maegaard.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:70:b9:4c:67:74:b0:d2:a0:68:ff:15:7a:29:03:f0:7a:d7 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=maegaard.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:70:b9:4c:67:74:b0:d2:a0:68:ff:15:7a:29:03:f0:7a:d7Serial Number (int): 386807072714300932599223398672581591595735
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: ee:75:43:98:05:3e:92:c8:d0:8a:e9:41:11:c1:d5:ec:57:e4:6f:73
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 15:b6:31:21:40:f5:9a:00:11:c5:a9:e7:ea:c1:7d:f0:4a:d7:35:e6
Fingerprint (sha256): 76:99:17:d8:a6:d9:5b:ff:9b:75:80:3c:b0:b5:31:d1:7f:66:d6:46:d1:84:50:f9:a3:73:97:8d:b0:03:02:4a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate maegaard.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for maegaard.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
maegaard.org
www.maegaard.org
www.maegaard.org
Other certificates including the domain name maegaard.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for maegaard.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYzCCBUugAwIBAgISBHC5TGd0sNKgaP8VeikD8HrXMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMDkyMTE1MTJaFw0y MDAxMDcyMTE1MTJaMBcxFTATBgNVBAMTDG1hZWdhYXJkLm9yZzCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBALhVvVwCnKbW3+nPrwWGPwTDla0RT0u1I5yn TPUoza4WrBCtIoAVqMJLY+YCZHVNp2Cc48PARgwN22R3+YI30mFdtx+GvT0WA2g1 FW7iHNktr1nAFmJYzZIwWBCxYK71AvzdzMgycRiTPKEkO2rowhER16gGuKlORura D7oE3ewWdrwRTYc94HaFA7yX/lvJv/T9Fj0Ua5o9AfsYIGVI7kSDr7mSb8WI/pkt rzslh7eTfa93izuS7p2+9+kItUPw5ZilKLEMIVWtIQOUpOuIY8qXmx8Pt5uobGAC bAGM/4Bbgp+RnXjD3XQur+l2hZo0XZnKYIA2GGNQU7Jwg7S6m1UcAFUJL/WoO6mm hkEwaS0Na1+5hyQnAzpkwRmUI2PQJh85mJ47b8S/hIKn3bg7LIY4+iXDn5IGUZPX RIrHIV0ienOFZKEqMB9ZLNKYCY8y2k+DoAsFlvtUS1u7Bjk7hBDo+dEvrmjsoOxo HcP6uHKG3Zp1MkYW6mMszZFo8mSKKoYvi+1dnFBMwbUOKV9L7SQSgwRZn+hKZxxt geB2r/slBkRXNqihuKQ7JAottHGn5qBWdq3k4Aqe71h7E1iLJsePDoBzYp9rm7+A +GmqECCVw5JzxdcBubhf1rAyqG3K4XEo+Oe29BUmXkQZ1GM5j/5NpXofkJfXinJ5 5+Vtjs63AgMBAAGjggJ0MIICcDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFO51Q5gF PpLI0IrpQRHB1exX5G9zMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wKQYDVR0RBCIwIIIMbWFlZ2FhcmQub3JnghB3d3cu bWFlZ2FhcmQub3JnMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEB MCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYK KwYBBAHWeQIEAgSB9gSB8wDxAHcAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1 loFxRVgAAAFtspcjcwAABAMASDBGAiEAzk1M6PavYDxr1WLF6ew2NQB1kNxMZPOU M/So9r9sBYwCIQDU10zIq91n1b4fxlyDc9lVXqi1rVX7vhad8scMxB2CsAB2ALIe BcyLos2KIE6HZvkruYolIGdr2vpw57JJUy3vi5BeAAABbbKXI3UAAAQDAEcwRQIg HzD+MBMj41o0sWDSD1JmAHsgW8Au3l0EXl1DYmHQqLgCIQD6f2kK4lUowBee5e6x ncgmm/XjzF6dFbKDzOkPtodEvDANBgkqhkiG9w0BAQsFAAOCAQEAQwECPYu2clC6 /c37+rdjQEf2qFYDs74BGLwXvMPgGGjWMZXWz4f+BMd751qevSUXF0BkNTt+nQM2 NotkP7e51LEWyBots5Ty0cJ7CqxDsbIeoBFwK5kgIxjf77Cz6Gu58FrmVo7K2IN+ OJ1hl+uWA1RH+1n0WU/rRvyHaw1bsNxFgSC68hLBcvxqZS0BiKSiGLOTGEe9kT4V MIjl4yr53XhnQeikTrximAuth4OPmIupgMDF6o+HixcsMLDaf11LK31hYL+ykRyG +CTaui6W2nq2huq4q2vIf4aTf9QJBoZqIv7t1evMA9AhCGxCshqIkfIy76D91EyE YwB7WMgZWA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuFW9XAKcptbf6c+vBYY/ BMOVrRFPS7UjnKdM9SjNrhasEK0igBWowktj5gJkdU2nYJzjw8BGDA3bZHf5gjfS YV23H4a9PRYDaDUVbuIc2S2vWcAWYljNkjBYELFgrvUC/N3MyDJxGJM8oSQ7aujC ERHXqAa4qU5G6toPugTd7BZ2vBFNhz3gdoUDvJf+W8m/9P0WPRRrmj0B+xggZUju RIOvuZJvxYj+mS2vOyWHt5N9r3eLO5Lunb736Qi1Q/DlmKUosQwhVa0hA5Sk64hj ypebHw+3m6hsYAJsAYz/gFuCn5GdeMPddC6v6XaFmjRdmcpggDYYY1BTsnCDtLqb VRwAVQkv9ag7qaaGQTBpLQ1rX7mHJCcDOmTBGZQjY9AmHzmYnjtvxL+EgqfduDss hjj6JcOfkgZRk9dEischXSJ6c4VkoSowH1ks0pgJjzLaT4OgCwWW+1RLW7sGOTuE EOj50S+uaOyg7Ggdw/q4cobdmnUyRhbqYyzNkWjyZIoqhi+L7V2cUEzBtQ4pX0vt JBKDBFmf6EpnHG2B4Hav+yUGRFc2qKG4pDskCi20cafmoFZ2reTgCp7vWHsTWIsm x48OgHNin2ubv4D4aaoQIJXDknPF1wG5uF/WsDKobcrhcSj457b0FSZeRBnUYzmP /k2leh+Ql9eKcnnn5W2OzrcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 386807072714300932599223398672581591595735 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-09 21:15:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-07 21:15:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'maegaard.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 752020865539837487386605675258753236597044328643174235237191591307938432524755042203584642972674998644924730074380064701871845302425311986864324669086458490544348833134785312910316792053614429548634372826105967023763341004486503369012680378886690342731712729237044567589317335999779832963541164752010566361362956068362468942460247305524990044748292615519565296416239220627349962538959911641251620952045867230095883439306965493833231262815556938159087001019002352420477543085564934548848031873101551887872268449643331908437993806180484228149470872328705151356969050314977203858726931195100189904666976170872027241764741898147045110121259539430718670488698354406935090538126168912818362390619161265481954501082610102416454209360406386758374141489243741075902160680257460246822331103352538235754999913327436381791168666808988230582144527385691957086096042310743145598317525672850551885721179447510854176985912812573952915313709433201404350945306765730747917546902516220627732229148518672773740370534556029701204369550582015952568928816164451629993605642282179657630534183339837250257697022138455621498795995435179115624111152696852343687262450866756518480656820858781034841801178283670386003385900695558393646943307844453547935884299959 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ee754398053e92c8d08ae94111c1d5ec57e46f73 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maegaard.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.maegaard.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016db29723730000040300483046022100ce4d4ce8f6af603c6bd562c5e9ec3635007590dc4c64f39433f4a8f6bf6c058c022100d4d74cc8abdd67d5be1fc65c8373d9555ea8b5ad55fbbe169df2c70cc41d82b0007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016db2972375000004030047304502201f30fe301323e35a34b160d20f5266007b205bc02ede5d045e5d436261d0a8b8022100fa7f690ae25528c0179ee5eeb19dc8269bf5e3cc5e9d15b283cce90fb68744bc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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