status.geoip.app

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:bb:18:2f:22:68:be:32:8b:8c:99:4d:26:18:c7:da:d2:54 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=status.geoip.app

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:bb:18:2f:22:68:be:32:8b:8c:99:4d:26:18:c7:da:d2:54
Serial Number (int): 325001806617247940408170836035113307525716
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 2c:2c:7f:20:5b:5e:fd:cb:6b:c1:16:32:e4:6e:43:1c:55:f1:24:9d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 05:ea:77:e3:af:2e:49:43:cb:67:e0:0c:ca:1b:d2:03:42:2d:64:80
Fingerprint (sha256): 9d:7e:be:d0:e1:6e:f6:5e:cf:bb:f5:27:f6:cc:10:3e:5b:aa:45:7b:a1:03:3d:f6:4d:8a:74:20:6e:2b:10:56

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate status.geoip.app

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for status.geoip.app

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

status.geoip.app

Other certificates including the domain name geoip.app

(limited to 100 certificates)
status.geoip.app
pixframestudios.com
status.geoip.app
sni.cloudflaressl.com
geoip.app
status.geoip.app
www.geoip.app
status.geoip.app
www.erny.co
demo.k12ride.com
sni.cloudflaressl.com
status.geoip.app
status.geoip.app
mvsg.com.br

Certificate

The complete raw certificate details for status.geoip.app in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 325001806617247940408170836035113307525716
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-16 19:20:25 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-16 19:20:25 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'status.geoip.app'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 843921253812848027148359836990341003931654457319262590636308076157572461616999676606915351731769944414169210332718188188120279428724760437667180494944754939922192096113038876067590866051524499275305853942156264992478049288180180563206546840003702649356866788187781516251169355776388382065341359572437950933653209095476613961440408551699627763768262377063343508412796094226733555009298959389135482992029143155605210108807778466391758492012914891062281754473942615625554545243220917883685220569336489933077497977182491774192849518877682304325933168350757146968381611596616477908380561979468763880325478885610007992311704552940121368463217189695138683539236583876585520337961321095348779688263963550028394385449770936958184445062518569210392693745547825690076485492989859322420016530478409349208102115210422322752640350640485378230044514518632401943167248438454923362441109891628242893324818243417120328776434848434024333248169191871175818465497306146710175948202469232224448310751459403745362926172664880587770223801654100962744441222175277424547117790641845438660313293087637056386171539171868296065719517187753150696677085077981001368946538702518838342134721755916752220779293023140509677803038388204492047615117830062107688777520601
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							2c2c7f205b5efdcb6bc11632e46e431c55f1249d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'status.geoip.app'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10076005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c00000167b8ad509a0000040300473045022100d0fb50d816671751adea8081b5c81525a09c4d52436bd5a0a4e3ed759fee3a8502203599acde42205f1e15a66711933381ee4de4ace49ad562e4766b117b3ce8e124007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000167b8ad4fcd0000040300483046022100e92c1909ae420e8501d3fabb2d3367c99f83ec24d0202cad8a9c1d8a670285aa022100fcc99502e2b8119012a8ebc32c94dac7532e0209d84185c9921cf8e0c076124e
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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