status.geoip.app
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:bb:18:2f:22:68:be:32:8b:8c:99:4d:26:18:c7:da:d2:54 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=status.geoip.app
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:bb:18:2f:22:68:be:32:8b:8c:99:4d:26:18:c7:da:d2:54Serial Number (int): 325001806617247940408170836035113307525716
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 2c:2c:7f:20:5b:5e:fd:cb:6b:c1:16:32:e4:6e:43:1c:55:f1:24:9d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 05:ea:77:e3:af:2e:49:43:cb:67:e0:0c:ca:1b:d2:03:42:2d:64:80
Fingerprint (sha256): 9d:7e:be:d0:e1:6e:f6:5e:cf:bb:f5:27:f6:cc:10:3e:5b:aa:45:7b:a1:03:3d:f6:4d:8a:74:20:6e:2b:10:56
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate status.geoip.app
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for status.geoip.app
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
status.geoip.app
Other certificates including the domain name geoip.app
(limited to 100 certificates)
Certificate
The complete raw certificate details for status.geoip.app in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWTCCBUGgAwIBAgISA7sYLyJovjKLjJlNJhjH2tJUMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODEyMTYxOTIwMjVaFw0x OTAzMTYxOTIwMjVaMBsxGTAXBgNVBAMTEHN0YXR1cy5nZW9pcC5hcHAwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDO3IqpGvzRuD+rSv9NPOhJv9d9H/Hq k3zxgsrdmedmqRmcIZ46z8eWrarSXnvwYVkhwrDqUhMFbcV++0IYFXGPXUUWSrT3 xN9w2d6r5GKWXSjeD+s/nPnqXaWYryXkpAP1MRIY/HDAhJ7PClIOaWOyU4OYyTHh /1lwg26zsND8RkJJJ6N+PPbKpv1jlKa66ZqOx2po83KMobD+TLi4peqDuBm2iXMK 2Apx1giBjWMnk2paZR5Y4jB2J/aNcjyFMVxdq9FqqzYQsGKTxN6MdM9UqIR5lf1t VPrlVUBcqv3X3siWEyWaBdj6cyNsIVHXhaRMSWXnTBVb2eg0TuIDtBajScGDe5oc 81wHjbG1lOc+uYEazC6QH0+udbLkQuTWNp/TyArSU6WQkXd86pEHyh8LR4yLAU8H 17m88bD+LTsKLrxtRhLSCk8z5nQi4bXFigvfLNWDF+cN6NNfGuAbvH9tfmy/s8SD NMd5P6hV4joumhi2ctLbgRzXGfjMxxoTRhK47x7VSj0Hbk600F6JbPs3XAdDlET8 S8OD5LbhY6du9TDiGJwSZYNTa6Con9g9999mh8uMUguJuO+Zc3iq3t1lFW4W8+T0 Gh9MJ6WsQZsrXkdwH5GLOJQDeheD8IjrvHv1/RPoU/IUiwvUzAmv88wGJ3v+xyXf Hl0wCUf7+7+V2QIDAQABo4ICZjCCAmIwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQs LH8gW179y2vBFjLkbkMcVfEknTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHN0YXR1cy5nZW9pcC5h cHAwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQC BIH2BIHzAPEAdgBVgdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPTDAAAAWe4 rVCaAAAEAwBHMEUCIQDQ+1DYFmcXUa3qgIG1yBUloJxNUkNr1aCk4+11n+46hQIg NZms3kIgXx4VpmcRkzOB7k3krOSa1WLkdmsRezzo4SQAdwApPFGWVMg5ZbqqUPxY B9S3b79Yeily3KTDDPTlRUf0eAAAAWe4rU/NAAAEAwBIMEYCIQDpLBkJrkIOhQHT +rstM2fJn4PsJNAgLK2KnB2KZwKFqgIhAPzJlQLiuBGQEqjrwyyU2sdTLgIJ2EGF yZIc+ODAdhJOMA0GCSqGSIb3DQEBCwUAA4IBAQBsaBSTI2UxSjRsJ1L0x6SKHyj5 IZhJiKrYdZe7cFFEL7drWn7p9jEBZkqMV/5sZ17rNGCajDR41KpTdYKW1p20S0bE xE7juG+RTdKB3NY2YxEaU23OvH8Ecl75FyzSY4aLOQDM7p9qrCHZTIfJeuTgh61Y mH7nLIbYVhqablGjpK7eiDl7QfYxWjH7GkrfL/gxfBdx/bk7bCCA3o8Xt0sLzBkT d6OZxmfaBfUc+VBB/Sev1IS75g8glnL3uvZQeRuAFXNY6cVicgqS7khm85tDV4U8 WgGhfag0JcWlTPtyvGiKydokqaUaga6jcCspLD32hAPh8HsyQ1aanXc+odlS -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAztyKqRr80bg/q0r/TTzo Sb/XfR/x6pN88YLK3ZnnZqkZnCGeOs/Hlq2q0l578GFZIcKw6lITBW3FfvtCGBVx j11FFkq098TfcNneq+Rill0o3g/rP5z56l2lmK8l5KQD9TESGPxwwISezwpSDmlj slODmMkx4f9ZcINus7DQ/EZCSSejfjz2yqb9Y5SmuumajsdqaPNyjKGw/ky4uKXq g7gZtolzCtgKcdYIgY1jJ5NqWmUeWOIwdif2jXI8hTFcXavRaqs2ELBik8TejHTP VKiEeZX9bVT65VVAXKr9197IlhMlmgXY+nMjbCFR14WkTEll50wVW9noNE7iA7QW o0nBg3uaHPNcB42xtZTnPrmBGswukB9PrnWy5ELk1jaf08gK0lOlkJF3fOqRB8of C0eMiwFPB9e5vPGw/i07Ci68bUYS0gpPM+Z0IuG1xYoL3yzVgxfnDejTXxrgG7x/ bX5sv7PEgzTHeT+oVeI6LpoYtnLS24Ec1xn4zMcaE0YSuO8e1Uo9B25OtNBeiWz7 N1wHQ5RE/EvDg+S24WOnbvUw4hicEmWDU2ugqJ/YPfffZofLjFILibjvmXN4qt7d ZRVuFvPk9BofTCelrEGbK15HcB+RiziUA3oXg/CI67x79f0T6FPyFIsL1MwJr/PM Bid7/scl3x5dMAlH+/u/ldkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 325001806617247940408170836035113307525716 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-16 19:20:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-16 19:20:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'status.geoip.app' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 843921253812848027148359836990341003931654457319262590636308076157572461616999676606915351731769944414169210332718188188120279428724760437667180494944754939922192096113038876067590866051524499275305853942156264992478049288180180563206546840003702649356866788187781516251169355776388382065341359572437950933653209095476613961440408551699627763768262377063343508412796094226733555009298959389135482992029143155605210108807778466391758492012914891062281754473942615625554545243220917883685220569336489933077497977182491774192849518877682304325933168350757146968381611596616477908380561979468763880325478885610007992311704552940121368463217189695138683539236583876585520337961321095348779688263963550028394385449770936958184445062518569210392693745547825690076485492989859322420016530478409349208102115210422322752640350640485378230044514518632401943167248438454923362441109891628242893324818243417120328776434848434024333248169191871175818465497306146710175948202469232224448310751459403745362926172664880587770223801654100962744441222175277424547117790641845438660313293087637056386171539171868296065719517187753150696677085077981001368946538702518838342134721755916752220779293023140509677803038388204492047615117830062107688777520601 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2c2c7f205b5efdcb6bc11632e46e431c55f1249d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'status.geoip.app' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c00000167b8ad509a0000040300473045022100d0fb50d816671751adea8081b5c81525a09c4d52436bd5a0a4e3ed759fee3a8502203599acde42205f1e15a66711933381ee4de4ace49ad562e4766b117b3ce8e124007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000167b8ad4fcd0000040300483046022100e92c1909ae420e8501d3fabb2d3367c99f83ec24d0202cad8a9c1d8a670285aa022100fcc99502e2b8119012a8ebc32c94dac7532e0209d84185c9921cf8e0c076124e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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