www.mgpco.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:91:90:17:61:97:8a:f3:93:8e:a7:c2:54:55:1a:33:32:8c was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.mgpco.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:91:90:17:61:97:8a:f3:93:8e:a7:c2:54:55:1a:33:32:8cSerial Number (int): 310869331232437778819809478034561210462860
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3d:40:45:de:9c:96:e7:ea:cf:92:8a:85:aa:c0:b9:7d:75:84:8f:ba
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 51:5d:e1:14:1c:6e:c2:71:bd:ac:45:54:34:a5:69:73:6f:dd:12:ba
Fingerprint (sha256): 7f:02:28:79:e7:64:e2:59:a7:b5:c5:49:1f:a7:89:1a:a6:43:99:d8:46:7a:97:0c:7e:6c:ab:0e:75:2b:df:f4
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.mgpco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.mgpco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.mgpco.com
Other certificates including the domain name mgpco.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.mgpco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUDCCBTigAwIBAgISA5GQF2GXivOTjqfCVFUaMzKMMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMDExODM4MjVaFw0y MDAzMzExODM4MjVaMBgxFjAUBgNVBAMTDXd3dy5tZ3Bjby5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQCe5x0QY21DC5e2QyLVqLYXzcXnqA6ord+/ 7fQBD8OZe+J9MkWjZeZ3YsAKhGqMnF2wPNMkHFrcQ0DZz6RmHIVIJXtbNa11hLr6 ImkwralhQFAbrsNUVssMzyIXFBQDI50nAaE39SE0AEBzySNO6ULa4fUZso7ecCoy 3m3wYdcIEguj8NFxYhjEGZBSf1ck59YLR0qrVNKD3ZirOuS4EtHu4OIktMiWDj1u VL3IZ0uB+mYZcvqDf6PkIYVu613w3/9N+RmyeEYNif6diU2ixbrP5UD7+fEKazBr aqrU9yKU0hG8WP6Jl5aXervEBBvXmLfZxWwr+58lur9An8xTdHjbIYSQvydtEFmu GpuEsYyYtvhGU4AguQqhf9mNYAZ8oUFEWNEkGXT55MnqWKzOfsGPSc0U63wZqP6S DXLWTXWaYsBRZ9B+7htveEKwDwgZ7oqlKiRD3d4mdEDo133O+o5Jnll0nmTeWslF jdlXbLWPv5Pf7g7FBK5GHcIkZGUYZcsBvHGbkqJO57uSReNAQU7tpcGA/9i73jjo JJPhoMnDWT6sm1VQnU6xiSkS1ZAdY/6+k0+I5FVBCiPGiAzliZRflQ1/aknT9xao x+FK+8OH9XI3ck6fArCrd3cNyt2urUFu3HBkerBOPZZiWgl0c+YY3+ymPFbtd8sg Q6lxJVXYDwIDAQABo4ICYDCCAlwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ9QEXe nJbn6s+SioWqwLl9dYSPujAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXd3dy5tZ3Bjby5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggECBgorBgEEAdZ5AgQCBIHzBIHw AO4AdQCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAW9inchtAAAE AwBGMEQCIAgCjkpgfGRm+Kb0r0JUoDbVusng1zi9os96XN4G5oLRAiBL+l+WA6r4 aNv6eMUtsLQ815hR3POgImZCsqaLxM4UDgB1APCVpFnyANGCQBAtL5OIjq1L/h1H 45nh0DSmsKiqjrJzAAABb2KdyH8AAAQDAEYwRAIgR+TAWqP+jnexh8Fcfg2IoBdY 4NA6fix0pT7ClVrOho0CICD5xJlI99qZBCmIk5PMBGjfTuAt0E3y2sHoDJ0Po3Qo MA0GCSqGSIb3DQEBCwUAA4IBAQCNhGpKEQ3kjNxwrYjjV2td/XzgcxRMNcT4TRkW zSoCDpkuCNj1hdBFFJrD6ticYEjd5M5KIwFA3l/wwA57eic5BjIOtn1bfTXWjB/k rmdggxSWSE2nHo7nP6ssiOxFK3qmsUVNFYTbXMA6IBxoA6EGc/pcew9lKcWBBgDF TM51cTON/mB2v4ASmpez8wY5q6taTVTbWZpHPJR3e7vZwJPaq+cTV/546T7TfMKb nDnsuZHQozLGYPOMyJ1/1nBFV9LQywscaAZA/DjVhBC4XBwPmV58Kbba3EnkR1Ru bE21q98aM2vEYiblue0RDrqjTD6MOcvTO4w3LlIJwye2mG2P -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnucdEGNtQwuXtkMi1ai2 F83F56gOqK3fv+30AQ/DmXvifTJFo2Xmd2LACoRqjJxdsDzTJBxa3ENA2c+kZhyF SCV7WzWtdYS6+iJpMK2pYUBQG67DVFbLDM8iFxQUAyOdJwGhN/UhNABAc8kjTulC 2uH1GbKO3nAqMt5t8GHXCBILo/DRcWIYxBmQUn9XJOfWC0dKq1TSg92YqzrkuBLR 7uDiJLTIlg49blS9yGdLgfpmGXL6g3+j5CGFbutd8N//TfkZsnhGDYn+nYlNosW6 z+VA+/nxCmswa2qq1PcilNIRvFj+iZeWl3q7xAQb15i32cVsK/ufJbq/QJ/MU3R4 2yGEkL8nbRBZrhqbhLGMmLb4RlOAILkKoX/ZjWAGfKFBRFjRJBl0+eTJ6liszn7B j0nNFOt8Gaj+kg1y1k11mmLAUWfQfu4bb3hCsA8IGe6KpSokQ93eJnRA6Nd9zvqO SZ5ZdJ5k3lrJRY3ZV2y1j7+T3+4OxQSuRh3CJGRlGGXLAbxxm5KiTue7kkXjQEFO 7aXBgP/Yu9446CST4aDJw1k+rJtVUJ1OsYkpEtWQHWP+vpNPiORVQQojxogM5YmU X5UNf2pJ0/cWqMfhSvvDh/VyN3JOnwKwq3d3Dcrdrq1BbtxwZHqwTj2WYloJdHPm GN/spjxW7XfLIEOpcSVV2A8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 310869331232437778819809478034561210462860 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-01 18:38:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-31 18:38:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.mgpco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 648266813321696759093987611923269489902399374063147343816675890576423570384572113780596645630084537475551315249117350006460243083820093592674749406583240419979503156279809479955334958873305921061830394944109911135667415301118713543638957930181321140155378645164764702288991185435435376656407303080791297285062109633401823535766295082498011995101212041164086427639168775052458021412065076022578541027146367393867606158356828967676894914538131311687034599538094634776289670246097261517355564828829895982558163513781629740625458821218357608015815815727419964727673846878319307237880574804716487032367166018381171118094820080913942847630073532555249406506223303202939589086116549332423308608942370493921729510473598010283081083867486016813434682222953953167014032002051386990286377247808480829899336066583256212852203886932463816257326483469575577789513530120793096841194700033506690466510726562389988796262089393134218328875554935544388547262296103783703576629297659122057252580298747520311704783470459863584155817228802767379024459324703471677798911302850032861380165056120771026399101254493429991367816763613634835372305603322834862838662213368670688666405324864835179823090442320049635068115622098903422745162766952493456557883119631 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3d4045de9c96e7eacf928a85aac0b97d75848fba . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mgpco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f629dc86d0000040300463044022008028e4a607c6466f8a6f4af4254a036d5bac9e0d738bda2cf7a5cde06e682d102204bfa5f9603aaf868dbfa78c52db0b43cd79851dcf3a0226642b2a68bc4ce140e007500f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016f629dc87f0000040300463044022047e4c05aa3fe8e77b187c15c7e0d88a01758e0d03a7e2c74a53ec2955ace868d022020f9c49948f7da990429889393cc0468df4ee02dd04df2dac1e80c9d0fa37428 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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