www.ghbco.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:85:44:e5:09:28:67:08:62:d3:63:44:de:ad:a8:dd:d7:a2 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.ghbco.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:85:44:e5:09:28:67:08:62:d3:63:44:de:ad:a8:dd:d7:a2
Serial Number (int): 306685989321202234362930007845884244383650
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: e5:67:5d:78:9f:df:45:23:62:4f:bf:5f:f1:69:c4:f0:7e:83:74:a0
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): bf:40:89:67:f6:c7:f0:df:d0:06:3f:c2:1f:75:03:8c:e1:33:0c:d2
Fingerprint (sha256): 89:9d:78:a4:7f:e4:87:49:df:23:13:f6:3c:16:a2:ab:62:ae:3f:0d:65:0a:74:d1:1e:22:ea:5d:cb:a5:4f:0e

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.ghbco.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.ghbco.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.ghbco.com

Other certificates including the domain name ghbco.com

(limited to 100 certificates)
www.xolco.com
www.ghbco.com
ghbco.com
www.vancouverstemcelldoctor.com
glutenfreeatschool.com
ghbco.com
www.ghbco.com
www.science-book.com
www.ghbco.com
www.ghbco.com
technicalrescue.ca
ghbco.com
chemicals.online
iconic.click
ghbco.com
www.dynacloth.com
qualitran.com

Certificate

The complete raw certificate details for www.ghbco.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 306685989321202234362930007845884244383650
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-25 20:00:59 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-24 20:00:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ghbco.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 607691306116509465211584044415806304595595880830386120961769536921819905631488646321797680703978375982067851957405047325311659817377276011550190997612079673979326670826393078672248625169872462714128703772198867549662368374010899707526618018678098255763690381564956136822718897839953095485035765244060331560689117122149213469412405248942515489923759063070558244231120726742363876823279532512598112429490396633506897149843205795791358579117217955357461122358975871687986518973825288803213967488658475329192967449796968766018258251016711320030032495868628586204181020811145082840977123768274263107358963076084552691025721601946875310214048039177016064320793381128150396708484760314594622258976744774261067618690921879633139508238478779383444850195706293705735371216460256475888652023747789929917288484262268296673289530173864362105621957153752868524561095621375080914218681907729689222457709304404357158220038159312465359519730810710918980610813216671142090489467720916948932432141635614169586056376615741033477824269812997209214249285910831188663056191023788911020597178905063937745153192501530946841831536340097514636718684396056504400132590386051402027745793782002335122918152065714604876177357224866301770471479461290967890433236883
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							e5675d789fdf4523624fbf5ff169c4f07e8374a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ghbco.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f3edcde920000040300473045022100867d685068af6e15d34b8b9e1f7fe1801e7727bf91e89518988c77e23672234602203957ff9f58591db07c5b9e2bb85ce0d3e5b32a3e7c7d9a570ba68407b0ad5626007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f3edcdeb10000040300463044022020a7e4307cccbf4ed33552439a5dc45a357ea590c47c99e69dcccd17731e0a5802202cff8e484d94be35583688497c38ed6ad11b84680871dfeace00da2c048c71c0
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		009508341bb5734c88212cede10b991f67c2fe12a7edaeeab49de7c9b3be778ed41a996650cedcf160ef593ba007ff5e26bff9783fe22e669f48151cd2694757e71370889360687272def8c0c0cbd54aa88c11a1a6a3d7f72be3638a8950ce5c4596d269d98649162ba13661fd172018198b9c26a2cce436d09f6a9aefda31bedcde7bc6f30f4bd953096261959bf428e9dc406e3eb729a600aab2e261016763c380715b953921d4ecd95502d4867df96b43596afd3cc7de13aad6d6c0124b812dd6916b2fbe6aa80690c7f03c122b89bbea5a3989ecc87bff56812086a70d38e7ae28382458aca66e7bf867b57aba951d61fe0a9f6579bf39e36dc3d96059a2bd