300473045022100a3ad11fd59ad428dad1bc281c44ac372d8b9440d3afe0a1d800d3a36bf5d7aec022053225ce4f399d8787ead7bae1bb1ddbad9727f37a7fb428ac4768cf088d75c10007700adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a00000187f65ce1730000040300483046022100e74fce3aca788e7d298e3883187be0a7efd59f903347444bf7dd7c1c6da300f7022100da30de0083a31529547df358b57a39cc9da80511c796ab1102396e6f85e4c5dc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00389b8d876b4eade55162836444c7f478abd311600bed82847cb4090c393dd42ac65329643e005b2f8802bcd5b4ce3e5692c74c95f852c8acc579c65ea2d40fb348da6dcd37be0698cf29c54c3c9f0689ff0b361cbc6ce5468f49bbb239ff46140082ce9f0d059566bd5e5d6a3b39a2e76db639ae567b60887ee33f67d24b1c1fca7c5b893bf54478711e8d18157bc3b16c85cbcf64b50875d92adf020a78b9f32a2ccad265c9e7afd20460110c5e98486572a95370f31e73b8b5fec055ed41d3d1d7196c569c4d19b0f0a8be64a84f3024f59a2784828a71c0fc679b2afe39669eacd31d7770b0c1e093c113263d4cc95e4d6b1f2f3d5701822017bb5def821d