28295.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:38:68:65:7f:19:50:8c:45:e3:db:ab:7c:6c:bf:39:3d:28 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=28295.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:38:68:65:7f:19:50:8c:45:e3:db:ab:7c:6c:bf:39:3d:28Serial Number (int): 367643722986029535915882786580289447083304
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 8d:89:07:a2:2c:ce:a7:b0:e8:8e:c4:2c:67:de:46:bb:52:a8:79:2f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 4d:fb:03:70:8b:44:13:47:c5:b9:2d:e9:53:3e:96:5e:c6:05:dd:f7
Fingerprint (sha256): 7c:38:6c:3f:d6:9e:6b:7e:86:29:06:be:97:1b:f2:5e:b3:e7:2e:b7:62:a4:e8:97:0c:ae:ad:32:28:21:48:d3
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate 28295.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for 28295.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
28295.com
Other certificates including the domain name 28295.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for 28295.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSjCCBTKgAwIBAgISBDhoZX8ZUIxF49urfGy/OT0oMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMDgxMjQwNThaFw0y MDAyMDYxMjQwNThaMBQxEjAQBgNVBAMTCTI4Mjk1LmNvbTCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBAMpebYLij2AWVV3losHYLLaZhsdSA/oLphkiAV9g ELzJy/foGeXCtFf+DLTAm/atMYj1fgr/5niruucndWKn9wIeBlG6qA9x3c2QLc6l WKBbte/hv4mcW7RVWd4tpLpu3M81lWAHMvBN57bnZkoh7M7XS1ea5091CUz4/f7U 36Olye6gAmZoZ/E06++lZ9ConRed3ZOgewMPCuPe2hjGqHqGxnp6t7d4ScnnnqZ4 GEKLhatZUQOlla9AgmSvMJGWwDJnXvxVK0ok50L0VWC6+BjiTdn3lz9zLSAgfff5 pJez64QGw6fP94BLO4VcOIOcsWnlXPtpK/3Imc8V2AhWA18Sc6/RbYJ1gTGMKE5p V5CJAT39PtcLb2IfwtGmIjKuIaJW9tkHqR+tnVmRarH4sKJv9aLe+9ZoWSO6um8s VKWLMrjGZecAiWJS4VK6u7bovSzjgj6z7SRvAoWB7KBedfh4iTh2vJGS3cZTswqS xZLy5uUXYVrFXMRvMa08nQHFXRJYMVOgiZ46KnQEUuMRTZLcJEk2Y20ThtpLBhy2 oV5Zq7ug640Whntq8K9Aurovpk/CAy9aPrUnPm6qwTzmqZ/uIMDlGcUTWoFXp2l+ bqmQMZxdTx4Ql4HuQ4/97dSxmLcuS6JThTk8ufUKYraz6d2MK3N4epxeYHngZAVm dNDrAgMBAAGjggJeMIICWjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFI2JB6Iszqew 6I7ELGfeRrtSqHkvMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wFAYDVR0RBA0wC4IJMjgyOTUuY29tMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYA8JWk WfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMAAAFuSz8fzQAABAMARzBFAiAz 5r+i8Rp464OccXJwiADSOVdPxFZH4rUcuY8kC1mhqwIhALybGdhYywyGQO9Zn3da KITT3eukem1vTe3y67rSPg69AHYAB7dcG+V9aP/xsMYdIxXHuuZXfFeUt2ruvGE6 GmnTohwAAAFuSz8f8wAABAMARzBFAiEA0ul9AH4znbq/otlvX/CAkd4zrZKsMdLo 87zDBRTqopwCIBjR6PkTDWuwuadZf1m734UGaaXcFfz8Qu5lx7TEBDLlMA0GCSqG SIb3DQEBCwUAA4IBAQB4ijnOM3WR42QgG0fV4t151XtBqPEv3VtCZnN7h5J5V5Pn 0ge856gkcvtLvX3Gi4M8qcpvf0IBT9w8R6epdtJ2+nGXytXCcz7+AXBQBuiANc9/ O9lAJ4GYUpOsHc6L88aDeoWMNc+60VEaEVjI0hHX45VayFVFJY615XkrJ4k73vbq Cfl71NiMSvmGEORjUwpRQHG9stPC5XCKbQZJayqDaNhCNge+rNeGYgtPK/lWeT0L fWOvRVkRNYUceXQEUM3FTrxHReOkLEj2B06f67vcMPeSDgeiJZ6YzV5hr62UTJ4g TwDH/EavPuEBvQ7DsodiyWMy7VWxGVGLlHPnO/5m -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyl5tguKPYBZVXeWiwdgs tpmGx1ID+gumGSIBX2AQvMnL9+gZ5cK0V/4MtMCb9q0xiPV+Cv/meKu65yd1Yqf3 Ah4GUbqoD3HdzZAtzqVYoFu17+G/iZxbtFVZ3i2kum7czzWVYAcy8E3ntudmSiHs ztdLV5rnT3UJTPj9/tTfo6XJ7qACZmhn8TTr76Vn0KidF53dk6B7Aw8K497aGMao eobGenq3t3hJyeeepngYQouFq1lRA6WVr0CCZK8wkZbAMmde/FUrSiTnQvRVYLr4 GOJN2feXP3MtICB99/mkl7PrhAbDp8/3gEs7hVw4g5yxaeVc+2kr/ciZzxXYCFYD XxJzr9FtgnWBMYwoTmlXkIkBPf0+1wtvYh/C0aYiMq4holb22QepH62dWZFqsfiw om/1ot771mhZI7q6byxUpYsyuMZl5wCJYlLhUrq7tui9LOOCPrPtJG8ChYHsoF51 +HiJOHa8kZLdxlOzCpLFkvLm5RdhWsVcxG8xrTydAcVdElgxU6CJnjoqdARS4xFN ktwkSTZjbROG2ksGHLahXlmru6DrjRaGe2rwr0C6ui+mT8IDL1o+tSc+bqrBPOap n+4gwOUZxRNagVenaX5uqZAxnF1PHhCXge5Dj/3t1LGYty5LolOFOTy59QpitrPp 3Ywrc3h6nF5geeBkBWZ00OsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 367643722986029535915882786580289447083304 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-08 12:40:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-06 12:40:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '28295.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 825592913169722091817620264617236474611014156001911637903372962718621854132669115622170405574934481176453871944836882369153925287502058753543143729732450318862527708423038401713875087188094880029119333343204176570876507896558926891528779286909682581111539278645744848164847486235403684543079128696446577527261193184147525269474005824582952521806705005088521131326051325765898178916867585005830620614161812069628022737374995575628482941226259232216047702097549231288416467927553452842961376898800294857386194325124149708724127746002517295303917180358703552805134595389144470071420054745465407429696855250623948284394418125195978525331083660914608319245674549745782488857416848303986476879127952605356008941191361909019966739173604283107282603643776003714963444002203753356812915012570066226829603505192866712531278335738364361363081387175169683307705310835243550976457412201461385553275060014372514993276321517777511450445859654928667058048800560523809113585496664256874859012968628143961266744560225627223040685386340408239642437417933534628139661957307321884184912404116064031329315868043003030779487045686800623862621468338286053837217845651302877430929062503276446995119191131781768128143532831465938247032329101485569592595370219 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8d8907a22ccea7b0e88ec42c67de46bb52a8792f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '28295.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016e4b3f1fcd0000040300473045022033e6bfa2f11a78eb839c7172708800d239574fc45647e2b51cb98f240b59a1ab022100bc9b19d858cb0c8640ef599f775a2884d3ddeba47a6d6f4dedf2ebbad23e0ebd00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016e4b3f1ff30000040300473045022100d2e97d007e339dbabfa2d96f5ff08091de33ad92ac31d2e8f3bcc30514eaa29c022018d1e8f9130d6bb0b9a7597f59bbdf850669a5dc15fcfc42ee65c7b4c40432e5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00788a39ce337591e364201b47d5e2dd79d57b41a8f12fdd5b4266737b8792795793e7d207bce7a82472fb4bbd7dc68b833ca9ca6f7f42014fdc3c47a7a976d276fa7197cad5c2733efe01705006e88035cf7f3bd9402781985293ac1dce8bf3c6837a858c35cfbad1511a1158c8d211d7e3955ac85545258eb5e5792b27893bdef6ea09f97bd4d88c4af98610e463530a514071bdb2d3c2e5708a6d06496b2a8368d8423607beacd786620b4f2bf956793d0b7d63af45591135851c79740450cdc54ebc4745e3a42c48f6074e9febbbdc30f7920e07a2259e98cd5e61afad944c9e204f00c7fc46af3ee101bd0ec3b28762c96332ed55b119518b9473e73bfe66