www.designsforlearning.nu
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:90:13:72:9b:e1:8a:64:38:ea:8c:6f:44:67:d5:d2:8d:f7 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.designsforlearning.nu
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:90:13:72:9b:e1:8a:64:38:ea:8c:6f:44:67:d5:d2:8d:f7Serial Number (int): 310363369047300320274967346077320946552311
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 74:53:23:c5:c3:37:dd:82:8a:e2:36:72:a6:0e:de:6e:d8:9a:57:3b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 70:c4:0e:c6:68:f9:a6:7b:14:77:f4:f6:03:b4:d4:dc:f2:0f:04:78
Fingerprint (sha256): 9b:ed:6f:5e:8a:17:d8:08:d7:f0:a8:59:55:52:f1:88:48:48:d7:f9:58:43:48:a5:81:02:46:bd:cf:5b:9e:8e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.designsforlearning.nu
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.designsforlearning.nu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dfl.ubiquitypress.com
www.designsforlearning.nu
www.designsforlearning.nu
Other certificates including the domain name designsforlearning.nu
(limited to 100 certificates)
www.designsforlearning.nu
www.designsforlearning.nu
www.designsforlearning.nu
www.designsforlearning.nu
www.designsforlearning.nu
www.designsforlearning.nu
dfl.ubiquitypress.com
www.designsforlearning.nu
www.designsforlearning.nu
www.designsforlearning.nu
www.designsforlearning.nu
www.designsforlearning.nu
designsforlearning.nu
designsforlearning.nu
designsforlearning.nu
www.designsforlearning.nu
www.designsforlearning.nu
www.designsforlearning.nu
www.designsforlearning.nu
www.designsforlearning.nu
www.designsforlearning.nu
dfl.ubiquitypress.com
www.designsforlearning.nu
www.designsforlearning.nu
www.designsforlearning.nu
www.designsforlearning.nu
www.designsforlearning.nu
designsforlearning.nu
designsforlearning.nu
designsforlearning.nu
www.designsforlearning.nu
Certificate
The complete raw certificate details for www.designsforlearning.nu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgISA5ATcpvhimQ46oxvRGfV0o33MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODEyMDMxMTEwMDdaFw0x OTAzMDMxMTEwMDdaMCQxIjAgBgNVBAMTGXd3dy5kZXNpZ25zZm9ybGVhcm5pbmcu bnUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrv/0O1xD/Zu0j1yoB 01/TE23pozxI3zbAf5nViV97zU8qqqH0HBJbOWr5ZdCztHR160FtgyyF5eyGV2Vp 5eMu7v23ld3UZ48OrXk5HMiKSWaRzhPRGLZ2j56c8P4Fo/NMHgrgXTsiSv1e8dLy O1mmQuBqIOamk0L+IMK4mowik5r2YIfKaS941UmpTrRa+KuNw3Z/H1x1wb8A4iuR 0MQkFxYHbSgceiKIB3MJTtjoCHGnpgenKZeYjGvkrJmlNjd35cAl9lox9gH1UEPa fWv7kDA15oeyn3ZVrtUDeXPf/i/gf75qzOt3Of7rRolhQyj2FTPUveLkFs1kbtGC Ew7JAgMBAAGjggKEMIICgDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFHRTI8XDN92C iuI2cqYO3m7Ymlc7MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wOwYDVR0RBDQwMoIVZGZsLnViaXF1aXR5cHJlc3MuY29t ghl3d3cuZGVzaWduc2ZvcmxlYXJuaW5nLm51MEwGA1UdIARFMEMwCAYGZ4EMAQIB MDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2Vu Y3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUAdH7agzGtMxCRIZzO JU9CcMK//V5CIAjGNzV55hB7zFYAAAFnc/nEFAAABAMARjBEAiAR6jnt39Ao7bgO BarHdXUtA8PwyLQS22UNcshiAue+vAIgEfvqz1YV/5NtgWVB0DTdx74xkLeBbRxL nD6JkbEGiy8AdgBj8tvN6DvMLM8LcoQnV2szpI1hd4+9daY4scdoVEvYjQAAAWdz +cYCAAAEAwBHMEUCIQDujy6uJH8qUYnzjZsJH7VO6POLdBMK1xXQjCMHVkLP4gIg QYmRTuwqnGyPLgs6EFOVr84hIEotpqHXXzfyJaZ0kD8wDQYJKoZIhvcNAQELBQAD ggEBAGaskjh7CkXoKDpCdd+JjE4nB+HqhGQ1ClmbFhvRtLUkQoNW2JIBAocRGrWJ rgZVK2l21tmcI4aS3dErYCfDduEDTkYP8p+m3h1t9fswfAaWXvR5RhzyegYjfr3h coQ+hF/mHQMPjAn0HedchDLnFmYf6nGlb7ajU2hMmtLXUJWjQ/6BbDZGT+xqHjLg QQq0HSfxXGteBwL3/N4MxSLdLxvcKBASrYjYi5MB0oj63CfG0P3QIxDJUUbmMPqX sAWj1L9yd+sBdxcJfgvn1Kr7aatTrnkcqH2BlixVXd/CGpRu8ct7qas2Xyx0lxlN y5HDe8Y/LJI8IohphDhbpevyuMA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA67/9DtcQ/2btI9cqAdNf 0xNt6aM8SN82wH+Z1Ylfe81PKqqh9BwSWzlq+WXQs7R0detBbYMsheXshldlaeXj Lu79t5Xd1GePDq15ORzIiklmkc4T0Ri2do+enPD+BaPzTB4K4F07Ikr9XvHS8jtZ pkLgaiDmppNC/iDCuJqMIpOa9mCHymkveNVJqU60WvirjcN2fx9cdcG/AOIrkdDE JBcWB20oHHoiiAdzCU7Y6Ahxp6YHpymXmIxr5KyZpTY3d+XAJfZaMfYB9VBD2n1r +5AwNeaHsp92Va7VA3lz3/4v4H++aszrdzn+60aJYUMo9hUz1L3i5BbNZG7RghMO yQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 310363369047300320274967346077320946552311 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-03 11:10:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-03 11:10:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.designsforlearning.nu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29760674728680032390366577376816864058526665974915455066485732644981516799401487028433798175038070989167421315998998579520758449555124545101033762573330790685992225305501948944155186726114743331549019309313419364044194771974930257610478557019779482192932603072927779392202138899696633943999921778619077138203427967884500227765301588438898472215360936221158891333934408976733708186399743920460556671477366309712458807694535438327808307512609543879135015964549010775571736312890678736184732362255831888334225477752678008588260096494060788476427798531846467842353644264635174267775876414953305718736822706513838504873673 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 745323c5c337dd828ae23672a60ede6ed89a573b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dfl.ubiquitypress.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.designsforlearning.nu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016773f9c4140000040300463044022011ea39eddfd028edb80e05aac775752d03c3f0c8b412db650d72c86202e7bebc022011fbeacf5615ff936d816541d034ddc7be3190b7816d1c4b9c3e8991b1068b2f00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016773f9c6020000040300473045022100ee8f2eae247f2a5189f38d9b091fb54ee8f38b74130ad715d08c23075642cfe202204189914eec2a9c6c8f2e0b3a105395afce21204a2da6a1d75f37f225a674903f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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