www.lynnethomas.net
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:48:6b:8a:ca:5d:89:1c:f6:02:b3:60:84:96:1a:60:20:65 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.lynnethomas.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:48:6b:8a:ca:5d:89:1c:f6:02:b3:60:84:96:1a:60:20:65Serial Number (int): 285980136250561166623332571074996178264165
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 36:fb:2c:c1:0f:09:27:7e:c0:aa:22:af:01:33:5c:72:91:81:f4:64
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 45:a0:47:9f:6c:5e:e1:78:17:d5:d3:c8:63:fd:8c:d7:fc:7e:9f:c7
Fingerprint (sha256): 9e:ec:c8:33:ae:36:22:78:e9:62:39:d0:ca:61:55:1f:50:6e:c3:b2:85:24:65:2c:19:14:03:fa:d4:aa:04:00
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.lynnethomas.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.lynnethomas.net
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.lynnethomas.net
Other certificates including the domain name lynnethomas.net
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.lynnethomas.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXjCCBUagAwIBAgISA0hrispdiRz2ArNghJYaYCBlMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMjAwODM2NTNaFw0y MDAzMTkwODM2NTNaMB4xHDAaBgNVBAMTE3d3dy5seW5uZXRob21hcy5uZXQwggIi MA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQD0589pBVrsx7QRvHdtJuS4oEDa vQIRNF8u8XJ1urwj5aV2KfAgYHtGYTm6LQbbphfP5HbJL8QUESu3c+H19PBFWKB6 vHzpn/URgqgJ+w/MVIj6V6WlLecdhmRvqtbyD2qpkhH+da6rY0i1pm3ZM2aZ1SVE jjfelrEY4NYSEx4836Q9Tsrh6ZLzj0I97CvPyzMnK9638gzvIMx3G9rsgTkmK5z8 d4RGW0TwBwjRJnrpzLfGpGGhRASgZpiDOv/V/iX6wzgnMd9znoKRJdahYjVkthkW Ftp+3LI1fEucHzdPACLxFlifKFMwdZxZN0HDrW4dzDKB2FYr/Pc3ZrzzPNVpIg09 NkpniLH/lu4ofh2Pc7WX9UEQmD4Qq3dcJf/Dtox73a3HHj8kZANiRQyVSB76sABq inCzB9vmLRzKhO9drKn3LTIJAoGHRAxq9frc0r2shtQviIVDzeXPN5JiCM3Pgfjs nb4tL7RJVKmVVtMm7/jGFoMgaX47vuw+ugNlruKOS0Z4lZue2zLBd2thP9Kzilge vB+WEsXZ9S2b9FpuxKWrU5h9S5KUeHtU3KEkvNBOw1IwrPH46fD5fktsa5cse2t2 2bIsnuivCyH6HOc+Qw+xKkw8vi8YPnMjoEbE4rz25AkOhA8W6nyz9Ug4gpXqVI52 8So6GmrmFgxREqChOwIDAQABo4ICaDCCAmQwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBQ2+yzBDwknfsCqIq8BM1xykYH0ZDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObem RWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3Nw LmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0 LmludC14My5sZXRzZW5jcnlwdC5vcmcvMB4GA1UdEQQXMBWCE3d3dy5seW5uZXRo b21hcy5uZXQwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAm BggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEE AdZ5AgQCBIH1BIHyAPAAdgBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZ EwAAAW8iqsLxAAAEAwBHMEUCIEbTkVHtq4MjX4wnmT2WRLsUovsFPjd5tqI+0YYX jD6LAiEA3p8JYG2LOEhGS/PbeDk0vlkfhtppaJ8/CAf2F+p4mq0AdgCyHgXMi6LN iiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAW8iqsMhAAAEAwBHMEUCIQDEq9s2 nmoVVtBu9GGKiVeiVwj8P8J3wX3IOaz3ia+NlAIgRqzBjonAqefhl9hpxUHuMSIf ksx0rCTCMhELBh0Se7MwDQYJKoZIhvcNAQELBQADggEBACt0ImpinLhl6rhgbw87 /aPf5rYmGlqUQO1R7MPIbxAaA7PSAa6EnZAUC19iBDq89yD9hRk41CSHM0iXGsnG 2MJeThcdle6vk4zDL8aYcJTiwE0SzfoACRAYAJjf0HHxL1QxoKgIKZuhULSiBGDt /o7MhZwTN8v1Z7o+yDqgA1Xdb56aw60qko27cR9cx3rXUV7hvAq/v2LftfvgzlRU LQnj4KsJLWbrPqP4AlOHGfOO3kkuegs53yrk5ZpR3Kz+YMJomUVIIJLVueMwZhPo RCCnBkXOhxiVZnQp8qr0beQZwP8WVkyh23BBEi6VSWd/yuvujpGzBORVSW7oqUTS V7g= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA9OfPaQVa7Me0Ebx3bSbk uKBA2r0CETRfLvFydbq8I+WldinwIGB7RmE5ui0G26YXz+R2yS/EFBErt3Ph9fTw RVigerx86Z/1EYKoCfsPzFSI+lelpS3nHYZkb6rW8g9qqZIR/nWuq2NItaZt2TNm mdUlRI433paxGODWEhMePN+kPU7K4emS849CPewrz8szJyvet/IM7yDMdxva7IE5 Jiuc/HeERltE8AcI0SZ66cy3xqRhoUQEoGaYgzr/1f4l+sM4JzHfc56CkSXWoWI1 ZLYZFhbaftyyNXxLnB83TwAi8RZYnyhTMHWcWTdBw61uHcwygdhWK/z3N2a88zzV aSINPTZKZ4ix/5buKH4dj3O1l/VBEJg+EKt3XCX/w7aMe92txx4/JGQDYkUMlUge +rAAaopwswfb5i0cyoTvXayp9y0yCQKBh0QMavX63NK9rIbUL4iFQ83lzzeSYgjN z4H47J2+LS+0SVSplVbTJu/4xhaDIGl+O77sProDZa7ijktGeJWbntsywXdrYT/S s4pYHrwflhLF2fUtm/RabsSlq1OYfUuSlHh7VNyhJLzQTsNSMKzx+Onw+X5LbGuX LHtrdtmyLJ7orwsh+hznPkMPsSpMPL4vGD5zI6BGxOK89uQJDoQPFup8s/VIOIKV 6lSOdvEqOhpq5hYMURKgoTsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 285980136250561166623332571074996178264165 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-20 08:36:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-19 08:36:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.lynnethomas.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 999127305300057232882884881675060615611615360934826977513795854881817672834223919612730110132965007878225384200023218008941007731157782615679139817307395582776456613714849855065432382582370054546401450700370798705837041186721194003122750410668002322865146958706601883752609983745131325079296793391001222815242378610302565383972480231174146641490022567484276031575156692516825229491912005890577759057540312413619619713738064224271082977523906062970932978725058311220093933509059701251209682465645764680932278847685612267707176020283470766757714857194354739245059868239456557211551340240309534226683280536079386886612701866856217957909305846198799996372697908685057537874248253707149023888607099985967673612851723193046888520058565153728484905432728828035504140471499300425259688224024825167025778298290529328234215515406968014003252050529916133728310565825315829231420622448048231397977349058765577060916144868836064795510405388959325810737936167811257305301858436898710702891044128950350114761592505796758705975440029421709264383043411231708761204149407028800894679752077628483130367654356275133051861128975626768141939104705236023346331762235304178184854062696505442642009469246604311389454489685037680538106208886242842976970645819 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 36fb2cc10f09277ec0aa22af01335c729181f464 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lynnethomas.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016f22aac2f10000040300473045022046d39151edab83235f8c27993d9644bb14a2fb053e3779b6a23ed186178c3e8b022100de9f09606d8b3848464bf3db783934be591f86da69689f3f0807f617ea789aad007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f22aac3210000040300473045022100c4abdb369e6a1556d06ef4618a8957a25708fc3fc277c17dc839acf789af8d94022046acc18e89c0a9e7e197d869c541ee31221f92cc74ac24c232110b061d127bb3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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