digi.no

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:1c:10:50:25:0a:35:30:db:f0:44:04:ae:55:fb:e1:91:5e was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=digi.no

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:1c:10:50:25:0a:35:30:db:f0:44:04:ae:55:fb:e1:91:5e
Serial Number (int): 270886447852006157089867632281306257264990
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: d6:2d:56:a1:ce:cf:34:af:ae:0f:48:54:c1:cd:f3:c4:0a:f9:a1:31
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 52:73:ca:5a:00:35:96:72:2e:d1:af:7a:1c:44:ad:05:c9:f0:d2:0a
Fingerprint (sha256): 96:c7:ed:4a:50:0d:2d:b3:59:b1:65:95:97:9c:48:30:cc:38:8e:c0:50:b7:02:2a:0a:ce:c3:df:ad:cc:37:73

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate digi.no

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for digi.no

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

digi.no
www.digi.no

Other certificates including the domain name digi.no

(limited to 100 certificates)
wallbrand.co
dcfit.turnosweb.app
erlend2.digi.no
digi.no
digi.no
www.penguinpeople.io
groupm.beaconforce.com
www.trumpcarestories.org
digi.no
www.parrify.com
cloud.workito.co.il
digi.no
digi.no
wallbrand.co
whitepaper.digi.no
f.link.mustard.love
1j2n061x3td.www.digi.no
mysomras.com
digi.no
www.waidy.it
www.couplemonitor.app
new-adventskalender.de
admin.ugyde.io
digi.no
digi.no
digi.no
erlend2.digi.no
ymd.development.fensi.in
www.crudewiser.com
whitepaper.digi.no
erickmendoza.com
employeronboarding.keeper.co.in
www.iamtheliquor.app
static.dev.getbusy.com
www.51hint.com
www.aduug.com
digi.no
digi.no
whitepaper.digi.no
www.marktompkins.me
digital.stratton-press.linkmalloc.com
whitepaper.digi.no
hueanh.com
invertecfoods.cl
trimbo.com
digi.no
digi.no
digi.no
digi.no
www.garrettspence.dev
vedur.arnigu.info
kalk.digi.no
kalkulator.digi.no
digi.no
digi.no
digi.no
admin.job.hoikushi-go.com
f.link.mustard.love
digi.no
whitepaper.digi.no
nakytec.com
www.redstonemail.app
cvmetalproducts.ca
digi.no
digi.no
whitepaper.digi.no
upliftstress.com
whitepaper.digi.no
digi.no
digi.no
dev.viviultra.app
www.matahari-amsterdam.nl
slw.ai
edificiouna.porcelanosapartners.com
whitepaper.digi.no
kolssak.afterword.com
digi.no
kalk.digi.no
digi.no
whitepaper.digi.no
app.bemoved.com.au
digi.no
digi.no
www.chen.enterprises
digi.no
digi.no
www.inthga.io
introvue.robinsoft.biz
www.ministryofpup.com
digi.no

Certificate

The complete raw certificate details for digi.no in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6G+wBNgmSuPDE0kKO/ho
YL0LM4ZUuRbs0ouVQPVIJJmZRqKcoPzPVmqx3QFblhuio1DAcvnmTyJGbg/KPJpA
aUIrqrYU1Vtf/ejh6bl/fQQQY2eItcw5bY9MOe0lgh6JYhW2QLCPcRPoHFxwer+R
XLfYHkh4TOFTvqM6rASZjVUqo4etjw61T3gciLsWvQID+XKNfuxvgB++Gx1iK/mI
bbMF2waqAEH92hRJ2FcqBUKhVwM5Y6FI/9cBIr3OcxKO7JAoaLWNXzfGhgACgWRo
Zavf6BPs+B/vBu9QrKYymNWaK5yuzmqtt/wmB57unALLXg3SQF26E6bN5FIqRlJC
4PK6n9C4WEQwuExQkuXxDLCdgDuqzC+VOih3jNJvlXg+30uT0pksthhqLEOLVIOD
6chhP8StX1dESwPYjBJ2HIJ+J63JVgqFcGKJTZbVj8MxkCWmIndnvvVYdLmOoZa2
/HQ7Xmx5MfhTfH+2pS6V/1FPHliz9/i8Qj8ktYka+qbHI4qkSSragJZUaJxgXzEh
AcfwucqV0Y5yDez8n+XLN03g4W40II210K9SImN7Qadu7ObfOXGUZYZ0mhEIrDyi
skR20O4vv8FwCfqJ8ba9ITGHO3DtXw27rZKncugJgJPRDO9SwMUHsGo1ucRIiuQI
xojLk8c1TF72K8rBVzDbIH8CAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 270886447852006157089867632281306257264990
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-24 07:52:32 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-23 07:52:32 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'digi.no'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 948257289204141657307757707588538343921955065927723182240620943753373600072172785433910905656797103943825797875371819667640467816233030228542134047662118707523156169901328747175017956379313138007704440714886772886102604360125190891743257454489512808759244847554877665442836779587183079469625914594022295281253166553084547245976981527186518477410423143114635706026629714398956905200923019333562374225535477334039004831288913053892821674069691559474958839676816578594090023738568577610164954333660272699521153360214598759659758736964954697690438756943335961933257417461300667951765637588519407426040943444593780642500688146747054476934157205425018750792092370082264616745949558745048026287460500954181078456808257445973267315738740112801106638772836012443626868360211719882895741272017757760117498532820209220626723751845536211072337849462216732988571434062251962867865346676961647155187479304331592035302749296021286377400559067703285710119863539332551591137959933518762791772842453498050526416903927187136263232996676740902649216735548579416415289280264207476529071589528088568918483297205080571478424161215882820380103191664130845142689189828312175740082331363234100194951266254638016874542059412699333167669231436307271537649197183
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d62d56a1cecf34afae0f4854c1cdf3c40af9a131
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digi.no'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.digi.no'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016d6278e3a8000004030047304502201b7391f8827b38ed3613de99ca6a532f4bd9540b910623e75401aa47949822950221009a0f8621f57afb4c367689aaa66c11677cc3c06ca8e42f7287a3b95a29f63dc4007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d6278e2e6000004030046304402200a609d23d7cf487c584ea86579a64e51663b84bec3ee3e016ea7ebd3b286ddec02203a235e8fa61f626817f8367c0ee88ca53bd0534ec6e3ac6b649c7e74dd32134b
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		003c368e3e87b03ff3defdf537657dd41b878dda8f31b682e0a138b6804056640fc8028e52f5c41731e87fb79f3ea012d6787c560ec48f9e525e2d0889bb9b00990e62b1454c80148de56ad19c63c3caa098db5eb65504b2072f1c4c87c68c7e0c2d6b80b970e17527d6107132ac1b875ab02aa314536b69a1cfcb3ee9994776c424d257cb466b2e6db9a74b6d4ad3ee7d03aa5eb74313f2e50fef0885745940ea5a5b80747cf6e9320be8cd36b775fcd33c30a6b43fd33e0d0550c7f24bb8d5a43ad61c505b96255940407c91a94378343e3a9ff75a1525c9829d0d36f52495633000e5d2369050ccc660400822230daf64b4082f184a121c3849396c6fd15a6d