nfgco.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:d1:11:ff:8a:50:8c:5b:0d:3d:62:dd:60:8b:0c:88:f0:5e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=nfgco.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:d1:11:ff:8a:50:8c:5b:0d:3d:62:dd:60:8b:0c:88:f0:5eSerial Number (int): 419592082130498611682444909335177050255454
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e5:06:f0:58:8c:10:83:28:40:d4:51:24:44:ed:f5:be:98:74:6b:1a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 11:f3:33:2d:3d:db:c1:15:bf:07:52:be:ea:7e:ae:50:c9:ee:94:4d
Fingerprint (sha256): 78:cb:8d:44:84:c9:8d:a8:85:e1:39:80:5e:8d:c4:96:38:c0:87:fa:f1:a7:14:93:99:62:a4:af:1d:97:82:44
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate nfgco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nfgco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
nfgco.com
Other certificates including the domain name nfgco.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for nfgco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSjCCBTKgAwIBAgISBNER/4pQjFsNPWLdYIsMiPBeMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMTgwODAyMThaFw0y MDAzMTcwODAyMThaMBQxEjAQBgNVBAMTCW5mZ2NvLmNvbTCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBAOjeTkdkP94fgSH+K8NI8TBdf6IXQN5SjFj/uzvu w/ps7Kx+oAEHT9zjaav/6HVr6r8VkG3moeFyV/UJNM7+BTT9zhoqjAq+9T1ZHLf0 BnNKQ/KE+77oJg2h79WZm0m4RGQ7mldT/dhdDIkoPxWjn8QZvjADPDnmmMZqFTuD R4rn1Dpkf5I1hdb2alyQx1B2gLU7NhGitrOHpyrBvlffhVLwe8E7mQ1zBlDUQpPt U42E6cVGCjZTWCDr6DBtSOzm/7t/viFZ80ZuLPZ/SPkaeWdNI6nRrtWbAPwgKKf2 qqFttRcREiX3pfpl/WCxW4By2MleYXSmZ7ouqBJ4Cv9ZA8BO+BUgnUoIFL0scfsj 7E2E0sJM05tzUPn7asEw6i0yzxJDBzJOQdIC5oEiinw341ES5N0FIXwgD2JokP2t VSrx3mmMUq6ZuG0h/7u9xA/ep5BUQBf8nhccThv3Nqw8RdXgQYVh2vNKoRmbBJOB Np/UKpOyCKpUJxqmnzrxbbxDCDp1D2li4Y5kFC8/ivlH3Ae/GFndM4ssmXUJJ62o QkRvZqTKe/t4pqkvKDMTqxFdCIggR77Zk3snb3i3he0a4h5AE9WFce2BA0WREIp+ iptcA9WbYh9A8XBvtAGA3pefblDE4b8Ei+Zplam+YXh8YQ8xwz+YbBlhszN33eKZ LfvHAgMBAAGjggJeMIICWjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFOUG8FiMEIMo QNRRJETt9b6YdGsaMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wFAYDVR0RBA0wC4IJbmZnY28uY29tMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYA8JWk WfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMAAAFvGD5eoAAABAMARzBFAiA/ /lCgQCLcmo4NYqpyP6YBrkBOKE2Ghx+fgOZFupVDkgIhAIcFYRSbzI2dgmfOwf9l Dqrq8oXuRXruxM3ioq26a6TWAHYAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklT Le+LkF4AAAFvGD5emgAABAMARzBFAiAlwcTzf5ZCGf4Ec2s5A6k+8ZnrUEdSWYG3 wiiHT68qVQIhANmYYq3xzoQiKJ8uWtvopnXxCOpVBDdCbVfX3YvJ0GWEMA0GCSqG SIb3DQEBCwUAA4IBAQAJWFNK0xH2IOhR7kfP2jjCF/lj4oW5dWdx+0RJTo00FJEa LOmAyvRO64sRcWyQsaksxBE7UvIncVajJC+ihOhCcDZFJCS2w13AFRDGNFlZ639h HA9U2J8QkvBe6B1LosJ3BLoXpsX1bMR2BoZ9MxJeReYIdAWF1vQLQpbv7WzkrWPg F9Tc6MUPrqNWbrDroHIc6CRRQIxLO+a/v8ablToV67l43WhB6WzuHrOPwbuGG2O6 toc7qVRawRyhLDh5Pgi8ifmqrzGrFbOZRbf1/+HJXXvRpgC2c0SsRKK0R++8ETDl ylNnPYY1FEXEY5tuw3rWZke5t0CdRWca3kDUfv2K -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6N5OR2Q/3h+BIf4rw0jx MF1/ohdA3lKMWP+7O+7D+mzsrH6gAQdP3ONpq//odWvqvxWQbeah4XJX9Qk0zv4F NP3OGiqMCr71PVkct/QGc0pD8oT7vugmDaHv1ZmbSbhEZDuaV1P92F0MiSg/FaOf xBm+MAM8OeaYxmoVO4NHiufUOmR/kjWF1vZqXJDHUHaAtTs2EaK2s4enKsG+V9+F UvB7wTuZDXMGUNRCk+1TjYTpxUYKNlNYIOvoMG1I7Ob/u3++IVnzRm4s9n9I+Rp5 Z00jqdGu1ZsA/CAop/aqoW21FxESJfel+mX9YLFbgHLYyV5hdKZnui6oEngK/1kD wE74FSCdSggUvSxx+yPsTYTSwkzTm3NQ+ftqwTDqLTLPEkMHMk5B0gLmgSKKfDfj URLk3QUhfCAPYmiQ/a1VKvHeaYxSrpm4bSH/u73ED96nkFRAF/yeFxxOG/c2rDxF 1eBBhWHa80qhGZsEk4E2n9Qqk7IIqlQnGqafOvFtvEMIOnUPaWLhjmQULz+K+Ufc B78YWd0ziyyZdQknrahCRG9mpMp7+3imqS8oMxOrEV0IiCBHvtmTeydveLeF7Rri HkAT1YVx7YEDRZEQin6Km1wD1ZtiH0DxcG+0AYDel59uUMThvwSL5mmVqb5heHxh DzHDP5hsGWGzM3fd4pkt+8cCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 419592082130498611682444909335177050255454 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-18 08:02:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-17 08:02:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nfgco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 950020113014302625285334907901824474998426414644156562963422703819483432302408982348527776507928387728483839672043619008815465634642691183904765230441046522325626234000655020571041742947598067616014286590558909239861554452149541553710009834849390368265205437768986631661943431129832819107386992170291525298054722368912953693713827832117457807630004145998176713538255471237269893177425585114849048657686673636247687643219361639137282417955877764019228445357313438049719629564617440865167887075849800109313685668971378430521698466188271091837453290009999682791135456317280399405776405341337231098877768628566446354754849576534979073839196625345225026701755287330859939975031086615801820085418182773513980684905660424992192710766666206358303483237514050468797645560787847024922317013330555505478166144253715518346624047884854360848224682459357014409423812327359074803599901523570172393223961794445579713194182060759007802367859572825254131303972483909145645514254221206677850515743394170299551448179552856322236253648331316643849379494139875080247371385529929609431886668255258901975883556719282792511494520453202159902581672953293509490294373269979280980251348432602759981375510322629993762521988237313406948917384100661160114175998919 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e506f0588c10832840d4512444edf5be98746b1a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nfgco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016f183e5ea0000004030047304502203ffe50a04022dc9a8e0d62aa723fa601ae404e284d86871f9f80e645ba954392022100870561149bcc8d9d8267cec1ff650eaaeaf285ee457aeec4cde2a2adba6ba4d6007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f183e5e9a0000040300473045022025c1c4f37f964219fe04736b3903a93ef199eb5047525981b7c228874faf2a55022100d99862adf1ce8422289f2e5adbe8a675f108ea550437426d57d7dd8bc9d06584 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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