www.abagail.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:45:99:39:18:9f:19:dd:62:a6:7e:9b:c8:91:b5:03:3f:a9 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.abagail.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:45:99:39:18:9f:19:dd:62:a6:7e:9b:c8:91:b5:03:3f:a9Serial Number (int): 285020009456484635623696641394236218097577
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 8e:b6:e2:6c:1a:98:23:2b:12:4a:1b:82:b6:f2:8c:68:2a:91:45:ac
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): f6:73:94:90:e1:91:2a:20:a8:eb:30:83:26:b0:0f:3e:7b:27:95:93
Fingerprint (sha256): 87:4c:9d:96:73:db:f3:e0:ff:17:61:c2:cb:b9:b0:5e:f8:33:ce:19:f0:ed:d9:f0:c1:2c:95:5c:31:f9:3f:8f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.abagail.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.abagail.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.abagail.org
Other certificates including the domain name abagail.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.abagail.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVzCCBT+gAwIBAgISA0WZORifGd1ipn6byJG1Az+pMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MTcxNTI0MDVaFw0x OTA5MTUxNTI0MDVaMBoxGDAWBgNVBAMTD3d3dy5hYmFnYWlsLm9yZzCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAMis13lwqktrZIH/Coz7TZ/ZGwWkqfnR 8yLzGI/xQlASwvT5pzRzSvdEFHC0xGWYvzBmVMdxIn7p+TJfzrn9QJTvbr5AKBbl oP0dqOzzLnzY16xyaB1I3I78dk8GzAZ7rOnotlM0Zgt+ZeTm24uNg23Uhrtj2TLJ BUP1CDST8SyWD/08WUXLd/QFfgMGYSNjAJZ/WnO5gQwlbdaEoZdGoRV3Lcsh6ehB ruoSCebY7mrGwYunWkoqFAAu4WiHg/Ecm0YWFPJvHucOBHppEBko+hGnVhUYfEMX 6/OUFUv+9xu8Qze2z4tDSyvTYJ7IbzLqnTjLiIkE5NuW4bIQAA+EeSZ881JJQRge GfistIRnXJaz8vN7FDoL4Lq5WidRBEITSyqouTZzoZ2cUHuvrsk+20L3DFyUegFe 05pwVYUNkx/IW3gSmhUIfqx5+fGq3bgBua19RB2MzJagtO+XlyTzgRyX7p2y3/uC +04tMHu7kVDk8+U32Yd6CdcKuwkNU9t8EgEmWdhcxtM8otmOgTHSnLBTH1etUNMR pWHEWQphEFp92ND4eRcpnOZr1kOn5nJHfqG72e5c5PcnloS2PJ52yALfQ0JltQ+F VQH2pbviiOTw/S5C/N1CO02ZhsOl2fsk7Erb2BDsEXJFa5sLYQyZpaFDcPrXKeVH 0c7TKOWCZferAgMBAAGjggJlMIICYTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFI62 4mwamCMrEkobgrbyjGgqkUWsMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPd3d3LmFiYWdhaWwub3Jn MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB 9gSB8wDxAHcA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4AAAFrZkC3 OQAABAMASDBGAiEAsVF46QYsevgA4nIQGj7v7VZvxlDmD4IcFkQkqDG8Pd8CIQDp 2Cny7sOrjAWpIw25Wl5+VR9kfmDRjjtkTCybaIeVbwB2AGPy283oO8wszwtyhCdX azOkjWF3j711pjixx2hUS9iNAAABa2ZAtzkAAAQDAEcwRQIgZFDyqlrq+SMvIbn5 49PqL+4nBWzn3+cgv5T9LiqXHNUCIQCiy4QTyyIiXXyVMbKMhQ2yY7leUqXO70+M e6pCr7bwQjANBgkqhkiG9w0BAQsFAAOCAQEARg+CoIDAA7zs5ZXCtRQvMOT0ma0n Po/vbgwPO1KJ+xPVTd9nXCbfs7CFXOjcfaysGSpQfSV1cD0s1yD/td35RlkiNm+m RQfVGxcd2RcaJOYTu/g0+W6qVmP9K+5eiSf75Hk7fAGZ4fmj2ARAmipiC2Bue6qR jz8N4RCm3j13t7d5G7+PJqnAnmDEADrdruQ4hZBFH7n51d15RDExp9c6ZKo87bMf 0QQ/2hEFgeZwGg12A1mIxLwh+iPXXjgpMTAk8fl0nikjfblkYftEd39AipG6LoCz 7FkwPJGTftlqveEN0cs7jVXjn9AlVzVQKWW/1iL2wY5lIV20qqak0/w67g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyKzXeXCqS2tkgf8KjPtN n9kbBaSp+dHzIvMYj/FCUBLC9PmnNHNK90QUcLTEZZi/MGZUx3Eifun5Ml/Ouf1A lO9uvkAoFuWg/R2o7PMufNjXrHJoHUjcjvx2TwbMBnus6ei2UzRmC35l5Obbi42D bdSGu2PZMskFQ/UINJPxLJYP/TxZRct39AV+AwZhI2MAln9ac7mBDCVt1oShl0ah FXctyyHp6EGu6hIJ5tjuasbBi6daSioUAC7haIeD8RybRhYU8m8e5w4EemkQGSj6 EadWFRh8Qxfr85QVS/73G7xDN7bPi0NLK9NgnshvMuqdOMuIiQTk25bhshAAD4R5 JnzzUklBGB4Z+Ky0hGdclrPy83sUOgvgurlaJ1EEQhNLKqi5NnOhnZxQe6+uyT7b QvcMXJR6AV7TmnBVhQ2TH8hbeBKaFQh+rHn58arduAG5rX1EHYzMlqC075eXJPOB HJfunbLf+4L7Ti0we7uRUOTz5TfZh3oJ1wq7CQ1T23wSASZZ2FzG0zyi2Y6BMdKc sFMfV61Q0xGlYcRZCmEQWn3Y0Ph5Fymc5mvWQ6fmckd+obvZ7lzk9yeWhLY8nnbI At9DQmW1D4VVAfalu+KI5PD9LkL83UI7TZmGw6XZ+yTsStvYEOwRckVrmwthDJml oUNw+tcp5UfRztMo5YJl96sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 285020009456484635623696641394236218097577 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-17 15:24:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-15 15:24:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.abagail.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 818683237834378344840702196536238522947310364315652840053314034550937584197135496900116453136783683391318310191792379334817379092342756016201604192945350093264069594310960959829663038791577462247474392855678692598162376835593836409827745639970190613357830736946210865460952468578798938670816022543073049252183819546589225822115353199536223081748269525281998491306719169451914035055008680104023535200058133728261058350245003049964365569646378744028653871803390975744520787126894808727168393412609051684788375063581271829880598226802264666502225289157059019989365771019973395167558602153749483233749418292810260218203676782222392790628906785527581268688713582689555170048333004961374049229447942181493987009288710260597852406686938455452760387471925918883548703572848568082344498817999239813194422091854816651019803953548169451563294745675087015156964775776726532731660403266976323103650183915303706472204611593308145747026254557341898458859801795516372300663189145709275301279578426717625372173694341707750714844410061458986170765122230996281453452126059537325568164192327473632700791154973826418331710812983597931709449591649820456250220034195789510816886603383999262488216849831994955522117545930097580195002265545818549262808905643 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8eb6e26c1a98232b124a1b82b6f28c682a9145ac . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.abagail.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016b6640b7390000040300483046022100b15178e9062c7af800e272101a3eefed566fc650e60f821c164424a831bc3ddf022100e9d829f2eec3ab8c05a9230db95a5e7e551f647e60d18e3b644c2c9b6887956f00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016b6640b739000004030047304502206450f2aa5aeaf9232f21b9f9e3d3ea2fee27056ce7dfe720bf94fd2e2a971cd5022100a2cb8413cb22225d7c9531b28c850db263b95e52a5ceef4f8c7baa42afb6f042 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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