www.bedfi.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:be:98:0a:4f:b4:94:83:8e:81:2b:7b:4f:cd:2f:3c:67:34 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.bedfi.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:be:98:0a:4f:b4:94:83:8e:81:2b:7b:4f:cd:2f:3c:67:34Serial Number (int): 413304889636964577970238713984263028238132
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 27:4b:20:09:42:f6:74:a9:bd:1e:01:73:a9:cc:98:8a:f4:06:c7:23
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 79:90:33:65:db:08:60:ec:70:7f:a0:99:ca:f5:a6:8b:ed:be:6c:ea
Fingerprint (sha256): 85:b1:c9:95:57:95:f7:a7:23:fd:5d:ed:cd:54:b0:7d:98:9a:3a:bd:7e:4b:c1:da:29:71:1c:6c:c9:ba:8f:31
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.bedfi.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.bedfi.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.bedfi.com
Other certificates including the domain name bedfi.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.bedfi.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgISBL6YCk+0lIOOgSt7T80vPGc0MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMDIxMjMxMjZaFw0y MDA1MzExMjMxMjZaMBgxFjAUBgNVBAMTDXd3dy5iZWRmaS5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDklFFBgZXPftLGzo8p5nX7xirF5qRfAc0z JlbpjtFPE9IcbUd7f9ssMhhRW1L5jK3UBp7dyAKUEPkPRXd/NCP1PEyUTZNUAnZl Gn+YhOR8m72q4+0eq50pyLUbq4qZ9aq/uZW8H1DPw3VYn5/4Kcd9qKIjAnYbiqW9 SHEtsIRMjWrn72OM6WN0RoRQZwKX9ZINgeZFiMoChNTfwopD6C5bDhO0V2NLZlqe qxIuVUdO61kJCrIZY/bRKkaD7qXnO//ndepYJ3lh4Pk+vCL1tC8//AzwBYX2DaqZ 8EknMCFVXGlpnYi5StFuEVmPiV1vOayXF2W6yZCppO0Dbdh5CAiYwA7cgcPxw+x5 r+uCqOtLxKiGRzzcHF9djMbCf3nCxgg7jpxpAdpQ5u39LSFhA03lAsKZzZvvFpOo 8BQw4dz7Uuc5BlUHm94falli9+hynqCQfbR8jQO3hctiEjXpyulyrtI1qjde3u4S vsZes8TTu9jBM2HpaNiQKIlVLAY6WX58fFexh2GxKrNOJAOsHFnIShCtBDVGzgvD 8VA1NanQnFJF/HaXouCMR5vLKBNxhnxLzVYTgxrMpEAejCf+C/QqqEfVEF8TYaQT JO3G/2djA8WEch8zGOvW8ALyHIKCzoCxa3l0x9iMVvgYXYrUkIYB6EzakidZFD/M p721bXvidQIDAQABo4ICYjCCAl4wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQnSyAJ QvZ0qb0eAXOpzJiK9AbHIzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXd3dy5iZWRmaS5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHy APAAdgDwlaRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAXCbcbpyAAAE AwBHMEUCIQCs9AJJloWMma8accAXt7zffDoWPAZPid8a4FJl3EiqGgIgVTnZ8l4Y OkJW+Hdhw2zoVn0HFVdnAdgVDatcJHRcSCoAdgAHt1wb5X1o//Gwxh0jFce65ld8 V5S3au68YToaadOiHAAAAXCbcbqjAAAEAwBHMEUCIQDHo7TSryTeYSwCUG0U56ty mcq1/N+58cGM/i5KitC8dgIgcqr4lO4fqigiehmLwVAA97xV0j8O2sYivLZPLVhG R4owDQYJKoZIhvcNAQELBQADggEBAEOtB31NtEgzWGzIF+udHE146owf6XBUonDR cGzEs0NWeQHWoC/eIplE5re5F/j2BByhZnS2pB9Nt/ShQm9GDpTT82dhRgQgv8qW uCyqdqyBXj50meo57WY2bMh7VNqaIHsivGlmjkqv2V6sRga1O/tmBAW1qXbjegv5 Bark7DpjgQge+yJTBAanpghrmTCSAsa7/reKaDGCPr3NtlxBD+lICg3IxzoejtbF ZyjQ39FMko2/Dz9GCoiYrtcPBLSzU6u7l3zhKlNa0K2dvzJ7NG4iXUWiIJFwE4tl vDeViSWqZPQWyJHjLlQGhKAd9GKgVuKtJKwuHHXglz8mxSFzIP4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA5JRRQYGVz37Sxs6PKeZ1 +8YqxeakXwHNMyZW6Y7RTxPSHG1He3/bLDIYUVtS+Yyt1Aae3cgClBD5D0V3fzQj 9TxMlE2TVAJ2ZRp/mITkfJu9quPtHqudKci1G6uKmfWqv7mVvB9Qz8N1WJ+f+CnH faiiIwJ2G4qlvUhxLbCETI1q5+9jjOljdEaEUGcCl/WSDYHmRYjKAoTU38KKQ+gu Ww4TtFdjS2ZanqsSLlVHTutZCQqyGWP20SpGg+6l5zv/53XqWCd5YeD5Prwi9bQv P/wM8AWF9g2qmfBJJzAhVVxpaZ2IuUrRbhFZj4ldbzmslxdlusmQqaTtA23YeQgI mMAO3IHD8cPsea/rgqjrS8Sohkc83BxfXYzGwn95wsYIO46caQHaUObt/S0hYQNN 5QLCmc2b7xaTqPAUMOHc+1LnOQZVB5veH2pZYvfocp6gkH20fI0Dt4XLYhI16crp cq7SNao3Xt7uEr7GXrPE07vYwTNh6WjYkCiJVSwGOll+fHxXsYdhsSqzTiQDrBxZ yEoQrQQ1Rs4Lw/FQNTWp0JxSRfx2l6LgjEebyygTcYZ8S81WE4MazKRAHown/gv0 KqhH1RBfE2GkEyTtxv9nYwPFhHIfMxjr1vAC8hyCgs6AsWt5dMfYjFb4GF2K1JCG AehM2pInWRQ/zKe9tW174nUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 413304889636964577970238713984263028238132 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-02 12:31:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-31 12:31:26 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.bedfi.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 932522449948965490626211514193272296415868605754772036739341734546746327237840210028447742471360990476762211585399604050751727729090242033327583653870277139508835575311723590293750189734896937894126929489010958386361823877840242542468506389363540987659795943653789172919372457136304833103218771482965372966225906265750075574002086368035749963741365613351352701262582656828824465243725095269574296095460912372662407091028378550618380893598951657055437586647433557004258658450030556082760350625825684835331989244206745837764926326854856932800278328728793410081077728109463955358503238569929586647845938580538411368272083799091119444073239858191598827732176777216017375363970314586010338025858489286321016030990411221907823215492784127629798307127925637781291953343932915236458118343100603120861198133902549338356893430619871495514906499955842766044563410720888019607785952317424149121889739183924205289000131501951244598641946959982683133366967092149919014974090942799575493880278074946426268706264418715155756333584410724694100150985465935526427018124515516149370058517791597432428727834108420309657266862844763121879546284306244542056195155898821182553443692136836345313085282534844036518823968702815789477208431864332992604039537269 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 274b200942f674a9bd1e0173a9cc988af406c723 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bedfi.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb273000001709b71ba720000040300473045022100acf4024996858c99af1a71c017b7bcdf7c3a163c064f89df1ae05265dc48aa1a02205539d9f25e183a4256f87761c36ce8567d0715576701d8150dab5c24745c482a00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c000001709b71baa30000040300473045022100c7a3b4d2af24de612c02506d14e7ab7299cab5fcdfb9f1c18cfe2e4a8ad0bc76022072aaf894ee1faa28227a198bc15000f7bc55d23f0edac622bcb64f2d5846478a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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