travelalberta.cn

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:be:9e:00:42:08:e8:a4:66:f1:17:17:0b:67:71:5f:ea:b9 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=travelalberta.cn

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:be:9e:00:42:08:e8:a4:66:f1:17:17:0b:67:71:5f:ea:b9
Serial Number (int): 326200526872937923119197717357148040587961
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: a2:fb:43:8e:95:55:75:ff:2a:b1:4a:eb:c7:a1:8b:02:9e:9e:7f:67
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 7a:53:37:bb:f0:ae:ce:5b:37:e0:3d:91:bb:81:8e:dc:5a:a4:db:67
Fingerprint (sha256): 76:e7:cb:4e:46:16:b9:09:4d:7e:7a:c2:b0:a1:aa:66:15:59:54:fc:9d:af:d6:49:44:e0:14:df:17:a5:30:49

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate travelalberta.cn

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for travelalberta.cn

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

travelalberta.cn

Other certificates including the domain name travelalberta.cn

(limited to 100 certificates)
www.travelalberta.cn
travelalberta.cn
travelalberta.cn
www.travelalberta.cn
www.travelalberta.cn
www.travelalberta.cn
www.travelalberta.cn
travelalberta.cn
www.travelalberta.cn
www.travelalberta.cn
www.travelalberta.cn
www.travelalberta.cn
travelalberta.cn
travelalberta.cn

Certificate

The complete raw certificate details for travelalberta.cn in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAphhf7GL95HWEn1yRgwg8
LI+pfuEAZB4jq8LiZaXf9wVdYUAJZkXQrTwtr0KHQYGuR57LUI4bzzCAiX/C7XT7
7x/OMq5QjINWJ4od1k7lJZVBjvR2W6eW5YaLgfEaPzJnuhhFnGAjZ5WGya4ekLCO
9pjU4e7bc55lUtReqdrbWW4oyeO4XuANM1mW8iiuzNz0rX7WZSvdvlCs08ZtCQx/
O0Z+U/3Zt+RVgtkM79or0PUS7LMsD9hK6BMX7hhbBPsPf1FqVIY9g7dezCkm5JTN
aouIVb3nGf5Vm9Q8hmCdymokXgHFK13USfTXwSkBCOgliPd9vfyrl6wdGKv/DAyo
CwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 326200526872937923119197717357148040587961
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-28 14:50:40 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-26 14:50:40 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'travelalberta.cn'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20967578237270133382508249491124535744045796745552915233657669213075328198775916989626905057303570473827740552539639205048804053680172863116969413321592300964471839754707119259505148512195577438507385556409141035450014947504120442853814605279878836092614991676689605160226000849667842979913518736953120308380156917238490689205838387275368621379445673014549529236329724582652050511916020215089515436773194886087482623695345258411272578389752226596478073677709216946927748282744515566522927481077590173981677661205765366023044955762278868114284193535745846786240377836485246247376550564222432998645936222685071227529227
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a2fb438e955575ff2ab14aebc7a18b029e9e7f67
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'travelalberta.cn'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016eb2b510b10000040300473045022100cabd2326140bbb61b99dcc0a75ae6a495a15a64a9ce52055ab7c2c7e74bec0900220687e03ebb04db4edd59929a425506b4cf4f03f8b6c00448c6e7f0a4baaef0afd00770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016eb2b510ae0000040300483046022100d3f563082c3e1bcbc52238b0032374e4e83c51d1bf6325e9396565b7a3a2e2fa022100d8aad85c7e7efd2be3c845ea936781552a471f852f4da41e48359cf17ab11d9d
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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