dfnco.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:b9:64:42:dc:8c:c3:8c:c2:ed:09:50:fc:53:74:be:fc:a0 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=dfnco.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:b9:64:42:dc:8c:c3:8c:c2:ed:09:50:fc:53:74:be:fc:a0Serial Number (int): 324422365640108085868915920805198280195232
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: df:4d:b6:e5:ab:98:e8:6d:9a:3b:4d:11:09:98:c7:29:88:09:b5:5e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): c3:92:18:21:a4:d1:ca:e3:06:8d:8f:93:9c:79:47:ad:96:79:25:f1
Fingerprint (sha256): 99:c8:3c:c4:4b:75:1b:44:d5:49:a0:36:eb:ba:2e:c0:36:97:e7:7a:88:1f:11:d0:9d:23:7d:58:60:87:2a:51
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate dfnco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dfnco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dfnco.com
Other certificates including the domain name dfnco.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for dfnco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSDCCBTCgAwIBAgISA7lkQtyMw4zC7QlQ/FN0vvygMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTMxMDIyMTNaFw0y MDAxMTExMDIyMTNaMBQxEjAQBgNVBAMTCWRmbmNvLmNvbTCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBAOFnRXMY7pwOtcDcFcw+vee9rykNaPMYrciRIbCe poTkC0OMZHvWV1ADwPLR3d3BxxbgBdwZ/Noxh03SBpdChT5LGADddy1BkYQyab1D ceFzAiI918hzRxb9CSWb9dF0Mu0gNCb+Z8Sh42W+j56xFenNBTfWiqZzC2h5m0YV E+AeJTIh1IhYm4Iz7z9kFtDbx2KllYzozqJP+9RODkm53QeXHbqf5x1WqJvm9t3u Sw/JS67zUzIo9lpDfHQAD/opavSwML+kMiBsc5aeQ+Kxld2LtuADLzXNLSe8vtgB SKHgt7rgjYg9Sj22TxJqYZRMl3AoxoSBUqKEjoyykHXovrf357F4zE6LDErg/oH5 k7PL7p/znsCTNKrwNIuPoMxnXFcUiJg4ZhbriddkrjG4vB1P+J95moJqUz9Ph+8F kaK39xeUFITe9GGrtwMMuJ9CSQLOUgGLa28YJwSXBjMwLh1XkDKFuuUF0Wvo+RjK f6XEOQ993+iKe+6ZxbiMyZkii74RrpHtpnjBwT1DPUslh14vE3W8/BopHSJjV+mK gJgZmgJ6L5o+mTh8PGTh1kXLgqymt/RRKp0CyQ2YnG3tomYhIEC0W7laL7oCQIja T3oFkDLcgMFIAV80CSI1fURuKB5+GP88NeLlKVGcJHtBnx3hWTf/1zpY09YikvU1 uQe9AgMBAAGjggJcMIICWDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFN9NtuWrmOht mjtNEQmYxymICbVeMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wFAYDVR0RBA0wC4IJZGZuY28uY29tMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADuAHUAXqdz +d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFtxNrCRwAABAMARjBEAiB5 zLKQXYADc6natC3ITHLA/sky9bGNYaaM+VSH7Z8Z+QIgNliwQaculxRel3Nu+B1u JcHCN9S1n0+YcuqlzBrRh24AdQApPFGWVMg5ZbqqUPxYB9S3b79Yeily3KTDDPTl RUf0eAAAAW3E2sJDAAAEAwBGMEQCIBW0FreOa00zOdIBz2sRextyhsegrSM5+nrJ EXIdDR3YAiB1iAs9ljNVAr/3G0mKU0bPRuP+DKd7XYHkHdYKyC0a8zANBgkqhkiG 9w0BAQsFAAOCAQEADrc5f2LL4Qgw6L4eYPh6Fk0EQWwkOWxhWT4zzRA1nNiGXN6M pvjrUpyhdIje3A3LUjOQiJJGu0VagEMcq/jY06QiIL1T7rMV8ZLULjH69zENtwEX VBmYMAmKvZ3ODdjj2/BvXuyLt70kfkmXy6GDY0SmjaYZNNF8zO4MXyNKalBgzSTj 7TQdcSR87MUykrrKBmCU7R+bT5uMzorPQufCrZgxEwJGRy3o/Ztt4ogTFuU5TuN0 ZkpehFG9rzZllLtnlm2JOCgMtAgnQepiZ406/llQ+vumMG4qTJdwyr8xHizvSlwu /SrQ2r6HDXFLBdQ3+3aO+oOv28YNXgd+iPM+rw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4WdFcxjunA61wNwVzD69 572vKQ1o8xityJEhsJ6mhOQLQ4xke9ZXUAPA8tHd3cHHFuAF3Bn82jGHTdIGl0KF PksYAN13LUGRhDJpvUNx4XMCIj3XyHNHFv0JJZv10XQy7SA0Jv5nxKHjZb6PnrEV 6c0FN9aKpnMLaHmbRhUT4B4lMiHUiFibgjPvP2QW0NvHYqWVjOjOok/71E4OSbnd B5cdup/nHVaom+b23e5LD8lLrvNTMij2WkN8dAAP+ilq9LAwv6QyIGxzlp5D4rGV 3Yu24AMvNc0tJ7y+2AFIoeC3uuCNiD1KPbZPEmphlEyXcCjGhIFSooSOjLKQdei+ t/fnsXjMTosMSuD+gfmTs8vun/OewJM0qvA0i4+gzGdcVxSImDhmFuuJ12SuMbi8 HU/4n3magmpTP0+H7wWRorf3F5QUhN70Yau3Awy4n0JJAs5SAYtrbxgnBJcGMzAu HVeQMoW65QXRa+j5GMp/pcQ5D33f6Ip77pnFuIzJmSKLvhGuke2meMHBPUM9SyWH Xi8Tdbz8GikdImNX6YqAmBmaAnovmj6ZOHw8ZOHWRcuCrKa39FEqnQLJDZicbe2i ZiEgQLRbuVovugJAiNpPegWQMtyAwUgBXzQJIjV9RG4oHn4Y/zw14uUpUZwke0Gf HeFZN//XOljT1iKS9TW5B70CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 324422365640108085868915920805198280195232 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-13 10:22:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-11 10:22:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dfnco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 919565657864814348157861343124801295704669084338902658421247777339160906551083679132187662710000875451119953900236695941203853445911576472094762542350877796633441513355346730633173244295809989267222545326234523061067277232084913627897758132126978207449257836545636397672035996091325551181746860430374892903613122978170821913142032505430480568967447501771986902158007103733198515476294135856412698685377735203774395949799038520636789957998261652632675316899936721416510994700547740793010869674325689803897325306195666623944642215933508470450974914339837415638180025254618957334552778989763261392172406986762363397481099303932607377696207824110100326729729881689100871576845732249330577957405308274131099916239349264805059189553677993496145280171187807137204389318270393059698761059237389731710293031905856487300984438165013006938576229747718739446404999321110797053536752821591977672058821340776671755006181175607618288541078528782779955780115552607188442745161081482052841250763211752554503756080411097084758179304897971842823724558106568493555710658526300277611919877510710248594435770545050987688188971145207592800158814723835140117507158667869609961946064913932095266156216258501284193945350326594651141362985241102516990345021373 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) df4db6e5ab98e86d9a3b4d110998c7298809b55e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dfnco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016dc4dac2470000040300463044022079ccb2905d800373a9dab42dc84c72c0fec932f5b18d61a68cf95487ed9f19f902203658b041a72e97145e97736ef81d6e25c1c237d4b59f4f9872eaa5cc1ad1876e007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016dc4dac2430000040300463044022015b416b78e6b4d3339d201cf6b117b1b7286c7a0ad2339fa7ac911721d0d1dd8022075880b3d96335502bff71b498a5346cf46e3fe0ca77b5d81e41dd60ac82d1af3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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