www.ocgco.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:f5:ce:32:0c:3a:98:d6:3a:8d:06:04:ee:71:28:64:62:31 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.ocgco.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:f5:ce:32:0c:3a:98:d6:3a:8d:06:04:ee:71:28:64:62:31Serial Number (int): 432092404452676978923986286913496570683953
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 46:de:03:51:41:35:2a:f8:cb:e7:50:fb:7e:8c:c7:0c:2c:ec:4c:45
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 17:a3:c3:c0:da:52:14:7f:cd:8a:25:16:9e:ab:48:72:a6:52:8f:7a
Fingerprint (sha256): 88:08:13:ec:33:14:e0:c5:6f:bb:a1:9e:4b:70:bb:f4:ae:52:50:1f:23:3e:dd:13:ff:c1:42:8a:4d:14:e0:70
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.ocgco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.ocgco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.ocgco.com
Other certificates including the domain name ocgco.com
(limited to 100 certificates)
www.floriana.org
ocgco.com
www.ocgco.com
www.uvpondfilter.com
wildlyhappymarriage.com
ocgco.com
fundydiscoveryaquarium.com
scarpedacerimonia.com
www.ocgco.com
responsibilisation.com
ocgco.com
ocgco.com
ola.guide
307exchange.com
www.ocgco.com
www.stock-cases.com
www.ocgco.com
providencebeer.com
autostoppisti.com
ocgco.com
www.ocgco.com
www.uvpondfilter.com
wildlyhappymarriage.com
ocgco.com
fundydiscoveryaquarium.com
scarpedacerimonia.com
www.ocgco.com
responsibilisation.com
ocgco.com
ocgco.com
ola.guide
307exchange.com
www.ocgco.com
www.stock-cases.com
www.ocgco.com
providencebeer.com
autostoppisti.com
Certificate
The complete raw certificate details for www.ocgco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUDCCBTigAwIBAgISBPXOMgw6mNY6jQYE7nEoZGIxMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMDExOTIxMjJaFw0y MDAzMzExOTIxMjJaMBgxFjAUBgNVBAMTDXd3dy5vY2djby5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDNURpxyPP7zJn4YdFwTE3g5E/bqhSfFuS/ xLQr1uDH+1RSNgvBGhyXc2n3CXPwj30O4HsoED15KTemCsaAK7CdKFQFQPIZwmlt GlYSr0nvYaeFx9zMYiUsiBRKN/93F7QqbOhzESnzibK+vIJjAKqvEofcQMivpMOc ekhj927TsLLsmISB8P/+NN7Uu+P4xNgPQfWZFiewnHEjH5O1hY+mkceErhG+0mND 13wKBXr5qgPkmJgFHtrdz6B+cwxO0Lk2z9ZmbXC9xG7QzNaC8G25Kep3wryES+Ke yK05yrNYn+aFQQdkO3OzIaBc3So7fZVXizuinBG9OODdY5xAoBvPn6iL3Cf6lCjW 9FcY/gs4Y94gbVPjQotqgExZ1Cv37vA9rSKgGvSNctYEND8lilkbituTBtlLVLrT JXc0oHHSti1TJbCE7w2KdQ4mN3eT54pFY+W19LZTWRhGEYceOnj1i8w97s5B9/uI /OKDludANrZ8Zu3UrgEf2ZUVj7wfvLQnWkBnjnkaIFGnmgcvtuwG3PBMGG+fPsXI W260Fro1+OH3j58nN9Nr+uz9FVIhRcQLLBlCCVz4OTwRtidMOc6+HTdJ+kUGJuW1 /eSXJmKMxEKSd1hDnF/JjHja6VaabImlKdRlarxJ34oN6ZOEUxXPXUzYjgDLd+RU Ye0xrJNCxwIDAQABo4ICYDCCAlwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRG3gNR QTUq+MvnUPt+jMcMLOxMRTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXd3dy5vY2djby5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggECBgorBgEEAdZ5AgQCBIHzBIHw AO4AdQBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAW9ixR8sAAAE AwBGMEQCIAH/ib4zJXpdhCeQOomrd+6QWG3JHlYt4mcoxbph0dQqAiBIHBOvkme9 LxkdrM8HXc80lW+pFTWKFqeF/CP7QdTgJwB1ALIeBcyLos2KIE6HZvkruYolIGdr 2vpw57JJUy3vi5BeAAABb2LFH4MAAAQDAEYwRAIgKO3GYzGvZ5iNZT7bxzj2sG8x x++EUYPCuH9soN/v394CIFluPjBxYeVuOREHFUMA0YI6VNGehjyuzqjwdwRc4Yw1 MA0GCSqGSIb3DQEBCwUAA4IBAQCSSVUBK2qV+NvTm/QnJE2sm8gr9LR6dtAIXS2B rNIuBDhk1vylRpzQTQvj9bz5hOabTiTnZ5K18KqGSNqL+CMZgJYt2HR9S/HSI+Ar RASyuCqHTuaYZelhQ9f6jT5npjsRRUp+QzrwmUJhvD25Yeq/6RwsdJYM910iiwEP sSXnKRGAd45t8MEiwwSHigeSx2ZfxqdnwtNVFsBfXGDCu0sZldII2Pr11dV3+6Et FfZ9Ps3cnnkwqrbJuqOieGIRP7M5SUqvLZtpYoGHcy8pTwCEnEm49GL513wgZ+cj HDUfRfWNOo8G5FHWpG8Par8csgp1clUThiX8a4NFZ8AEouq0 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzVEaccjz+8yZ+GHRcExN 4ORP26oUnxbkv8S0K9bgx/tUUjYLwRocl3Np9wlz8I99DuB7KBA9eSk3pgrGgCuw nShUBUDyGcJpbRpWEq9J72GnhcfczGIlLIgUSjf/dxe0KmzocxEp84myvryCYwCq rxKH3EDIr6TDnHpIY/du07Cy7JiEgfD//jTe1Lvj+MTYD0H1mRYnsJxxIx+TtYWP ppHHhK4RvtJjQ9d8CgV6+aoD5JiYBR7a3c+gfnMMTtC5Ns/WZm1wvcRu0MzWgvBt uSnqd8K8hEvinsitOcqzWJ/mhUEHZDtzsyGgXN0qO32VV4s7opwRvTjg3WOcQKAb z5+oi9wn+pQo1vRXGP4LOGPeIG1T40KLaoBMWdQr9+7wPa0ioBr0jXLWBDQ/JYpZ G4rbkwbZS1S60yV3NKBx0rYtUyWwhO8NinUOJjd3k+eKRWPltfS2U1kYRhGHHjp4 9YvMPe7OQff7iPzig5bnQDa2fGbt1K4BH9mVFY+8H7y0J1pAZ455GiBRp5oHL7bs BtzwTBhvnz7FyFtutBa6Nfjh94+fJzfTa/rs/RVSIUXECywZQglc+Dk8EbYnTDnO vh03SfpFBibltf3klyZijMRCkndYQ5xfyYx42ulWmmyJpSnUZWq8Sd+KDemThFMV z11M2I4Ay3fkVGHtMayTQscCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 432092404452676978923986286913496570683953 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-01 19:21:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-31 19:21:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ocgco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 837619505004765028886706162362709941134639775327937930066726078934165623829136330669117629061209532098546108417486524669860685793538782704621458243155065320060335739105049857229698479141501303403106040622356683289395872694431205527195724349054500744694200818796755197516568637376292002316687291901410902400084700212349248900242133128294041675154430776980627083799860442814797336507563846004529591384490084678300466560238203601520836531201947503977179680905166318875634921479054444472214389875364387130544191567444510589887859733249771486864119037411659914573564357324179747079891544993240410685525932910906619207460836810584033939487509235361712164768146692890932891516557082323188711301139504744515408878239725816526509362573742021542004166089940040434730021240121810841057024962690313288934092644524427626767145283404251834449315530742983840180691940483130256794496695648954574800586847625606265397868280023651946206234390865798978759794653610858053575730287411546103197009472458860590709867326812619641330900291183262699704072781841496154502444144623655193984997913117026656026101382294968878889177270527517070520496633710988328608786809725533764526009470644557741888479819998608196508730275494563427506105936497536429747478938311 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 46de035141352af8cbe750fb7e8cc70c2cec4c45 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ocgco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016f62c51f2c0000040300463044022001ff89be33257a5d8427903a89ab77ee90586dc91e562de26728c5ba61d1d42a0220481c13af9267bd2f191daccf075dcf34956fa915358a16a785fc23fb41d4e027007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f62c51f830000040300463044022028edc66331af67988d653edbc738f6b06f31c7ef845183c2b87f6ca0dfefdfde0220596e3e307161e56e391107154300d1823a54d19e863caecea8f077045ce18c35 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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