drona.ca

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:bf:40:e7:3b:34:07:0c:02:84:46:75:62:ff:e5:83:b6:41 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=drona.ca

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:bf:40:e7:3b:34:07:0c:02:84:46:75:62:ff:e5:83:b6:41
Serial Number (int): 326417061090268754602677948338834076055105
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: ad:c0:81:dc:6f:01:10:36:c9:23:7f:8c:a6:0e:de:44:54:19:5c:9b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 1c:c8:d8:20:0c:b3:8e:00:25:c6:6d:cc:3a:05:16:40:68:34:86:e0
Fingerprint (sha256): 9b:e4:35:98:68:8c:fd:a2:11:f6:f2:04:8d:52:f6:a1:4b:a8:16:00:ef:2a:53:c9:62:d7:cf:86:68:94:64:95

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate drona.ca

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for drona.ca

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

drona.ca
www.drona.ca

Other certificates including the domain name drona.ca

(limited to 100 certificates)
drona.ca
www.wbartoo.com
www.drona.ca
drona.ca
drona.ca
drona.ca
nmstateretrojerseys.com
cory.benbraham.com
www.frontendshere.com
www.drona.ca
blog.wick.technology

Certificate

The complete raw certificate details for drona.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIHBzCCBe+gAwIBAgISA79A5zs0BwwChEZ1Yv/lg7ZBMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA5MTQwMDA2NDJaFw0x
ODEyMTMwMDA2NDJaMBMxETAPBgNVBAMTCGRyb25hLmNhMIICIjANBgkqhkiG9w0B
AQEFAAOCAg8AMIICCgKCAgEAx8LWOQfssHNSV0ikj4lcDdVpp6JWmtnWXS38mx2M
YLp4Kr2c4/kQkDts6ZMxF6Y9+tPTbKEKABKZF89+gPLXtXitjTVgkSsEg1lCLUkJ
ihXFXXpqgp8Pcnk4MK4XIPId1lBhBpKjzlclK+669FSWyfyVSP94wGPLZEICOP4w
d61gaKk3oYm8Kb2JMxgrrr/VlstAJQTdY0bhitmzuzdRZ8tu3T7mRAllebz7KAsp
8a+ekRM0Qjj6dH3yPs5cgnrhbDc6Imadtw7g1OYnHmugqDaHjSdscq/XBVcCpOXX
N9HuZiMa/FCdcGJN9pGMzc+rHMn7RuwqDkeikJ1CmcPrrtgqDzAbCX91UNL9BxZR
9akbyBN5lM3qTHvrSfr7pZ497EZ1IHQsYpbiUEm3DG77vmj5PT9/G8HZUvtMLcWb
zOy07x+BclicA6bH4RTGGxM+ppsIRTrp+W6nQRbNshQDoQZgOaWPPAhFYDbifzex
BcKne6h6U+ims3QeZE5Trw2fHPG0tNg4t3zLQ6AWgf/kbyQdrS+6soA09cuSzQnc
Lmgu8O05zShoidQsWnj6ttR3pc6rDFHFYvWHcvgPzQF3ggkjgT084apn5UWtLIek
F5tuMOLLbBJIS0PGRO3VQ8FKri8B3ipVa3lwGG7hjQQJHpdtiH3q5Ot+nf1OdKlf
+RUCAwEAAaOCAxwwggMYMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF
BQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUrcCB3G8BEDbJ
I3+Mpg7eRFQZXJswHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYI
KwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0
c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0
c2VuY3J5cHQub3JnLzAhBgNVHREEGjAYgghkcm9uYS5jYYIMd3d3LmRyb25hLmNh
MIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggr
BgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwIC
MIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBi
eSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRo
ZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlw
dC5vcmcvcmVwb3NpdG9yeS8wggECBgorBgEEAdZ5AgQCBIHzBIHwAO4AdQDBFkrg
p3LS1DktyArBB3DU8MSb3pkaSEDB+gdRZPYzYAAAAWXVnaLkAAAEAwBGMEQCIFg5
Dw4/DJ1uW3XNQI8JVHbRjVuS6ZndqR9vm3QHRMiNAiBpxhVPfvgKV3QxDwYY8yoN
Wfe2eZOK+2I1CPZ3YVNs6wB1ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVF
R/R4AAABZdWdoxEAAAQDAEYwRAIgBWgRS6Zz/NcJUxfWoxuNeLBBeQLR9Dv5TVYa
k6kl0ZwCIBOdeSTSPtqdtAd03pSX1u7YPGUHyh1iuWwI7dLlOe5CMA0GCSqGSIb3
DQEBCwUAA4IBAQAt1fE9pJJQ8d8iUb1Fy0IcQmHciJaa7D67rZcvfGOG5VBjFwJV
+ss+rObPpMN9Np+CJ6mFW/jogzzLC4IH2tsYC4jhyGj67b9NRpvVxn8ewwpCdSdp
2Y23YK2PqiodTJcjPkU8/yUx07CB5Xjeh4rjQ0RVB8TWTkBA0ume0WRyReJczRgu
aPSfmbdVM6Vgzv9T9QqxLTd/IlHHSLZUqT+9tyKIfon5sSq2kAHJx4AzCAE1HvZa
3auoKGp4jMOplakYU+qnbFOLJuzbQx0G1PjSTf15zEbLKpT0N16/vK+SHGZzMC5l
dijTMrXx+VS5whpuVhkAIfZSKiB6O77sVjIn
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 326417061090268754602677948338834076055105
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-14 00:06:42 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-13 00:06:42 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'drona.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 814954110265928748022146257424197488057864982897989030483977624327836311993916806431372695316261708846990370288185931910681433626514029544820739350486113045182663216173278418674060469219369886769059851358718760147232372778690002802029840796296759860456121537159827812830997386341796917793331300109825006267939181299699022679179244767686856203652618241263000641059912735327814977058909493562407137226273919037374334709445080737455100481993503084359616892171573408776376322503187568790495578357731093241109827036085690698906434391997122548709148390649985637765777745641588640998387818187022403529655127750346452859523356978246063310212433148948743282602337731846038107094109423158789910860394757951831155867027863731803456720471987542519474920681810628188097987643121673635138180410217235270189583447794284044625658543408794945131705490754811561913400944316028109579688801579507255572010553412115781973842619224026361591574925059120064827891410053754093642351491634257284396738280766237994833466610446982123582304578773129124776277475214859020834170929023106279508539895957322949009816633507308403042739763037647624056025381369789311600753149199479377987087056170560424667262622879059700356002251175918571362166137819662490737351588117
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							adc081dc6f011036c9237f8ca60ede4454195c9b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'drona.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.drona.ca'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee007500c1164ae0a772d2d4392dc80ac10770d4f0c49bde991a4840c1fa075164f6336000000165d59da2e40000040300463044022058390f0e3f0c9d6e5b75cd408f095476d18d5b92e999dda91f6f9b740744c88d022069c6154f7ef80a5774310f0618f32a0d59f7b679938afb623508f67761536ceb007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000165d59da311000004030046304402200568114ba673fcd7095317d6a31b8d78b0417902d1f43bf94d561a93a925d19c0220139d7924d23eda9db40774de9497d6eed83c6507ca1d62b96c08edd2e539ee42
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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