40daysabroad.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:8d:0d:75:d2:dd:3b:1c:d4:83:18:62:57:02:b4:51:bc:03 was issued on by Let's Encrypt.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=40daysabroad.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:8d:0d:75:d2:dd:3b:1c:d4:83:18:62:57:02:b4:51:bc:03Serial Number (int): 309334563270644450920953396825593595673603
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d7:92:46:81:49:0d:6d:c1:26:cf:7c:7d:3d:c1:19:7a:75:62:f5:50
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 4e:e5:df:38:0c:f8:19:70:06:27:cb:9d:d5:c8:d6:a7:1a:34:8d:92
Fingerprint (sha256): 70:d4:ae:6a:95:7e:69:79:fa:17:4b:58:fe:fa:b1:73:3c:85:f5:91:5f:83:58:8e:78:b3:7d:bb:ea:66:b3:9b
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate 40daysabroad.com
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for 40daysabroad.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
40daysabroad.com
bebetterhere.com
blainecthomas.com
btsixer.com
cktconstructionllc.com
familyjacobo.com
lazzapazza.com
sheliathomas.com
thelollipoplife.com
bebetterhere.com
blainecthomas.com
btsixer.com
cktconstructionllc.com
familyjacobo.com
lazzapazza.com
sheliathomas.com
thelollipoplife.com
Other certificates including the domain name 40daysabroad.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for 40daysabroad.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF7jCCBNagAwIBAgISA40NddLdOxzUgxhiVwK0UbwDMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MDgyMDU2MDZaFw0x OTEyMDcyMDU2MDZaMBsxGTAXBgNVBAMTEDQwZGF5c2Ficm9hZC5jb20wggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeTK2XNrHXSk1Vb3oHp/TGHORkVd1N vpuvfKc9konXiMB9zq+wn+Qxpo7XrB28TUG9uL1hVsTbO5V5Q3wLanlkfBnIRFvX yZDXGirjksI7hwriQFE5dC5mFw4F+VPS7MRTlXzZT0RF8/HMdhfdKwL4Z2d9PHkv 9odBLGBAgPRMd66rnWsGIfTCwirbIMaFgUeE8ekWcPYIvkDpti0nsllOqPySaalD MEYsKxa31TOelHWypi0WroMTR38+C7XioPbB0hx22kui0dNYW/0Gt/zW6N4bY+Qo /EEYt9nXsMDnvlR6WozLIfhUxcYpKC3cRvOSUrNPoM90AYH3Do+v/b1xAgMBAAGj ggL7MIIC9zAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFNeSRoFJDW3BJs98fT3BGXp1 YvVQMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEB BGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZy8wgbAGA1UdEQSBqDCBpYIQNDBkYXlzYWJyb2FkLmNvbYIQYmViZXR0ZXJo ZXJlLmNvbYIRYmxhaW5lY3Rob21hcy5jb22CC2J0c2l4ZXIuY29tghZja3Rjb25z dHJ1Y3Rpb25sbGMuY29tghBmYW1pbHlqYWNvYm8uY29tgg5sYXp6YXBhenphLmNv bYIQc2hlbGlhdGhvbWFzLmNvbYITdGhlbG9sbGlwb3BsaWZlLmNvbTBMBgNVHSAE RTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRw Oi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2 AOJpS64m6OlACeiGG7Y7g9Q+5/50iPukjyiTAZ3d8dv+AAABbRLggyMAAAQDAEcw RQIhAIsQYFl9TbGhsSB+cCMrpXKFHFFFDVBD34dcJU46wJOJAiBbr9HjSHr/toti ne/8GqlYwdKtl4ZjiUJqngZFIHldugB2AGPy283oO8wszwtyhCdXazOkjWF3j711 pjixx2hUS9iNAAABbRLgg0AAAAQDAEcwRQIhALKt0HfePpiV3iVf24CDyJ/MgtqQ t9actC4AQEA+kg35AiBTW7PXUvD6poW98vDPfP/V1WG5heTIuczogUzeRJUVyDAN BgkqhkiG9w0BAQsFAAOCAQEAkP6e63k7hENgH6ViBdUkSaeft2N5MZr9LWfyQ/5l KIjMMiwhYqmDmLi3aO/G8zWRIjdqTZXthMMIhlWI9tPowqI9Cd6Em/XshNusP+53 aHY3aFyhAQJoltq5L9rjhHXGRF1ZLkJ4hoj5bxI85CRn9bqa2qAPRQ58N1PN7TJY no4/t6pjfLvtA0LWmqmPkGOGsoVNo/llJFCbC5TUQlKfqWIoDC8hiIyY9gVHeqXy sZA0Dm23J6et/7rmijoMeaIDq8ejxa/apGlDBVmmcaPa8RblsysIq3msuT0Xzo7W d/dXKB3zyGD+LiCqNlJ09js+Di8T1dzyfJyyb0HARZ7qAA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnkytlzax10pNVW96B6f0 xhzkZFXdTb6br3ynPZKJ14jAfc6vsJ/kMaaO16wdvE1Bvbi9YVbE2zuVeUN8C2p5 ZHwZyERb18mQ1xoq45LCO4cK4kBROXQuZhcOBflT0uzEU5V82U9ERfPxzHYX3SsC +GdnfTx5L/aHQSxgQID0THeuq51rBiH0wsIq2yDGhYFHhPHpFnD2CL5A6bYtJ7JZ Tqj8kmmpQzBGLCsWt9UznpR1sqYtFq6DE0d/Pgu14qD2wdIcdtpLotHTWFv9Brf8 1ujeG2PkKPxBGLfZ17DA575UelqMyyH4VMXGKSgt3EbzklKzT6DPdAGB9w6Pr/29 cQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 309334563270644450920953396825593595673603 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-08 20:56:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-07 20:56:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '40daysabroad.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19983463559368848962321095544999002884477227252344787866358687656222382164534918374321098713374456258660692772901496979478267385294099956527429106786270999138084435411166592225945422838574489731211589316188182049607681073405845972532010485375972309973137957760714308937637387891103048398371760519790099060413483151146346853562461448486943039951029752166563133234843611793341376062168834899410270035156953900819681677366428199140229616381802287228656349389582353285924012555750955847444258246563183904320936334805731312353406792818377118135427940607025965132658747699828299383661469933442615240489742143291746150104433 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d7924681490d6dc126cf7c7d3dc1197a7562f550 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (168 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '40daysabroad.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bebetterhere.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blainecthomas.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'btsixer.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cktconstructionllc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'familyjacobo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lazzapazza.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sheliathomas.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thelollipoplife.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016d12e0832300000403004730450221008b1060597d4db1a1b1207e70232ba572851c51450d5043df875c254e3ac0938902205bafd1e3487affb68b629deffc1aa958c1d2ad97866389426a9e064520795dba00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d12e083400000040300473045022100b2add077de3e9895de255fdb8083c89fcc82da90b7d69cb42e0040403e920df90220535bb3d752f0faa685bdf2f0cf7cffd5d561b985e4c8b9cce8814cde449515c8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0090fe9eeb793b8443601fa56205d52449a79fb76379319afd2d67f243fe652888cc322c2162a98398b8b768efc6f3359122376a4d95ed84c308865588f6d3e8c2a23d09de849bf5ec84dbac3fee77687637685ca101026896dab92fdae38475c6445d592e42788688f96f123ce42467f5ba9adaa00f450e7c3753cded32589e8e3fb7aa637cbbed0342d69aa98f906386b2854da3f96524509b0b94d442529fa962280c2f21888c98f605477aa5f2b190340e6db727a7adffbae68a3a0c79a203abc7a3c5afdaa469430559a671a3daf116e5b32b08ab79acb93d17ce8ed677f757281df3c860fe2e20aa365274f63b3e0e2f13d5dcf27c9cb26f41c0459eea00