deandrea.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:7e:12:ec:fc:be:5c:ff:b5:09:53:84:05:1d:76:b2:f0:51 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=deandrea.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:7e:12:ec:fc:be:5c:ff:b5:09:53:84:05:1d:76:b2:f0:51Serial Number (int): 304237592639551081791128609259157774856273
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: e3:a2:30:64:f1:7a:c7:f7:87:83:b5:50:a8:80:34:17:c6:7f:21:30
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e9:2c:be:3b:c4:a0:3f:d2:e1:31:78:1c:7b:7f:b6:30:43:a8:48:fc
Fingerprint (sha256): 79:65:ce:0c:ed:ae:4d:a3:ae:e0:88:76:b3:ec:0d:c2:82:d3:24:e7:95:e6:37:49:5b:2b:ba:38:14:f4:a2:4e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate deandrea.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for deandrea.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
deandrea.com
Other certificates including the domain name deandrea.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for deandrea.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUDCCBTigAwIBAgISA34S7Py+XP+1CVOEBR12svBRMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMDUxOTQxMzNaFw0y MDAzMDQxOTQxMzNaMBcxFTATBgNVBAMTDGRlYW5kcmVhLmNvbTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBANeYfOE5oBeGZXlmbP9dtD6BwZWSU5abg2uG +LkCYLiBJG38VGg/vhxyFU0YDlpl1w0MtD6Ic5yInJxWgjF2CFOHcrxSSsW4xkYn TigMUhy6qWtEC0rz/1/e3Yp4gmEBCtvAcsrvMiXuHrkKhUGVXyvEAdIOcS0h3GNG EaPxWqIVUQtyqvKm7VdHx2K0fuDiGp4yMNMl1BZwAyGGll3IPs+afeihIB7jWuCJ e3gjWhJ+CrLMW0Cbg/C/e6TdXn4Ej/uXixh5rDujmClvRBgk7ZGBlB7LUrRi8GuN R8y7/CphA0/+htZ46mfC2bO8VMfeHbUG9Ew/k+Ux27M7QdL9H2FeD3Cdl8DjiBfQ 0WHj3UCdOEXaSQzPXuGh2kaH4bUSt7FfD2jbWDNvSwcZwJwpvdXQOq+Uf9aMZt2m sYslarU+ihSGAuhGoHlaK7FPGuig9ZLc92fDXDPN3bJEHjdmYh9rqjPzyAw+SuHT znfzYeMmmrYJlNrlSwm9qFBBSzZw0l1S1T5lp2S9T+V16zsyj97IL9deOccHniGx FD8x7zsJ1OIWW1Zl0MFnNoNBJhYzciuPfTiKqORvDXbwL43QdlgM4jSJjS7o0UKM FbSn0c4vqKEUW829JfQHSTSj/uB72c3MtH0txVupXIdI/JZU9c5m0YZP+zkZNywb yKpnTRkRAgMBAAGjggJhMIICXTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFOOiMGTx esf3h4O1UKiANBfGfyEwMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMZGVhbmRyZWEuY29tMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHYA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMAAAFu18vgpwAABAMA RzBFAiEA41L21hnwYa2H4EvBd2PsyZ3IPY3dCVrgeaBS1j1/EcYCICQu/M8WtMk8 tPnR+pMmllMtpd7uppSXRTgaF0Sszna+AHYAsh4FzIuizYogTodm+Su5iiUgZ2va +nDnsklTLe+LkF4AAAFu18vgmwAABAMARzBFAiEA2V5GDE5ZGzySrdHKCYZBlcaU DHQx2Ud59pK02hFq9rUCID7/qDc/6v3gXtYdMmcgDOfGgOcerBrEVj+Xv08ME/ig MA0GCSqGSIb3DQEBCwUAA4IBAQCSZKyDHly6PXig7i8hXTB7KzVFJXAWUUgqe2fk +7dQ3HTqLRcMVUMDNatf3kDjRRYIgMZB2RQU4oXIrcCwyCvzi1+P6LdtlYj0o+ZW koPZRdtdN8bZ+YSpeX3z9OHfzX6ren7FcTPx01zWJs2d3jYIP5OaskyN+ofsge5s VgguOD4PNmZsoN1UlGXtiRfYvftNAwdIH7As5+5vgvW2JPi2gQyBTfoFTiAJutgb nxRygtZ84q/C9EmHROVkOFGhxaXwpRW+oEqCoO7IL5AXFt8uaPH5/SPwLYpfpW49 f6G5xsQAPTxqc44AenQ6i6PLJW2/F2Kaul2OoXSSOGpL4aqz -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA15h84TmgF4ZleWZs/120 PoHBlZJTlpuDa4b4uQJguIEkbfxUaD++HHIVTRgOWmXXDQy0PohznIicnFaCMXYI U4dyvFJKxbjGRidOKAxSHLqpa0QLSvP/X97diniCYQEK28Byyu8yJe4euQqFQZVf K8QB0g5xLSHcY0YRo/FaohVRC3Kq8qbtV0fHYrR+4OIanjIw0yXUFnADIYaWXcg+ z5p96KEgHuNa4Il7eCNaEn4KssxbQJuD8L97pN1efgSP+5eLGHmsO6OYKW9EGCTt kYGUHstStGLwa41HzLv8KmEDT/6G1njqZ8LZs7xUx94dtQb0TD+T5THbsztB0v0f YV4PcJ2XwOOIF9DRYePdQJ04RdpJDM9e4aHaRofhtRK3sV8PaNtYM29LBxnAnCm9 1dA6r5R/1oxm3aaxiyVqtT6KFIYC6EageVorsU8a6KD1ktz3Z8NcM83dskQeN2Zi H2uqM/PIDD5K4dPOd/Nh4yaatgmU2uVLCb2oUEFLNnDSXVLVPmWnZL1P5XXrOzKP 3sgv1145xweeIbEUPzHvOwnU4hZbVmXQwWc2g0EmFjNyK499OIqo5G8NdvAvjdB2 WAziNImNLujRQowVtKfRzi+ooRRbzb0l9AdJNKP+4HvZzcy0fS3FW6lch0j8llT1 zmbRhk/7ORk3LBvIqmdNGRECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 304237592639551081791128609259157774856273 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-05 19:41:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-04 19:41:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'deandrea.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 879553537109848328839792591797700652615448617062600379565360326489383818070469061722430153138565911315201030052915682019690123757294060460541571020802258139428154755147291462340372601102898566263846529328857582639101903208313296886525262604934083565628244282466105475163586841484597602121837665893630813182943111298314069821562777458427949292275481624615413924959925935426964438005614752939271335537775056435339353868061205866998714159680750514497981245193896973508732203326671780652022560349531596795830258238363856926428768150898812350223054470540535539323256793069557669566277645985852816507544892314146919024379630682919744179661664081809418248561883894903069831553479277024162395082674690943644747949820268459569470677072439481897613609118382542182644158200440396377420797906943502435162601870393698905437587387555301868461599922787192039950743408289667219570716375432298144464550987436377054146598640619249027141950750027188552653003720719289764511126248597152762301133328111737748635973052387843212094748464153430474157602451127170090733752189045870680968355756632391379422430219967935370016566562089252825082948603355851378090341519804984127354011123446692717848805774013763589185772786301525245867281082533768229465344514321 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e3a23064f17ac7f78783b550a8803417c67f2130 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'deandrea.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016ed7cbe0a70000040300473045022100e352f6d619f061ad87e04bc17763ecc99dc83d8ddd095ae079a052d63d7f11c60220242efccf16b4c93cb4f9d1fa932696532da5deeea6949745381a1744acce76be007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016ed7cbe09b0000040300473045022100d95e460c4e591b3c92add1ca09864195c6940c7431d94779f692b4da116af6b502203effa8373feafde05ed61d3267200ce7c680e71eac1ac4563f97bf4f0c13f8a0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 009264ac831e5cba3d78a0ee2f215d307b2b354525701651482a7b67e4fbb750dc74ea2d170c55430335ab5fde40e345160880c641d91414e285c8adc0b0c82bf38b5f8fe8b76d9588f4a3e6569283d945db5d37c6d9f984a9797df3f4e1dfcd7eab7a7ec57133f1d35cd626cd9dde36083f939ab24c8dfa87ec81ee6c56082e383e0f36666ca0dd549465ed8917d8bdfb4d0307481fb02ce7ee6f82f5b624f8b6810c814dfa054e2009bad81b9f147282d67ce2afc2f4498744e5643851a1c5a5f0a515bea04a82a0eec82f901716df2e68f1f9fd23f02d8a5fa56e3d7fa1b9c6c4003d3c6a738e007a743a8ba3cb256dbf17629aba5d8ea17492386a4be1aab3