www.ontoa.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:ba:01:6e:5e:9e:34:ae:df:ab:e9:0e:4c:8d:61:43:04:f3 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.ontoa.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:ba:01:6e:5e:9e:34:ae:df:ab:e9:0e:4c:8d:61:43:04:f3
Serial Number (int): 324631280342306374941344438092200853832947
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: f0:41:62:6f:d3:59:9b:59:1d:21:8f:1d:c1:ab:86:53:4f:33:4c:ab
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): e6:be:a7:d7:2c:ae:e4:dc:1f:a1:62:7b:a7:08:de:ec:01:12:e0:58
Fingerprint (sha256): 84:28:07:7d:eb:92:42:bd:9d:fd:f9:77:1e:74:dc:f2:36:bd:1a:b6:94:2e:b0:5d:ec:3d:5d:6e:2e:1a:2a:32

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.ontoa.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.ontoa.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.ontoa.com

Other certificates including the domain name ontoa.com

(limited to 100 certificates)
ontoa.com
www.bmxframe.com
www.ontoa.com
ontoa.com
masana.bible
ontoa.com
www.campface.com
742.me
ontoa.com
www.blockchainofinance.com
shreveportsportsmedicine.com
losangeles-apartments.com
www.ontoa.com
www.ontoa.com
wexxie.com
www.ontoa.com
ontoa.com

Certificate

The complete raw certificate details for www.ontoa.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 324631280342306374941344438092200853832947
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-13 20:46:07 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-13 20:46:07 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ontoa.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 752857052419967464346971381266530429345879441300130603924078842849735946881381622268861037472217558269408126351850818518359705615489222506236938017404075080176655354385920700229755952692977891980867953944444154233156851535614853922434963273243242407896966193586357708074275918902987111764606752432792814853242843698383099606383616841029345487884483248200158490186519356143256554928640353079353039060492045719538717674326069431706419327690075847846773527478779020376135186397687385773494964629152051115215888624392156107956961981094777051392279565135380139318047291100245512666137180051834386346870903200307990277657724395086568376693791491044024289017804473860837013502550322065173307317491587860956694103346279818919417119418383441111227815683703718242142382094339177023087417438981166174331301008827316703753520122367933110866210662552568716880566811181046599003807304854362590005881942538739388684863277239334317181743221168520464583063238015601157501788103228775551198437715569094633915764473679604131993704679973313495523205750757150631447142651899568488644751698420427719336897515990358364276699286457099711289220370938307045137240727833869352932736604669392439850779023141523063073212947870744733875045251725914522814037347233
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							f041626fd3599b591d218f1dc1ab86534f334cab
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ontoa.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170408428830000040300473045022100ef2639d2e6071103db7f31af12c215378080c764d4bb9e4ce168df8ad424f86a02204bf6fe146fe07691dce3f7717f664de1706b5a425df7e33fd771ad4d603f6cb00077005ea773f9df56c0e7b536487dd049e0327a919a0c84a11212841875968171455800000170408428950000040300483046022100da84f882e696b725f2ebe5b8f9460b97f8b8255c847c5c712685bf929bcf6dfa022100e19fa537b4aca9e83ccc3d3cd15dee9c2f54f3b224000aa04b44552ff1d66fee
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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