www.aguasurf.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:c8:d5:f1:91:88:63:f1:9f:b0:61:72:94:e3:63:3d:45:b0 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.aguasurf.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:c8:d5:f1:91:88:63:f1:9f:b0:61:72:94:e3:63:3d:45:b0Serial Number (int): 416789996969629127006194427494167455024560
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 3f:aa:b4:28:16:90:f0:c1:6f:16:8e:10:f0:92:22:9b:73:7b:bd:f5
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 81:e9:87:c9:69:91:fe:9c:09:3c:54:9b:35:67:d1:9a:9a:db:b0:4d
Fingerprint (sha256): 95:f0:9f:2e:95:32:d2:fb:cd:f6:9c:9e:34:75:ce:01:bb:fe:83:df:b0:28:f2:4c:f3:ec:9a:16:61:61:2c:9e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.aguasurf.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.aguasurf.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.aguasurf.com
Other certificates including the domain name aguasurf.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.aguasurf.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVjCCBT6gAwIBAgISBMjV8ZGIY/GfsGFylONjPUWwMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMTIxMzA0MDJaFw0y MDAzMTExMzA0MDJaMBsxGTAXBgNVBAMTEHd3dy5hZ3Vhc3VyZi5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCzWXdh9uoaJZIbjp7H5V7DmxRa7+ms UDGIDt9qf5dgrYJ1UbQz+52ndbcltKneVd6VCCdoecJIR2n54XMYYNyie8X7/Zy3 voF1iQAjuWELTyY9YRfBygBhosWuyyUeN2Lkc9nZd13W497rd0ut0Iejc7k4z3WY +0WsEi1+bpa2gYLUPawv5ACkYNhxQZ6zMJDa6I5TLdri1y+tG6Ol/qMTGBOKZ5RJ +K5sbWTo5qIePaQdk+aX28OBlkOy6P5/6lM7+KO3p7fkpNekSYV0CJtmNHrV+NV9 Um5/89Qrv5/qcp4pxpqYGc/jbD1tjAoVWBmPJoQ2gfetjG7eiYkuA48H09wLRgXN QUPzhKZ40n6iN5Ns3JnVYuPJ2K6VQfN+7d6p64MZuqO4dfTWyhzVx9puc4tSyoIE iC3Eh2QUOjD8Nbkp9wCUOTFl4dKb6sG5Slo2PAaDEx6ow71ApT6m+v4Au7e3apSz TtTVQzndVrbS3jgdoD+hBxvPTqBdXBSejbzJ3rTTQXiAwCPY44GN5OpILcfQQsm3 pIbAgiz+xALkUqzHteZgvfXf2/ML0cZla1KfbbwZIOorz2Fu9QHYXFR1VXsV+DOV ok6NX7fWr3Cd8GOCQ96YU6aOHswtMUsK2cGZw/wX6O3vWLJnOTCFZOQjcf3C5WUD BxIkNoxjzMLFUQIDAQABo4ICYzCCAl8wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ/ qrQoFpDwwW8WjhDwkiKbc3u99TAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHd3dy5hZ3Vhc3VyZi5j b20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggECBgorBgEEAdZ5AgQC BIHzBIHwAO4AdQAHt1wb5X1o//Gwxh0jFce65ld8V5S3au68YToaadOiHAAAAW76 bHTYAAAEAwBGMEQCIHSZRMCoYqhB7iysjSAfOhG1SNB485gxdQWgRdZ57qGfAiBe jC4JTv8i8gt03/8KhgSzHFYQlT0Xrx+Gjf7AHox5IgB1AF6nc/nfVsDntTZIfdBJ 4DJ6kZoMhKESEoQYdZaBcUVYAAABbvpsdLEAAAQDAEYwRAIgO2sg1lEL9GJ8JPBV KjQdbdgV4asQko+zj+Nizovi6+sCIDLeOTsb8WtqsUbrdE3OntAA0w6z83UPJYBb fpKMtNWaMA0GCSqGSIb3DQEBCwUAA4IBAQA4cnAuLV0KnevOSGVIFvdouwpfbZX5 zV9yYv/+rk3PkS07tAF4gFeu9hOC6Np2LkLx6QqS3kgOOUdd6J73yr6RF/qBna7s +DVFhyKrkPKac3b3ucgZd25athf5H1ED3+HnYpGT4Bpim/6yzh2rie0OJz4Afk/g Vuzk0YwxjyXk8Mjrkc2R/s0xnwO/r8tA00D1j06eFoz+8hTKwmX4f7BOLJXv2OEo eMYyYzhOfNQiJffpEGm8/OnXIlie3eP9dqlsGVc7Nr+pyl+/fKwJObziYSQv5aPC /+xXRxpL5h+1hdhWl2uMJwdOJsgEFo2Mi0wfrtNqGw2JhbeulrV6gf+Q -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAs1l3YfbqGiWSG46ex+Ve w5sUWu/prFAxiA7fan+XYK2CdVG0M/udp3W3JbSp3lXelQgnaHnCSEdp+eFzGGDc onvF+/2ct76BdYkAI7lhC08mPWEXwcoAYaLFrsslHjdi5HPZ2Xdd1uPe63dLrdCH o3O5OM91mPtFrBItfm6WtoGC1D2sL+QApGDYcUGeszCQ2uiOUy3a4tcvrRujpf6j ExgTimeUSfiubG1k6OaiHj2kHZPml9vDgZZDsuj+f+pTO/ijt6e35KTXpEmFdAib ZjR61fjVfVJuf/PUK7+f6nKeKcaamBnP42w9bYwKFVgZjyaENoH3rYxu3omJLgOP B9PcC0YFzUFD84SmeNJ+ojeTbNyZ1WLjydiulUHzfu3eqeuDGbqjuHX01soc1cfa bnOLUsqCBIgtxIdkFDow/DW5KfcAlDkxZeHSm+rBuUpaNjwGgxMeqMO9QKU+pvr+ ALu3t2qUs07U1UM53Va20t44HaA/oQcbz06gXVwUno28yd6000F4gMAj2OOBjeTq SC3H0ELJt6SGwIIs/sQC5FKsx7XmYL3139vzC9HGZWtSn228GSDqK89hbvUB2FxU dVV7FfgzlaJOjV+31q9wnfBjgkPemFOmjh7MLTFLCtnBmcP8F+jt71iyZzkwhWTk I3H9wuVlAwcSJDaMY8zCxVECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 416789996969629127006194427494167455024560 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-12 13:04:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-11 13:04:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.aguasurf.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 731682033556203179305880736341956898034346573302321041467207406676848985450482469197904682453027062094300184527573406147463453873882105971305789151562571199381908434256410338013228921087291937205365600088158980793761462150950001673765565997582656373522897874207834798488366208807440855723113135133836264405215003722738383722752876540963393541521283605329495563917091300830579845314357933931271897084022942895238131769153192329537514161389717683045849622355052764755718410060299241539381667020764169322543515667835041822304447287856410562196804359482031026725128091311491357437448662461126225418469642451337469793988396605323416949383939199956874099997749354975584966635198900723279140779814997387953795011579049565630909127872172386080521555396663726547738296429189368382242493673041797766774341988192802430698210224014870967478519864295264218320229405179961233157064475688208556345255877358598304488369233123278017407196102605479606613802757320732945360801243036914368730307747307449377843544256840256282165212247493014370596608254586859294006034031430549188066160763514306647357867439109228362566357051540396318788701246231938909664910261310922523977167357249647163372215058029633759219642165948852155307195955203055748400466281809 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3faab4281690f0c16f168e10f092229b737bbdf5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aguasurf.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016efa6c74d800000403004630440220749944c0a862a841ee2cac8d201f3a11b548d078f398317505a045d679eea19f02205e8c2e094eff22f20b74dfff0a8604b31c5610953d17af1f868dfec01e8c79220075005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016efa6c74b1000004030046304402203b6b20d6510bf4627c24f0552a341d6dd815e1ab10928fb38fe362ce8be2ebeb022032de393b1bf16b6ab146eb744dce9ed000d30eb3f3750f25805b7e928cb4d59a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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