jonathan.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:5a:bb:30:90:09:73:10:b5:be:6e:a6:a2:58:fd:fd:32:61 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=jonathan.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:5a:bb:30:90:09:73:10:b5:be:6e:a6:a2:58:fd:fd:32:61Serial Number (int): 292211088605041837957207271176373584867937
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 8f:ff:8e:25:69:28:82:81:a4:06:43:e3:9b:67:2c:13:93:e9:0c:81
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 10:6e:ac:e7:17:54:9c:f7:aa:b4:37:98:43:3d:8e:a9:1c:a1:46:91
Fingerprint (sha256): 77:b9:a5:db:b3:73:d9:0d:a6:37:7b:7a:d3:52:47:e4:7e:70:f5:36:98:9e:3b:42:dc:b1:11:55:f7:1e:b4:45
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate jonathan.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for jonathan.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
jonathan.org
Other certificates including the domain name jonathan.org
(limited to 100 certificates)
delimeister.com
www.jonathan.org
bio-nmn.com
www.rosaura.com
www.informationwork.com
jonathan.org
jonathan.org
jonathan.org
jonathan.org
jonathan.org
jonathan.org
jonathan.org
jonathan.org
www.jonathan.org
www.jonathan.org
www.jonathan.org
www.jonathan.org
jonathan.org
cryptoreport.org
www.jonathan.org
www.jonathan.org
bio-nmn.com
www.rosaura.com
www.informationwork.com
jonathan.org
jonathan.org
jonathan.org
jonathan.org
jonathan.org
jonathan.org
jonathan.org
jonathan.org
www.jonathan.org
www.jonathan.org
www.jonathan.org
www.jonathan.org
jonathan.org
cryptoreport.org
www.jonathan.org
Certificate
The complete raw certificate details for jonathan.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTzCCBTegAwIBAgISA1q7MJAJcxC1vm6molj9/TJhMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MjgyMDQ5MjVaFw0x OTExMjYyMDQ5MjVaMBcxFTATBgNVBAMTDGpvbmF0aGFuLm9yZzCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAKzb7UWUfv5vFxQVzrcKGfk9bbI4vdWoAikr p6dPlWb1fp6k/tPxZ12gfAw+Vomp7hwG51t+Ru119G6eMnLENAcZ6e0scl2yAHHI tXFeAWlVXZxY58cTR1WaHfZGxLHw5/MPVIXw/004ucnWh1B4SNf+uZJha80enCuf mn166vXd08ZsN/K8ODZK+nJdMiQDQsgmVSuyIgM8wGEY4gIPVSlgrnuwBJTsOH9N X/sl8oWEv7k0O4oju/7qZOURlv3OkqusI7HkK72ud4XdZUiER6JLakqK0ZQUGrda CFPRc92cO5JOn49/nkz9VxKSZvc9eNrdbDBgxX75HMqxmh3ou9dWd9Jinns7DdE0 GVZIH2bHlCwpAa6T5mPiuF9jyCutfdBPXJIBBSZoWS2Vcs4f87Gt+FfWOsnmYfeL Jn8L5w4O8zVIdQ0eGeW4OH3bogxHuMR1AUDcapjfQjBoG9aa4LcKiHd76/TXGi5S a2fhjHjIX05pAdtb7lHfrRYsBDrb5saOrOBNd8/HXSl6uwRkUgzwHwqT9Ez6xztU Njt/7Vtu4q6ZIHDb9pQA6zeZ2pvUiOR0sKOPQlU9NxGIRGiyCkAPhR8Cu8ZYkVYb ecvCPi/VD/yNVEIjFcJXZyTt6DnjtRjTLPZo3gK/BCzX9Y8gWZLMU92XdAACpbVj 33iLviVTAgMBAAGjggJgMIICXDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFI//jiVp KIKBpAZD45tnLBOT6QyBMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMam9uYXRoYW4ub3JnMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDv AHUAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFs2jRx5QAABAMA RjBEAiBIE/7VaMPglI48CFpLBunR3iaTDj1cX7YXIBB6SVA03AIgGil0ikhlxViT mgc58Bfdd8B139GIhazMBIRHzzAkkRwAdgApPFGWVMg5ZbqqUPxYB9S3b79Yeily 3KTDDPTlRUf0eAAAAWzaNHPIAAAEAwBHMEUCIQDJEUaORictmalCwMlCQKsP7OAb sGGFK8C3EnIJWRTqRgIgGpj/kUZdYFjEpyumBMy8UmMrmAqNvhhRR26Hc/UfSKww DQYJKoZIhvcNAQELBQADggEBADiy/Ho69wBsWxhmfoyD68jfz0lOVxdcXoibxEbQ x6F9ZAB9df/w+dsj0BLvsoumMtS4dWBGfbH0UsM/ImFfFNXBJ6A6SqBi6IQ5521O qA1Ww/lH/GDdQYUsOxRdwPNh7iy3pmKafgV3yh6odHbywpKF3Yt+WG81W4jF3NLU rnwUa2WhzdxA0CkTJJjeopzcGjhHAstn4WCA8spDzXhCxpDY/EP15+9gdWj1gscy 6ut4BptL1kwKbLTIepRwgmQYOGHFssAffu4mYK68awl4qjszbRBkmy0Jg+vGUXYz GlYkWNnjHM9b3RIHwHQXB80wBpAyJvc4ud46/vvP2hWghy0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArNvtRZR+/m8XFBXOtwoZ +T1tsji91agCKSunp0+VZvV+nqT+0/FnXaB8DD5WianuHAbnW35G7XX0bp4ycsQ0 Bxnp7SxyXbIAcci1cV4BaVVdnFjnxxNHVZod9kbEsfDn8w9UhfD/TTi5ydaHUHhI 1/65kmFrzR6cK5+afXrq9d3Txmw38rw4Nkr6cl0yJANCyCZVK7IiAzzAYRjiAg9V KWCue7AElOw4f01f+yXyhYS/uTQ7iiO7/upk5RGW/c6Sq6wjseQrva53hd1lSIRH oktqSorRlBQat1oIU9Fz3Zw7kk6fj3+eTP1XEpJm9z142t1sMGDFfvkcyrGaHei7 11Z30mKeezsN0TQZVkgfZseULCkBrpPmY+K4X2PIK6190E9ckgEFJmhZLZVyzh/z sa34V9Y6yeZh94smfwvnDg7zNUh1DR4Z5bg4fduiDEe4xHUBQNxqmN9CMGgb1prg twqId3vr9NcaLlJrZ+GMeMhfTmkB21vuUd+tFiwEOtvmxo6s4E13z8ddKXq7BGRS DPAfCpP0TPrHO1Q2O3/tW27irpkgcNv2lADrN5nam9SI5HSwo49CVT03EYhEaLIK QA+FHwK7xliRVht5y8I+L9UP/I1UQiMVwldnJO3oOeO1GNMs9mjeAr8ELNf1jyBZ ksxT3Zd0AAKltWPfeIu+JVMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 292211088605041837957207271176373584867937 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-28 20:49:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-26 20:49:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'jonathan.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 705203557981766380297198404774627329046146665329667436119746654492141224564759950407137271191921194346391619724295891181462030561485483011748980392873704687208398944585398061269325337202700288285746646489098352199905141399363552618371067093573234313145309475658561958632493005639585898043771189608629761945256970770466894168988898483339334332269774657880807841394035724654227763247209872055360879377983521791949376226676489095532719122035339158204011328494067007408519412965647086293336648854871722390987039007208136406365216293135548359629466816345222471935226725748993436899978804755619047703674644718285869088589398991908256169476857405455009742844709810543191123251306447846145182971786412541815633109666900705958885851966500851603362264650137957124356772985099098603441474981331395446710491470066440668068248257758610511413415325427087930176674402961789495418289514398890659760785914815301352400951030947830119633718967253020948317780180987002937283779359768049597185101601426164682432846141671686147104635303403288381185758187875812425660158301798796751472766521631188909987779839522016103053430919082350694556161760897578362631516255433576948405813435591809308592605023122116581631527392824880176897418035804589040108536997203 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8fff8e2569288281a40643e39b672c1393e90c81 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jonathan.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016cda3471e5000004030046304402204813fed568c3e0948e3c085a4b06e9d1de26930e3d5c5fb61720107a495034dc02201a29748a4865c558939a0739f017dd77c075dfd18885accc048447cf3024911c007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016cda3473c80000040300473045022100c911468e46272d99a942c0c94240ab0fece01bb061852bc0b71272095914ea4602201a98ff91465d6058c4a72ba604ccbc52632b980a8dbe1851476e8773f51f48ac . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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