saintjacob.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:49:6b:6e:a1:0b:b4:32:e6:25:42:dc:5e:67:1b:fb:f9:16 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=saintjacob.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:49:6b:6e:a1:0b:b4:32:e6:25:42:dc:5e:67:1b:fb:f9:16Serial Number (int): 286320272395107897412604197793272889604374
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 5f:54:52:6a:2a:fd:ec:c3:0d:73:7f:e7:cd:c4:b3:de:e7:a8:57:c0
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): f9:43:63:7b:24:c4:b7:fc:4b:73:fa:e2:93:4e:f2:57:9a:9b:8f:0c
Fingerprint (sha256): 7d:25:8b:e5:6b:19:e4:63:77:e5:19:ec:c8:d6:11:ea:5a:e7:3d:b2:4c:ce:5a:d2:bf:6b:3e:57:a6:84:62:b2
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate saintjacob.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for saintjacob.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
saintjacob.com
Other certificates including the domain name saintjacob.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for saintjacob.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVTCCBT2gAwIBAgISA0lrbqELtDLmJULcXmcb+/kWMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MjcxMzQzNDRaFw0x OTA5MjUxMzQzNDRaMBkxFzAVBgNVBAMTDnNhaW50amFjb2IuY29tMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAv2MqyejUY8EMLD5fxWnTGGCve0imbXHk s1nZuuae7d+Oth0VHrebBiK4SzNBJmbUHnQ/Wdpnah2AOqpWRFqCHQsyyX2v82DS C2iEhUkoXJkSrTrt+4tOwZRdhARscnXtfRjLVj0u1DYpIt93zE3MuakL3CG/wb81 C5cRz3wk83uQgzqdjP3I1yndb9F9mCK67DUiAsDYN2SLrp0WkCs0XV4xyf+i+lHi hvf1xoV95KsRyCNaHZL2wncKXXu0hzXAz3a5Jt5YhfH5XP41iJVVUKsFhFNmncyB Ddq3YxvTSaMSzTgC9Dsz0EBBe78HGr2aX4yYYQaJ2Idpt9QFEAFSdSyMb92XTewZ cDzBWG196Mx8C+lHgqPXoMCwaOmpthaIIrYx4tQgx2Fm4RdefocsQVX0YidckOOL RFtRzp+ZM+7WliLGFJAyfmkik9qDPthOyh3Uk2/F1t41vucpV+q1EgqNewbHANC4 KcYocW4Da8x512gktZWuZODz1SQHc+0T2Fmu5VaCKLzlzua+Y08dMxbWcWeWd20V cDEGr3LM37bKLBGeMxiTXOwJEMMcI7IcoUMOQ0VbvSLkecgg+6Me7PPkV+AFHp5k 5Mj0EkP0LtCfQLOVm8JCBJCLYzucfsfshWC8krlwQ5WYgNegBSjMFisSBa5R1aq3 +ymp/9/92HkCAwEAAaOCAmQwggJgMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUX1RS air97MMNc3/nzcSz3ueoV8AwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAZBgNVHREEEjAQgg5zYWludGphY29iLmNvbTBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQUGCisGAQQB1nkCBAIEgfYE gfMA8QB3AOJpS64m6OlACeiGG7Y7g9Q+5/50iPukjyiTAZ3d8dv+AAABa5lkbW4A AAQDAEgwRgIhAPXMhS83r33DaymK3K9/7lZ890EAtuYnMQwC5dlqr5PYAiEA6UFC zCYPK13nfCZcHhxRLFWaf85CaiisFFP2qKjk55IAdgApPFGWVMg5ZbqqUPxYB9S3 b79Yeily3KTDDPTlRUf0eAAAAWuZZG+GAAAEAwBHMEUCIHvBJQFepxkZXDTTOFz+ jBlGZGu5NYLmLW48optjx11LAiEAl6UBDi08Hg1RNOstkifa0L3txUpePD40Qnrj IBBYWvEwDQYJKoZIhvcNAQELBQADggEBAHfi/0q8HcRxZZnbmSNtp6kcT8zXQ9Xo L6w0ATYb/ps+jcaC/UglgPhiv7ME0gi+8OQaNMCS7nMcJvHD2+jg7Qsm0k/9E1HQ NWv4nX13eEpSC28ErNd/7lxn3mRYGuX3uinlMYVBS04BBBYH1OSSQkcjwuTgq3aG rtHknxIcoUANS+LtUFZa26R4p9RMwqhWtgxNUxlCqycAJKlYvQ1ynfsQjaMyNWaN NPENwwcQ9hlY7BZMkY0Txo895cfDUmiqZZOUrvs2c6DDVgG2WEBRLtREzmjT1GhN 3obxgG3F2wLKiXVo2VhpqARQhF8HrSHsEUa2uvsdcANWQAfnvdivFf4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAv2MqyejUY8EMLD5fxWnT GGCve0imbXHks1nZuuae7d+Oth0VHrebBiK4SzNBJmbUHnQ/Wdpnah2AOqpWRFqC HQsyyX2v82DSC2iEhUkoXJkSrTrt+4tOwZRdhARscnXtfRjLVj0u1DYpIt93zE3M uakL3CG/wb81C5cRz3wk83uQgzqdjP3I1yndb9F9mCK67DUiAsDYN2SLrp0WkCs0 XV4xyf+i+lHihvf1xoV95KsRyCNaHZL2wncKXXu0hzXAz3a5Jt5YhfH5XP41iJVV UKsFhFNmncyBDdq3YxvTSaMSzTgC9Dsz0EBBe78HGr2aX4yYYQaJ2Idpt9QFEAFS dSyMb92XTewZcDzBWG196Mx8C+lHgqPXoMCwaOmpthaIIrYx4tQgx2Fm4Rdefocs QVX0YidckOOLRFtRzp+ZM+7WliLGFJAyfmkik9qDPthOyh3Uk2/F1t41vucpV+q1 EgqNewbHANC4KcYocW4Da8x512gktZWuZODz1SQHc+0T2Fmu5VaCKLzlzua+Y08d MxbWcWeWd20VcDEGr3LM37bKLBGeMxiTXOwJEMMcI7IcoUMOQ0VbvSLkecgg+6Me 7PPkV+AFHp5k5Mj0EkP0LtCfQLOVm8JCBJCLYzucfsfshWC8krlwQ5WYgNegBSjM FisSBa5R1aq3+ymp/9/92HkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 286320272395107897412604197793272889604374 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-27 13:43:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-25 13:43:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'saintjacob.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 780792355461731673324118802645491995778564667823579609329388483000339316512095632605800592387526087482146061748290158396160820144458979582348137285250162436301012459654680318627170167440876459050197434134408381683660347457168305752548323063671642126093227340708029161970824985429710102847723761149338095121694593508491295780593567610640477062261168710598852906935091927294993916197734853506440424144875905610704337871592924990528767933560644329155799383343376772815937758005285720423551976701777021476573032686108808507505641495445518473610109046781046499087437106766665560008645108093801299230307332424170731925957860156903963792492775697381819993781676617004484803112715717686875048501467290248660776478923610303002957834598535384580283191565463952891721801761382456138787113317444918791963267722180891832190078137281546808221013876425925807801228136696635111135484955868990901370545023056378609350430822991464582717607042244284244436577612940928176945666266488487348577382571362896995505866768523315418334639024525067649695749609586074612514359839748240103480714485444286312302585005709298542265171357803729810165633767868392688612999799172510364918809642997991200120877021683658491088958685701102438023385641042520250584745760889 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5f54526a2afdecc30d737fe7cdc4b3dee7a857c0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saintjacob.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016b99646d6e0000040300483046022100f5cc852f37af7dc36b298adcaf7fee567cf74100b6e627310c02e5d96aaf93d8022100e94142cc260f2b5de77c265c1e1c512c559a7fce426a28ac1453f6a8a8e4e792007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016b99646f86000004030047304502207bc125015ea719195c34d3385cfe8c1946646bb93582e62d6e3ca29b63c75d4b02210097a5010e2d3c1e0d5134eb2d9227dad0bdedc54a5e3c3e34427ae32010585af1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0077e2ff4abc1dc4716599db99236da7a91c4fccd743d5e82fac3401361bfe9b3e8dc682fd482580f862bfb304d208bef0e41a34c092ee731c26f1c3dbe8e0ed0b26d24ffd1351d0356bf89d7d77784a520b6f04acd77fee5c67de64581ae5f7ba29e53185414b4e01041607d4e492424723c2e4e0ab7686aed1e49f121ca1400d4be2ed50565adba478a7d44cc2a856b60c4d531942ab270024a958bd0d729dfb108da33235668d34f10dc30710f61958ec164c918d13c68f3de5c7c35268aa659394aefb3673a0c35601b65840512ed444ce68d3d4684dde86f1806dc5db02ca897568d95869a80450845f07ad21ec1146b6bafb1d7003564007e7bdd8af15fe