cuffia.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:41:b6:f1:db:ca:d4:92:19:dd:ca:94:22:02:51:ff:ec:8f was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=cuffia.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:41:b6:f1:db:ca:d4:92:19:dd:ca:94:22:02:51:ff:ec:8fSerial Number (int): 370810672873595327768941413998271534197903
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e7:3f:de:2a:ae:9c:44:0b:0d:d1:04:7c:73:43:1d:1a:ed:6f:bb:3e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 4a:7e:71:6e:b5:aa:cf:0f:ee:c2:62:f9:f2:13:31:f7:a8:f3:a7:82
Fingerprint (sha256): 75:84:82:7f:1e:20:5e:c7:ad:d4:3a:d8:9e:c3:85:c9:fd:0b:3e:15:5f:f5:17:f6:fa:2e:cf:07:36:8b:72:fe
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate cuffia.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cuffia.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cuffia.com
Other certificates including the domain name cuffia.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for cuffia.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSzCCBTOgAwIBAgISBEG28dvK1JIZ3cqUIgJR/+yPMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMDcwMzQwMzRaFw0y MDA2MDUwMzQwMzRaMBUxEzARBgNVBAMTCmN1ZmZpYS5jb20wggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQDFW9olNoypCVf3+1IpY3Mls2VooW191dEBJ6xz bnamOQBiY8RknitCDaK883Ozp+dk2j5oZWFAa3uR0012Hg2UVkz04PK/v5Dx5NEW 3XZrBn+3p4sXKBrkcTXRM1PFHoaTz2qeV0ZSuQmOyYETkzzCCbxzOJNyE6zCcox2 APbdxXQElBUpSGlHp+hMEh+IKvHan8uoF6dzW9P/ou3foUFnrwtrLgTF3HO+W4k2 nBTdnb7hJaCFWrWz913ZDN5ghgRu/BKYaeFg6YlqPgwB6xDzd/sO4JZJmDK3LtpE ABSA631H/ZTxOZZB4MW3w844F3G+2ydlsoj6jf5ui0GFqkC7kKYKFs36HV+aNvFi OQb0kBHha+AASNaed38QyM2lb6XraJ8aQncz095/9R7AbjRAK6ZB6U977fY2Wo48 Xz4O+rEQnFR6QUU93UdLZlMwbdOQ9gKrr13napBRPtNwTYGzVG5uvnRK0+B1iVbd 54le/QL095IxvIyj0El5lE9IlZ+0ngblQkvYu+C8LDvVux84Z5DDkcVg+HKPHqX7 lnSB3A7rebMpbxe7+dsJeXagZplhfo5eYBb/S1xDImaX55ZAIFNI2ox0d32V/+7k rEY+9lTVIghqUkmKOj9oOksS0aQmLB/CbW5goOCf8LSHJybc26P5XtFqAMuxmzve dGquvQIDAQABo4ICXjCCAlowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTnP94qrpxE Cw3RBHxzQx0a7W+7PjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMBUGA1UdEQQOMAyCCmN1ZmZpYS5jb20wTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQBv U3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAXCzS35SAAAEAwBGMEQC IFZDXLeP8O6c3OjP41l13TugV7EsFwWw2LRXpqXqVBILAiBg7rjroyEhlAreWT6K 6bYI01dmQwOL086Gxoyr5iB3IAB2AAe3XBvlfWj/8bDGHSMVx7rmV3xXlLdq7rxh Ohpp06IcAAABcLNLfk8AAAQDAEcwRQIgNyCQO3fV0+qwV7Sbs1wgxfVX36jIB7Jg dLvLuyOKDPACIQDl7VlGBij/u91421YKu10fA2id+bZ/KNGnx9pn0ek4gzANBgkq hkiG9w0BAQsFAAOCAQEAM4FQu1X+WY2WbbjSI/5QcYWQVd3/x+IG6qbyx4nzXuEZ M9PbJzzZ+8Nhz27UA23/AowJmmQXTH9maeamTRFdQNeZ9+x3YnhmuP7iiYiltWC8 ajliSDWHsqQdJlkljDQfBYa6ZgFIvdzCPh7HvyXvQJ/IoV2z51wk30WAxivTsoTI aWtFm6BSLvYm6R/Qt+l7pRtVTwAjWF9y15qnPrg8pHi8fi5m7ulg9RzeKMYuBg30 fktfaUxlW3R2JoimcoG7xfShRaSXm7O5dGAtufJD2FZZ7tDw9P1jnDdzE6Gj/6nF xuYJ+n5vLZ6u0Vr7O32/ph+iwHef0hLUHaGbET7F4w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxVvaJTaMqQlX9/tSKWNz JbNlaKFtfdXRASesc252pjkAYmPEZJ4rQg2ivPNzs6fnZNo+aGVhQGt7kdNNdh4N lFZM9ODyv7+Q8eTRFt12awZ/t6eLFyga5HE10TNTxR6Gk89qnldGUrkJjsmBE5M8 wgm8cziTchOswnKMdgD23cV0BJQVKUhpR6foTBIfiCrx2p/LqBenc1vT/6Lt36FB Z68Lay4ExdxzvluJNpwU3Z2+4SWghVq1s/dd2QzeYIYEbvwSmGnhYOmJaj4MAesQ 83f7DuCWSZgyty7aRAAUgOt9R/2U8TmWQeDFt8POOBdxvtsnZbKI+o3+botBhapA u5CmChbN+h1fmjbxYjkG9JAR4WvgAEjWnnd/EMjNpW+l62ifGkJ3M9Pef/UewG40 QCumQelPe+32NlqOPF8+DvqxEJxUekFFPd1HS2ZTMG3TkPYCq69d52qQUT7TcE2B s1Rubr50StPgdYlW3eeJXv0C9PeSMbyMo9BJeZRPSJWftJ4G5UJL2LvgvCw71bsf OGeQw5HFYPhyjx6l+5Z0gdwO63mzKW8Xu/nbCXl2oGaZYX6OXmAW/0tcQyJml+eW QCBTSNqMdHd9lf/u5KxGPvZU1SIIalJJijo/aDpLEtGkJiwfwm1uYKDgn/C0hycm 3Nuj+V7RagDLsZs73nRqrr0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 370810672873595327768941413998271534197903 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-07 03:40:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-05 03:40:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cuffia.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 805153647019581849390493927483999152734833637577630292106482920809331926054120671816617534965920221589785756016333022985952430666366712971593833480262798876157561021946720472216952230574581555101659148604256963576905132314221735977627164734463159966580648230205565639809253000679489739295231110376437825210796187040983077703390123916058158142224543982282905889285125833746777136403894691856065415100732319745887581849803775343208951909583194276943861928161108295016835264801899300144650328492013335063777989184870843884014035370614203051873424611194810922271940977492477436606785349008078339716923192964996109930751299512005688600738974531847026006323155582989632308672033177525243268377527624929886613575460387606888370045749047602151651561638552967141883278716048014838021231827106623357407607974253624903082525802549697585456544737270788923680090759204933911977399670960779014711822086320959114199929412488248140977007512488613533043513957803817514791732397608433735419488882029103763996030957287199186313816385547572843450472508871999879199803304454661467419747657241668521419418270339645416877820628573685021858390824588937586278383833527179664630541854573789114902853737250745613803558738764586970045405533072603067283894087357 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e73fde2aae9c440b0dd1047c73431d1aed6fbb3e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cuffia.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d91300000170b34b7e520000040300463044022056435cb78ff0ee9cdce8cfe35975dd3ba057b12c1705b0d8b457a6a5ea54120b022060eeb8eba32121940ade593e8ae9b608d3576643038bd3ce86c68cabe620772000760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c00000170b34b7e4f000004030047304502203720903b77d5d3eab057b49bb35c20c5f557dfa8c807b26074bbcbbb238a0cf0022100e5ed59460628ffbbdd78db560abb5d1f03689df9b67f28d1a7c7da67d1e93883 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00338150bb55fe598d966db8d223fe5071859055ddffc7e206eaa6f2c789f35ee11933d3db273cd9fbc361cf6ed4036dff028c099a64174c7f6669e6a64d115d40d799f7ec77627866b8fee28988a5b560bc6a3962483587b2a41d2659258c341f0586ba660148bddcc23e1ec7bf25ef409fc8a15db3e75c24df4580c62bd3b284c8696b459ba0522ef626e91fd0b7e97ba51b554f0023585f72d79aa73eb83ca478bc7e2e66eee960f51cde28c62e060df47e4b5f694c655b74762688a67281bbc5f4a145a4979bb3b974602db9f243d85659eed0f0f4fd639c377313a1a3ffa9c5c6e609fa7e6f2d9eaed15afb3b7dbfa61fa2c0779fd212d41da19b113ec5e3