topstep.co
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:a6:62:8d:f8:10:8a:24:43:d6:8a:bc:db:90:b2:a2:5a:97 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=topstep.co
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a6:62:8d:f8:10:8a:24:43:d6:8a:bc:db:90:b2:a2:5a:97Serial Number (int): 317954732192948485119915580210438182427287
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 1e:c0:63:8b:ae:d1:bf:4c:9d:d3:35:5b:ba:43:93:df:81:fb:a5:10
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 04:db:01:77:08:1e:ee:8f:3d:49:80:19:a3:fa:88:90:7e:5d:c3:55
Fingerprint (sha256): 9f:27:1b:a0:91:f9:ad:e9:34:ac:af:c1:93:31:92:14:bd:dc:78:6e:d4:be:50:06:0c:1a:47:62:2c:b9:07:84
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate topstep.co
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for topstep.co
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
topstep.co
Other certificates including the domain name topstep.co
(limited to 100 certificates)
Certificate
The complete raw certificate details for topstep.co in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSzCCBTOgAwIBAgISA6ZijfgQiiRD1oq825CyolqXMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MjkxNTAzMTRaFw0x OTA5MjcxNTAzMTRaMBUxEzARBgNVBAMTCnRvcHN0ZXAuY28wggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQDC1GZVw4hJY78G/dmvaVkJIEx38MDBSGosRARl zN6B+FnFiEE+sOmiBto4CmR+guy3jdFMxqZl5rARqo4K+75WvLj2Lt94sXk9ur/v XjnMwPawYOOW1deAJzzLQfm3Gw8Au7W6azGvF4zVHkpsj+HA/C77WJq6YOg5p5kK wcY2X/NlblXNtFrqpKzMQUFoNVLMtkpAApVRkY79+qz0Bbw3dA49yRaNhVleT1qB U0ShuhYIm484D2ISZW9HZ7+PwKOVTTRo76wJIGy+E5MMnreRSxtZcdsH3DoI9C4y ELnajzO9mIeFH0xmzkINnxbAg2EPqr36BMniahoZHA5b7FG/94a4QCdllD0V1VVP 5FA8Tuq1Rpwwgc+rASGS8FHIgvzj/5wGFSsR+oIq+EsEIS8g9mSI/9jut3v9VL57 8+U4UXXavY2nhbJ2LqdJ80DoPWmlsSqx/vMtDrKuqyeg/kxLdzE3ETNgCXevjqka 3t7awFPUh4Dc2ft5DHPe+HAxjgGORU65DxAelgjlJ3rysxINRTswOagsbTMWVZHX MGX/rAkRXm5YQvpz0tOA+Sa/JrNwcCMlvkfFOYmHgkfVp0IoDv01cpJhQERrz45b aPQf8Ha7prdXy3S2rmwp+ZNclDkVG3womFUcsnIu+1zkfbsT1qxXMICCaibD60wX rHHYxwIDAQABo4ICXjCCAlowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQewGOLrtG/ TJ3TNVu6Q5PfgfulEDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMBUGA1UdEQQOMAyCCnRvcHN0ZXAuY28wTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdgDi aUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWuj+e4BAAAEAwBHMEUC IE5W47MaVP2sCp306De8YLZaMPBGXx4pz3EBwRy0GjFoAiEA3l1TOORjMIITL7f0 LjWIPtWPLmslqRY24kzTAUglJ/MAdQBj8tvN6DvMLM8LcoQnV2szpI1hd4+9daY4 scdoVEvYjQAAAWuj+e/iAAAEAwBGMEQCIGVNaDGS464wE20MZ3ITLonYsS/Z2w3c NpiLMYIqajJsAiABPVT3EDUJu45MKbLwoJGXpFT5ipin6ci3IzrWcZFhujANBgkq hkiG9w0BAQsFAAOCAQEAMTeLOn3a7+d+/k5s0/TBnqpCydg1TeY2mrHn7truQyj6 95OUbQUkEnnE9Cy2/vNsOVSQvovDFLuO/eCpEHUM3e/806bU0KTCTSZQSeFeXsQ9 AUqt8iiJihTnIBCrUV9VIbp248U0eaPBfPgCm7Qnt/9bnArmExcOV3wPiYl2+2cs Pq+VeqpAbXqShJWpm9jywdqJeoPgrSY8on0NUH8HdbT1KNmmRO1hMBzC3hRr+5sh BI+VecEnpMob8yeHqx3wkMc85kug9b6UZ8qeDREMLuQSUnpWIha1ui2UbiyBa/nS 7CNNBvvYmg6rTUcSz9zl+8YrvswOmgOxBe7N/s/UDQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwtRmVcOISWO/Bv3Zr2lZ CSBMd/DAwUhqLEQEZczegfhZxYhBPrDpogbaOApkfoLst43RTMamZeawEaqOCvu+ Vry49i7feLF5Pbq/7145zMD2sGDjltXXgCc8y0H5txsPALu1umsxrxeM1R5KbI/h wPwu+1iaumDoOaeZCsHGNl/zZW5VzbRa6qSszEFBaDVSzLZKQAKVUZGO/fqs9AW8 N3QOPckWjYVZXk9agVNEoboWCJuPOA9iEmVvR2e/j8CjlU00aO+sCSBsvhOTDJ63 kUsbWXHbB9w6CPQuMhC52o8zvZiHhR9MZs5CDZ8WwINhD6q9+gTJ4moaGRwOW+xR v/eGuEAnZZQ9FdVVT+RQPE7qtUacMIHPqwEhkvBRyIL84/+cBhUrEfqCKvhLBCEv IPZkiP/Y7rd7/VS+e/PlOFF12r2Np4Wydi6nSfNA6D1ppbEqsf7zLQ6yrqsnoP5M S3cxNxEzYAl3r46pGt7e2sBT1IeA3Nn7eQxz3vhwMY4BjkVOuQ8QHpYI5Sd68rMS DUU7MDmoLG0zFlWR1zBl/6wJEV5uWEL6c9LTgPkmvyazcHAjJb5HxTmJh4JH1adC KA79NXKSYUBEa8+OW2j0H/B2u6a3V8t0tq5sKfmTXJQ5FRt8KJhVHLJyLvtc5H27 E9asVzCAgmomw+tMF6xx2McCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 317954732192948485119915580210438182427287 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-29 15:03:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-27 15:03:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'topstep.co' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 794835774838235865818056318509652101973526890747076722115612052637446605958757712919829316858999996523544460960759372166014294878501245740619952552954863432390469161178554577062680735975298432538062854555935387186987888828372728325539573180331385316677334596502457852948334650125968457875034643571329997337594350246145621385282353194497892188354078912382285639704890469941887128795004140932652051311214344103107678878897156642658797614672036015370839016662366925835394348590568329175583323476918291341893033506419181825764709968106755382922011518279752614891205946607778161214116561656938004343889521555665611105116560816530375953459125923265034356429562344752894842516337600629090672461884085607914719485900211960552027149097384576630635614934043035262512812983791899757482592005153239059292520248722163290416866501482281671982773819863948448961558537418675404885860889066469337624627599236924962713273199862296913892184217596460475165087774824729359512765707535466414806632561225292126117993836691752414198353935850103209414216223823849048336592592030139351813201497238249945599505333911633926225688821844009330411491040917000999393728780325419288816834189355144926354018361155437987711637313380825507219490482583913653553438251207 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1ec0638baed1bf4c9dd3355bba4393df81fba510 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'topstep.co' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016ba3f9ee01000004030047304502204e56e3b31a54fdac0a9df4e837bc60b65a30f0465f1e29cf7101c11cb41a3168022100de5d5338e4633082132fb7f42e35883ed58f2e6b25a91636e24cd301482527f300750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016ba3f9efe200000403004630440220654d683192e3ae30136d0c6772132e89d8b12fd9db0ddc36988b31822a6a326c0220013d54f7103509bb8e4c29b2f0a09197a454f98a98a7e9c8b7233ad6719161ba . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0031378b3a7ddaefe77efe4e6cd3f4c19eaa42c9d8354de6369ab1e7eedaee4328faf793946d05241279c4f42cb6fef36c395490be8bc314bb8efde0a910750cddeffcd3a6d4d0a4c24d265049e15e5ec43d014aadf228898a14e72010ab515f5521ba76e3c53479a3c17cf8029bb427b7ff5b9c0ae613170e577c0f898976fb672c3eaf957aaa406d7a928495a99bd8f2c1da897a83e0ad263ca27d0d507f0775b4f528d9a644ed61301cc2de146bfb9b21048f9579c127a4ca1bf32787ab1df090c73ce64ba0f5be9467ca9e0d110c2ee412527a562216b5ba2d946e2c816bf9d2ec234d06fbd89a0eab4d4712cfdce5fbc62bbecc0e9a03b105eecdfecfd40d