stipsite.nl

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:1f:5f:8c:48:80:3a:98:a8:a9:49:15:f2:8c:b9:a7:6f:b3 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=stipsite.nl

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:1f:5f:8c:48:80:3a:98:a8:a9:49:15:f2:8c:b9:a7:6f:b3
Serial Number (int): 272012616221482425139550827704574649266099
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: b7:5b:65:69:ae:30:4f:0a:ec:5c:18:b6:32:71:8e:29:40:5c:69:ee
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 9a:bf:d4:0d:0e:a6:fe:3e:3b:89:c2:7b:29:35:3b:ac:60:ca:44:f5
Fingerprint (sha256): 9b:ca:74:74:28:b7:ba:93:bc:b5:0a:75:39:0c:84:fa:59:53:4e:b8:fe:a7:96:0c:ff:72:dd:44:a8:66:fa:13

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate stipsite.nl

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for stipsite.nl

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

stipsite.nl
www.stipsite.nl

Other certificates including the domain name stipsite.nl

(limited to 100 certificates)
stipsite.nl
stipsite.nl
www.stipsite.nl
stipsite.nl
www.stipsite.nl
www.stipsite.nl
stipsite.nl

Certificate

The complete raw certificate details for stipsite.nl in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6jr9D04UWlkG8zzyQeIL
xKA/8TqrcAr9qnzOr7MyaG7assuvLWtrfrZ2mzbh0T1lILrGQO1NI781wfjTzuug
hPmqGUTBtrm+yIdCWumm63k4rwhqvJ+be9w5X8rrY45FsIJSJG4WPJnkK6+uIhJA
8rN87c5IV4E+xofwtktbQSxvecBMB4WUL2GLQ4LyhwJeSKETMTih5P8Qjlvt5UVE
72v50ENJo6+4TL2bE8jjd4FLVG+dIxBTd739vLXVE3nXMey/Awt9BblcIbtFTJGO
LR7FINk/6zbpzwy7N1ecTfOP4XvnKsCnsewYeA2zhflAWlyzehJwmUcvlnDx58fr
jggmxNlf53qr2Ag4i39lm556gAcdz4jhS66Hw4SWU5je4FRvrBZYi1Q4cFj9/0Av
kLad61MzdpVC5QmY3AO/UuPVotlO8YiU+f2hnq8N/QTflg97+n205xs5A46sC/L7
lKHpgTKMEwrw46mjNkmsLyBqm/f++p2FARp4oQ9EsGNBXVE38mCgTdb1eGFNEfZ6
JP7VPnfdKNF0xHB6QKex4nzYGb9l/7Be0yNIjUfUeMs4xHXV4ETovWy4jYCA1WkU
BjGwQIp/0wQPTPfA7laJwxYZerQQ6+cmF8xeh2esbcUCSr6ynj0Mc0o6C19XdhFs
uo4gknRij0BFjWTDLg1KEUUCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 272012616221482425139550827704574649266099
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-22 22:34:31 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-20 22:34:31 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'stipsite.nl'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 955576759355877484864410974500786980748058571356853722151616042895615093093587949604390696555315420921461293112281053096220809017048957256158391892669813480551756245095856694818304670042725823709878024573629592229155860713489215517386357234079158160676409216561539415416721924344429278808965277045651533239044250138072065114280745466392153086033224321609364284949429941252830759152845218134579772963788210336006743813453875181686636743110973386818780658318944654800866285243592450874622980014126724039126979744823120441766142730542678016967548633850550863292245317177605649415448095365535221470565358313874638359927294977959718914163692437101237605579119402029579271483038552397476860795135846416203900052266711409634703290690255655989522141929801411813009222925716909057378036690925441547220662398071004619980216540205388897706105864485459574115709644467009588892934655843473411837774085021661885001006284687120902333068113296542904938951523782307119018581090728950416094194283055946802885988713587076468159764477829568918696828409905815579966491368273783925863907531976941554856606147686730743375570076460000971159402683687353940958134083181427639654343878453809391864019945911870718137777496162958318649011392262270404192855789893
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							b75b6569ae304f0aec5c18b632718e29405c69ee
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stipsite.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.stipsite.nl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016e95779301000004030046304402206bd31e54b4df99677dac897cb224938e282e401278111614fe020e02f98d3492022010cb03f929cb129a5f9b70c4d37a60642540b9b53950aabe6806f34a706f42e50075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016e95779382000004030046304402207c79651aa768591cccb6316e9eb28e88db8951e3406493f9f1bdada87d584636022063b6548290fb94c9a11e7b4d6a12a1e713598a9d7e45e6cf6b3087b06aa9ce8e
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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