mijn.zibcv.nl
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:43:9f:53:88:88:3b:90:fa:67:2d:e1:21:0e:3b:87:c7:a6 was issued on by Let's Encrypt.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=mijn.zibcv.nl
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:43:9f:53:88:88:3b:90:fa:67:2d:e1:21:0e:3b:87:c7:a6Serial Number (int): 284347557360153848088362223311460294444966
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a3:28:da:05:87:e4:e1:d1:84:c1:d0:8d:31:b4:45:57:bf:e7:e9:62
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 06:94:0b:82:51:94:ab:10:58:43:ee:da:c0:de:8f:9e:4a:7c:50:d9
Fingerprint (sha256): 76:db:a4:dc:a3:1a:84:5f:38:ff:c1:08:c3:6d:ab:10:10:89:5a:c5:d4:9b:1f:5c:a2:77:08:d9:ed:cb:3d:88
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate mijn.zibcv.nl
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mijn.zibcv.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mijn.zibcv.nl
mijn.zibinvestments.nl
mijncv.zibinvestments.nl
test.mijn.zibinvestments.nl
test.mijncv.zibinvestments.nl
www.zibcv.nl
zibcv.nl
mijn.zibinvestments.nl
mijncv.zibinvestments.nl
test.mijn.zibinvestments.nl
test.mijncv.zibinvestments.nl
www.zibcv.nl
zibcv.nl
Other certificates including the domain name zibcv.nl
(limited to 100 certificates)
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
test.mijncv.zibinvestments.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
test.mijncv.zibinvestments.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
mijn.zibcv.nl
Certificate
The complete raw certificate details for mijn.zibcv.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF3DCCBMSgAwIBAgISA0OfU4iIO5D6Zy3hIQ47h8emMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMjAxODMyMzVaFw0y MDAzMTkxODMyMzVaMBgxFjAUBgNVBAMTDW1pam4uemliY3YubmwwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy7vo/pGsSoizU1vvyPE9c3fqs2y2zOQCF P9jBvtKDbQ1wKvUkDSlQMuM9CSnBtVxHIEioZWVbGvpcVkqse8OLeK+F0soRcaxm 7wqHm4JYnVUTue0aalJnTq6iewP8yWXpvVj+XKiLq2l1DNdqXOHgq8FEsf1j6Izt YA9pe865vXDqEqXuGKisds3VC4FXsEMIBGSs9/eOUlvsVARxGRg4l9hY1Z95pEEv /O/hagOfwHSY6IyfHNQlXe2lyokMnTTjlu1trPG7p4HhYrrRUQaM3BnCIkcNbeRL o/8mhoNTmDcyqv0soqI7yXsnjDn92zQ6ssYJe2SRhPLocOsJl1HPAgMBAAGjggLs MIIC6DAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFKMo2gWH5OHRhMHQjTG0RVe/5+li MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMw YTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9y ZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9y Zy8wgaAGA1UdEQSBmDCBlYINbWlqbi56aWJjdi5ubIIWbWlqbi56aWJpbnZlc3Rt ZW50cy5ubIIYbWlqbmN2LnppYmludmVzdG1lbnRzLm5sght0ZXN0Lm1pam4uemli aW52ZXN0bWVudHMubmyCHXRlc3QubWlqbmN2LnppYmludmVzdG1lbnRzLm5sggx3 d3cuemliY3YubmyCCHppYmN2Lm5sMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysG AQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQu b3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYAXqdz+d9WwOe1Nkh90EngMnqR mgyEoRIShBh1loFxRVgAAAFvJMwg8QAABAMARzBFAiEAw23j4rJKUwzxu2kRviWf g3chdOuX5fTUJAXaOCfLP6YCIFYqSPOfcfPy8BBUPUp7rHokTKYAGwVybc6d8NKQ EkRbAHcAB7dcG+V9aP/xsMYdIxXHuuZXfFeUt2ruvGE6GmnTohwAAAFvJMwhFAAA BAMASDBGAiEAqmhlxaWsrF7F5lnaqglOL80kHIdR5xkZ9A8G4w31hMoCIQCPGXHV tHMSS6XgA+P8WZ+8GKsoFSkY962CCzSzzmiLXzANBgkqhkiG9w0BAQsFAAOCAQEA Pf52ae1nhv00yVR5z+tyFc+0JneoJOzpGlB4Gu4x+AjxmZxnhHmsJAIweKUQj8D1 OuT/sIUMHHhOjW/XkUXzaTlfqPYY14mev5vezTgNmOfqs2hIEfraANYWOpeMwyxx sPqcE4tiZW7gt23CYRz0DN251eddfC5EnhKaMaUZykdIS05LiIlag80FkIt9HLBE 1Ej3Avqn4eEshjTKtPBOWTX8NicjrN7g9qgcLhmmGO5yG0U8sgcTG15TPz3nF+O3 Ap8e04DcFTqrZKsAWvJNrIDbFoFrlHW4rvx/nWvgxg6ntOro2rGuRUPo4K4zApCC 30G6bedvqh0a+WWN/SLWIg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsu76P6RrEqIs1Nb78jxP XN36rNstszkAhT/Ywb7Sg20NcCr1JA0pUDLjPQkpwbVcRyBIqGVlWxr6XFZKrHvD i3ivhdLKEXGsZu8Kh5uCWJ1VE7ntGmpSZ06uonsD/Mll6b1Y/lyoi6tpdQzXalzh 4KvBRLH9Y+iM7WAPaXvOub1w6hKl7hiorHbN1QuBV7BDCARkrPf3jlJb7FQEcRkY OJfYWNWfeaRBL/zv4WoDn8B0mOiMnxzUJV3tpcqJDJ0045btbazxu6eB4WK60VEG jNwZwiJHDW3kS6P/JoaDU5g3Mqr9LKKiO8l7J4w5/ds0OrLGCXtkkYTy6HDrCZdR zwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 284347557360153848088362223311460294444966 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-20 18:32:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-19 18:32:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mijn.zibcv.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22588262497892471260851390318985516150124168191969047100651215417864823347593160199115826398763227885439337004945285376530606844036673093131403311962561944122002011188775187094078382746205131407607813500913280845060357975091118016898035961389661882680403695966601855446629998407753485011064374521661527554714087079085802021318160923912633212383909163884783414879555169567953696250963410246151452318898014595451456846625554233668627671089849084630773336886247421118069608336396279765460080967008938783256390773256242044489558720682984664612150404483488371685181705888909208157767552718059812927626354384189087634903503 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a328da0587e4e1d184c1d08d31b44557bfe7e962 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (152 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mijn.zibcv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mijn.zibinvestments.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mijncv.zibinvestments.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.mijn.zibinvestments.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.mijncv.zibinvestments.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.zibcv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zibcv.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f24cc20f10000040300473045022100c36de3e2b24a530cf1bb6911be259f83772174eb97e5f4d42405da3827cb3fa60220562a48f39f71f3f2f010543d4a7bac7a244ca6001b05726dce9df0d29012445b00770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016f24cc21140000040300483046022100aa6865c5a5acac5ec5e659daaa094e2fcd241c8751e71919f40f06e30df584ca0221008f1971d5b473124ba5e003e3fc599fbc18ab28152918f7ad820b34b3ce688b5f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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