rjico.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:a0:79:e8:ef:f3:07:da:77:ae:c4:82:48:80:43:94:ab:c9 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=rjico.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:a0:79:e8:ef:f3:07:da:77:ae:c4:82:48:80:43:94:ab:c9Serial Number (int): 403056368501503064911065110582128635325385
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 83:d1:12:64:bd:24:cb:11:d2:63:53:3e:8c:cb:66:51:94:c5:87:5c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 78:d6:14:69:7e:45:bb:6e:e4:c6:2b:ac:d7:36:24:72:7d:72:d3:e6
Fingerprint (sha256): 70:c5:a7:65:88:46:6c:eb:3d:70:80:1b:3e:c6:4e:05:39:63:ff:ed:76:b6:e8:3d:dc:52:a9:9b:03:dc:b3:a4
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate rjico.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rjico.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rjico.com
Other certificates including the domain name rjico.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for rjico.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSjCCBTKgAwIBAgISBKB56O/zB9p3rsSCSIBDlKvJMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTMxMDA1MzRaFw0y MDAxMTExMDA1MzRaMBQxEjAQBgNVBAMTCXJqaWNvLmNvbTCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBANrFWKQJuwpvqsLatuvdiqoLqnUA2D/3JMgAT2+o I65H837e/k4mTOLqGOpWwyux91N1lN0hyKPfTUA/FNP1d6XkGjSgCGhm5218HSb9 ot+iKzxC2IMy8FBsYTVQIi+erngNmWtNaCh7pbky+KCdEpL1RvRxXjPVuyWWlQkj f4hEGDItE4pwDCb/fPgegrGTixfjhtoOnlNRw6L7L5Sxd5nQjC0Tndpc3HLxqYho 1K7jlsjEYQDBiBR9DyXP+dZFAVTRP1Y2LudtA5lgk515cpNJ5V3IEAOOvyjPLFBJ rkScdfWG7gdhJ13C4UmTWIACTGCB0y5QJAreTTdyaNqIY6Y7Rc69ob+xLl4Tkmqk YAznOcwRbPw51/jVfRk7nJQuKw7XFi8v+ySPiZSKRlNeAL2/pot/ThWZz0ZfmOAC YDkh1NypsFn7w7m1jHDu5gdzn/7JmxQDJRXnIrCyaZv6m+UZLup44IZcKfoVTgEh wytl3PyDFSRGMl0VBmj0uAvCVSy169FMS6CU4H92hQj9ipgTYFR7Xw1Cm63yGB8e u6n8XC2kdOZBJyrc3D75Qxx1uudJ8LORtgzOU/YOKo1gegtUKD2qiw8HRvcw6Zj8 mDNwBdLR5d9fiwDvITbydW38+6zgx1XlHIhZ6bKprO1yXwt8NtegX+jTJUYj71A/ X8TJAgMBAAGjggJeMIICWjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIPREmS9JMsR 0mNTPozLZlGUxYdcMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wFAYDVR0RBA0wC4IJcmppY28uY29tMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAXqdz +d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFtxMuD9gAABAMARzBFAiEA oOfWSaVoYaYGphVhTRJ/PaVV+0rS1rEztsy5GnPQbacCIHar9E3jO2ix9GxoC1Pj Th2LZI7wUpIsg4tiAzcNU/4oAHYAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklT Le+LkF4AAAFtxMuD8QAABAMARzBFAiA8EHmcn5G0pWrG5MpmRbTOP20rBxzsv/nQ lmA1qprLHQIhAOxzllLeBVHJghugb2N2/QMbQ4nqylo2pH0RRx7gIhlVMA0GCSqG SIb3DQEBCwUAA4IBAQBJmslwSUKFM9TxGTlSEFlOgFDXa9rr5Jrfszw2/w/EwkBs FRSk/YovDgQ6dZ4ga4UVJtPDfvQvolUmJBpN7kc70SiyQ7UuoEo6iepP3cNH3MKo unP+VsyCzdibO4gTIDMkr8WqeQHE9hG2V+NKMzT47RF1Thxs3REPS09VgrsdXdRV 0eesILHyX1ksThWTZOcYQtL2KaOiTKBbmSdTkXhG8iP6ZvgPePAw8+14Y34L+Lqx xYLVZroJzj8DlqzOf810aVCmbtWbCRzcsFej5ZqoT9PNeML5UHlHSFnGVDX+5u+D 7TbaIX2r3hII7hjM4T7k200iEMUzL9+50W2AJq/d -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2sVYpAm7Cm+qwtq2692K qguqdQDYP/ckyABPb6gjrkfzft7+TiZM4uoY6lbDK7H3U3WU3SHIo99NQD8U0/V3 peQaNKAIaGbnbXwdJv2i36IrPELYgzLwUGxhNVAiL56ueA2Za01oKHuluTL4oJ0S kvVG9HFeM9W7JZaVCSN/iEQYMi0TinAMJv98+B6CsZOLF+OG2g6eU1HDovsvlLF3 mdCMLROd2lzccvGpiGjUruOWyMRhAMGIFH0PJc/51kUBVNE/VjYu520DmWCTnXly k0nlXcgQA46/KM8sUEmuRJx19YbuB2EnXcLhSZNYgAJMYIHTLlAkCt5NN3Jo2ohj pjtFzr2hv7EuXhOSaqRgDOc5zBFs/DnX+NV9GTuclC4rDtcWLy/7JI+JlIpGU14A vb+mi39OFZnPRl+Y4AJgOSHU3KmwWfvDubWMcO7mB3Of/smbFAMlFecisLJpm/qb 5Rku6njghlwp+hVOASHDK2Xc/IMVJEYyXRUGaPS4C8JVLLXr0UxLoJTgf3aFCP2K mBNgVHtfDUKbrfIYHx67qfxcLaR05kEnKtzcPvlDHHW650nws5G2DM5T9g4qjWB6 C1QoPaqLDwdG9zDpmPyYM3AF0tHl31+LAO8hNvJ1bfz7rODHVeUciFnpsqms7XJf C3w216Bf6NMlRiPvUD9fxMkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 403056368501503064911065110582128635325385 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-13 10:05:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-11 10:05:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rjico.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 892507338353718700316219254051923348033313678357577266531617775405933005939048959102817467194140729520164577878713092462875740684830510337079554114105090959808904680765366273835720142473053175556372674522957956319701824996225550883501194973989904366922537219486346426523000010388362491817563484886832552478600882050609100459369857561338588503682672850633186504509902499913209844291552729242952164184112552472932302039383253966921822588143510679749457953792381291368897299749305131516116848669178531787064422408495108746624284537395894908354563934826075287616159725699061079590217402431056642905141233048212817318455516917959741292035979165285364217545954094479659663378869133166688441066313574316348449633037300884296280596307114144557282516267168692772021546333612779882964455995289249543870122253120731014956503807802574977016086576078624898248265520774785160723637230767030441528393783531900076501582255278805195627544080911434694627673645783166437737411265619144063483055544511478659079995092314104368837728238941761651410588703245092499236215635901623071309014148224514627599190341889173935750579429420187973187860603080018597567991476927908919862627403347096842907306405426871034235932460764731679245520726620274324280012948681 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 83d11264bd24cb11d263533e8ccb665194c5875c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rjico.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016dc4cb83f60000040300473045022100a0e7d649a56861a606a615614d127f3da555fb4ad2d6b133b6ccb91a73d06da7022076abf44de33b68b1f46c680b53e34e1d8b648ef052922c838b6203370d53fe28007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016dc4cb83f1000004030047304502203c10799c9f91b4a56ac6e4ca6645b4ce3f6d2b071cecbff9d0966035aa9acb1d022100ec739652de0551c9821ba06f6376fd031b4389eaca5a36a47d11471ee0221955 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00499ac97049428533d4f119395210594e8050d76bdaebe49adfb33c36ff0fc4c2406c1514a4fd8a2f0e043a759e206b851526d3c37ef42fa25526241a4dee473bd128b243b52ea04a3a89ea4fddc347dcc2a8ba73fe56cc82cdd89b3b8813203324afc5aa7901c4f611b657e34a3334f8ed11754e1c6cdd110f4b4f5582bb1d5dd455d1e7ac20b1f25f592c4e159364e71842d2f629a3a24ca05b992753917846f223fa66f80f78f030f3ed78637e0bf8bab1c582d566ba09ce3f0396acce7fcd746950a66ed59b091cdcb057a3e59aa84fd3cd78c2f95079474859c65435fee6ef83ed36da217dabde1208ee18cce13ee4db4d2210c5332fdfb9d16d8026afdd