www.medgerm.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:83:ab:c9:54:ce:34:7c:6c:61:71:7c:5e:38:76:fe:2e:60 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.medgerm.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:83:ab:c9:54:ce:34:7c:6c:61:71:7c:5e:38:76:fe:2e:60Serial Number (int): 393254477152691363238621760373884425481824
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: ee:74:3b:8e:8c:c5:fa:4e:5e:08:d4:8d:9a:8c:9a:49:fc:9a:5b:b5
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ac:e6:4c:8e:c3:c7:07:70:83:da:09:a1:2c:31:69:26:b3:6f:71:ac
Fingerprint (sha256): 8a:c2:03:ec:37:d5:5c:e4:9f:d1:66:15:50:bd:3c:25:e1:b9:b8:9c:24:dc:5d:d2:d0:c4:8f:30:1f:91:92:5e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.medgerm.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.medgerm.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.medgerm.com
Other certificates including the domain name medgerm.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.medgerm.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVzCCBT+gAwIBAgISBIOryVTONHxsYXF8Xjh2/i5gMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMjQxMjExMzlaFw0y MDA1MjQxMjExMzlaMBoxGDAWBgNVBAMTD3d3dy5tZWRnZXJtLmNvbTCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAM0YtNRhaX2LjvnhSnOq8Ej1DTMi9J4s hlzyc5OWO0tAfRjfTAeMICWWNNG5uJSF2wZnGr5HhefluyDnq6PYqKIKXnSBs1rv VhhxU1whsiZaCEtuzrA1a/JDOYAxgC6tBetVA30TK3/oZGqQe02s/J4FCqOC5dhB yv26vGLcD89s1Sdkx2eFkME9IOtZQvFgFuLPxKVPT7eo4HcNcA8JRlt1/GaK7ynn iNYwIwxBX+BqLyjoLvLkyAEbxqR4KCc7DISWAS/YoTUMmcAzgwQFIIDTSoOvGhNJ AOrn/33ucGXgdWF1xcM0RJcGHuWgHfdIHkscyWxKrc7cWOglOoY1Eo8CyjcDIsbX HZt4W7ZebL4M6pJFEsNvUuX6JQZbcMesDpa5yHAEHfaIG+y8nrDv6sQDqXcUiP8y ds94d7HYaxz3MBuWVQdRY4dtmpXh2vrSCSwHcu+P4GMSpVg2K+HsrhYZKn7P7ZHF 3Le3cCg0X247RN355NG9z4cLCdjE1rRm0BNYhvDfX28WktIEm99bf5GQOrNd7ykr 6hzSkOzNcqucig218LhMefTOwpmoNJZT6GoGMbNb5B1gTC64wbEOfxKvbHQiPKz3 0YAoVxyx1VlLmAfF8bn8he2fzIjMMPIkZFPbUtgMbRtme2CrgT6kFHygrafhthyH I1POH1pBYjTVAgMBAAGjggJlMIICYTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFO50 O46MxfpOXgjUjZqMmkn8mlu1MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPd3d3Lm1lZGdlcm0uY29t MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB 9gSB8wDxAHYAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFwd1Ma FgAABAMARzBFAiBXG46WLsIBnSd8jcoSKsKInErZguzdA+ZEA8zCN6itpAIhANX2 lzS2+DAfKJJygOxdz1NRJiGcDE4WUXbCQHnZccteAHcAB7dcG+V9aP/xsMYdIxXH uuZXfFeUt2ruvGE6GmnTohwAAAFwd1MaPAAABAMASDBGAiEAyMMyTLLuK49J3yRN VMTrtsseyxPv8cr+lze/3+sXvRgCIQDWT2pKXl0fKcWrB7PNwihV92YFAtGm/+wG VHsrWVJkCzANBgkqhkiG9w0BAQsFAAOCAQEAUxlTloFgarE3MvFOn+WIUw6d+9sK 8Txp4IlpHP9MYHuyKE3dhAzm5H4eZC3ue04uhgmrCtHF43ysEwMg+m3V7HxQsZud 4vFxqcAT5oPZ44+g8ubClvtv4O3vtsKf2pxnkoCIhxRZoljHybGGq1Sjah0umpno oI79Ql4zPPw/SQ6HmWBdzBzdVx6pN3fkfWDWiKNDV1jT4Ml3LsqYtET2s0b43pNv QE8pk71B2DXETL6LhxJUN4zzG5ODnzNoLOrF1lVPfRLlv5SJY2tg0hwB2GBdRrWr ZUNofsLtJ5rgirsqKxa4/pkiDL/x7fub7ASBhRvuQoAfSt/qNQ5II5Ef5w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzRi01GFpfYuO+eFKc6rw SPUNMyL0niyGXPJzk5Y7S0B9GN9MB4wgJZY00bm4lIXbBmcavkeF5+W7IOero9io ogpedIGzWu9WGHFTXCGyJloIS27OsDVr8kM5gDGALq0F61UDfRMrf+hkapB7Taz8 ngUKo4Ll2EHK/bq8YtwPz2zVJ2THZ4WQwT0g61lC8WAW4s/EpU9Pt6jgdw1wDwlG W3X8ZorvKeeI1jAjDEFf4GovKOgu8uTIARvGpHgoJzsMhJYBL9ihNQyZwDODBAUg gNNKg68aE0kA6uf/fe5wZeB1YXXFwzRElwYe5aAd90geSxzJbEqtztxY6CU6hjUS jwLKNwMixtcdm3hbtl5svgzqkkUSw29S5folBltwx6wOlrnIcAQd9ogb7LyesO/q xAOpdxSI/zJ2z3h3sdhrHPcwG5ZVB1Fjh22aleHa+tIJLAdy74/gYxKlWDYr4eyu Fhkqfs/tkcXct7dwKDRfbjtE3fnk0b3PhwsJ2MTWtGbQE1iG8N9fbxaS0gSb31t/ kZA6s13vKSvqHNKQ7M1yq5yKDbXwuEx59M7Cmag0llPoagYxs1vkHWBMLrjBsQ5/ Eq9sdCI8rPfRgChXHLHVWUuYB8XxufyF7Z/MiMww8iRkU9tS2AxtG2Z7YKuBPqQU fKCtp+G2HIcjU84fWkFiNNUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 393254477152691363238621760373884425481824 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-24 12:11:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-24 12:11:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.medgerm.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 836720757296258390201272700412970036185049553348728892841045938104655886330641521316632227534940858205934177701911958358755782659795637594627662548597525961777330050258132043540487607942843741518934645870291737449293565800931506106527220032668244106330712887192064611592450087478295874941664099364901812301980517625760629026625195828262638200199428269867093381643155496581145795177819601287452512214360672906525868759013562268107878321340278764364797565070497637572547745253107741739763033629994838289231094744918234910052808748222191936481935129913992890384800263293065669922459087837246594658867383744170401462240373557704941995309412802652533422332862067086031791406231782865152342595136602450657231601454506382990660893320449145841691749802492107694788663964822016830183722689873080816803142688209057311265454324089827368299730256680554307546234277339049000079022674952725211303623062271960732657203095322978140551352083681310342670956997342142614154184953875488982305704938387634467352389620459382266934060626462160092711531661857175306142787281727531206927500634186560439910390466578972433904305039108617528705521953655211338526106205218699059522237616132251342513618413454037207913383307887394665886695484816162782544107025621 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ee743b8e8cc5fa4e5e08d48d9a8c9a49fc9a5bb5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.medgerm.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000017077531a1600000403004730450220571b8e962ec2019d277c8dca122ac2889c4ad982ecdd03e64403ccc237a8ada4022100d5f69734b6f8301f28927280ec5dcf535126219c0c4e165176c24079d971cb5e00770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000017077531a3c0000040300483046022100c8c3324cb2ee2b8f49df244d54c4ebb6cb1ecb13eff1cafe9737bfdfeb17bd18022100d64f6a4a5e5d1f29c5ab07b3cdc22855f7660502d1a6ffec06547b2b5952640b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 005319539681606ab13732f14e9fe588530e9dfbdb0af13c69e089691cff4c607bb2284ddd840ce6e47e1e642dee7b4e2e8609ab0ad1c5e37cac130320fa6dd5ec7c50b19b9de2f171a9c013e683d9e38fa0f2e6c296fb6fe0edefb6c29fda9c67928088871459a258c7c9b186ab54a36a1d2e9a99e8a08efd425e333cfc3f490e8799605dcc1cdd571ea93777e47d60d688a3435758d3e0c9772eca98b444f6b346f8de936f404f2993bd41d835c44cbe8b871254378cf31b93839f33682ceac5d6554f7d12e5bf9489636b60d21c01d8605d46b5ab6543687ec2ed279ae08abb2a2b16b8fe99220cbff1edfb9bec0481851bee42801f4adfea350e4823911fe7