www.masoretic.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:92:09:8d:86:43:a6:3e:82:6b:d7:70:fb:fd:69:37:e7:29 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.masoretic.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:92:09:8d:86:43:a6:3e:82:6b:d7:70:fb:fd:69:37:e7:29Serial Number (int): 311030781254759497117783823646199507314473
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: c9:40:ef:4b:ab:e4:e1:6b:cb:73:13:fd:50:33:bf:ca:24:c8:5a:8d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 34:2e:41:98:79:56:62:e6:53:2c:8b:e2:7e:ab:b7:ed:6e:12:5b:ad
Fingerprint (sha256): a0:81:e8:f6:c0:48:da:a6:7b:ca:98:67:5e:8b:10:e1:47:5d:99:83:a3:22:7c:ee:18:ef:88:36:af:02:e5:fe
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.masoretic.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.masoretic.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.masoretic.com
Other certificates including the domain name masoretic.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.masoretic.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWzCCBUOgAwIBAgISA5IJjYZDpj6Ca9dw+/1pN+cpMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMjMxOTU1MzlaFw0x OTA2MjExOTU1MzlaMBwxGjAYBgNVBAMTEXd3dy5tYXNvcmV0aWMuY29tMIICIjAN BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAz4ylM4nevf2uedJxvMyeMffXCXg3 0YkkPndnCfNMrYi2hQdYcEBUUfXftJcyWiZ0X95c4Xe2hh7LHgff6rgOka2mb9nR h3z6gooOAIoZ9UougQy8bwQBLp0lqkn1ljmt0KuQhX6nQmeQndq+0rbYEGzeP5L7 Zdq/etJo63r6aaIXsrS4UKo2c7tI+HYsfkFZAY+l6khtjPd0VshdHicjc8T9uC/I IwfZS9o8eD91uKkRWGYqI0wnj2DUArMPgbEUfHEu0c8Hbd5ApCT8VTxNnpnBHFWE NNuiKqqfg85ALp5apeaNexFA67xwmYmSg7hgH1DuiS62H6tS/gjVHC+EgA57Iwf5 U39OjnT8cIFJl8DAPJcYXJqrZk+krnTAIJkie3JLYdOn3SsffZKYJySEuS/F73de /In87Fs85yHCLvYg5X6zbwa9LyTceqzMwox6SjsnftoN+4uitWGHen80kAVVpzlG qu5lOLu1lJlysrGNOVSkTWpdTMJTsDkO4Ab+5EuCIwuQNrw1IeD/agFVWLC4QQF6 P/GowFbMwEmSPfia48iZA6hlt+zO3umkX4M5QAiAiNrB3akUafUO4QqlZQtMXdpc 2J4VGEy2ttXI98IiFyrXzPact4wPgp/QBC1IpqUewAJzywIG6JmWhM3LDVYFHAH8 sgH+IuCyIVJFkR0CAwEAAaOCAmcwggJjMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU yUDvS6vk4WvLcxP9UDO/yiTIWo0wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl 7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5p bnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5p bnQteDMubGV0c2VuY3J5cHQub3JnLzAcBgNVHREEFTATghF3d3cubWFzb3JldGlj LmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsG AQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQUGCisGAQQB1nkC BAIEgfYEgfMA8QB2AHR+2oMxrTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xWAAAB aaxWb2sAAAQDAEcwRQIhAOV8mdzDM0I7BnlrjbfsSuYaXzELJ1C1UXowdsFlHZjO AiBK72UESQx1974t9rovFIIAE3Ck5UWi8aIVb6lf7eOL3wB3AGPy283oO8wszwty hCdXazOkjWF3j711pjixx2hUS9iNAAABaaxWb84AAAQDAEgwRgIhAKYXeK9vUeOE MtXU/Idphn82ODYpTTMwGxKtK2gr/tbzAiEA6CKiNv4QLvsPJbvHMcxGMsGjVpdI 4c63VmaS0DTmFyQwDQYJKoZIhvcNAQELBQADggEBAHg2yXyMf5tBh/1GTgPV388/ VF6pIaF/a/CrAPF1oltOMenlotpEAfmT05mNr7M4VO2VbYsoOeZSEUkyOqhhEfnq whW83utyo73zTJw4nduPxcG6NXyWtvk8WGMC9R6zitVivTHPJhawqq1R0M5nAEJq nRekMmth3HkkLFaqyrDie1d7S/LdxgRhni7vS0rvCnlHUGJVoPqmDo7CylOSYVmZ OnMBFUsvDzua4OiX0cMbAb4pkc5Alb6+BtFJ9nOgGlwej2kcdFgrrM+3sCVVmE40 oiw8pPO5VNU+Qmu8d6/Mv1s7neFG0XKy5CRPPFaNmK49xAMEALSMY7REZiTDTZo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAz4ylM4nevf2uedJxvMye MffXCXg30YkkPndnCfNMrYi2hQdYcEBUUfXftJcyWiZ0X95c4Xe2hh7LHgff6rgO ka2mb9nRh3z6gooOAIoZ9UougQy8bwQBLp0lqkn1ljmt0KuQhX6nQmeQndq+0rbY EGzeP5L7Zdq/etJo63r6aaIXsrS4UKo2c7tI+HYsfkFZAY+l6khtjPd0VshdHicj c8T9uC/IIwfZS9o8eD91uKkRWGYqI0wnj2DUArMPgbEUfHEu0c8Hbd5ApCT8VTxN npnBHFWENNuiKqqfg85ALp5apeaNexFA67xwmYmSg7hgH1DuiS62H6tS/gjVHC+E gA57Iwf5U39OjnT8cIFJl8DAPJcYXJqrZk+krnTAIJkie3JLYdOn3SsffZKYJySE uS/F73de/In87Fs85yHCLvYg5X6zbwa9LyTceqzMwox6SjsnftoN+4uitWGHen80 kAVVpzlGqu5lOLu1lJlysrGNOVSkTWpdTMJTsDkO4Ab+5EuCIwuQNrw1IeD/agFV WLC4QQF6P/GowFbMwEmSPfia48iZA6hlt+zO3umkX4M5QAiAiNrB3akUafUO4Qql ZQtMXdpc2J4VGEy2ttXI98IiFyrXzPact4wPgp/QBC1IpqUewAJzywIG6JmWhM3L DVYFHAH8sgH+IuCyIVJFkR0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 311030781254759497117783823646199507314473 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-23 19:55:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-21 19:55:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.masoretic.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 846727661282942289986185652186296374769920785978107967591562760705017775105878791213394941620575254737561984245270943660002375533974972298409043947662270887282370289711312196130640485486853202014200935531350129893057131001438125221242231299045073646149140491425363637276229522259706013299658909862845544417728230656321186287778238251662827285227044005446075955726956387125488783566362701349889005697163773273623102259604379509692322808480757941707756247480014191266125996268891166178766213001477840992271852462025575531100088650746569972532821424163706098579585829208344568640427309669942030547728882151392054156233210543433772481888693419378289310146315675950973281814236196467574513840516676898260114498450676342624432269018483991895956530411844939710180441160127820711371083047807778887658225818023011839283808294280530706589642432559703138642104339376877910852667975647349904203831288838873920181045850287977516743057954679532925913595809862415596550663119406307486953155430038302275521975497626589455238234412415798172307073204008005078399729322095408835577259554626042237961422631489911234090304400766914726513387581391649708702284811220361403760313064622718483930681481215608845431739047645764614608454635700793922730590572829 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c940ef4babe4e16bcb7313fd5033bfca24c85a8d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.masoretic.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000169ac566f6b0000040300473045022100e57c99dcc333423b06796b8db7ec4ae61a5f310b2750b5517a3076c1651d98ce02204aef6504490c75f7be2df6ba2f1482001370a4e545a2f1a2156fa95fede38bdf00770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000169ac566fce0000040300483046022100a61778af6f51e38432d5d4fc8769867f363836294d33301b12ad2b682bfed6f3022100e822a236fe102efb0f25bbc731cc4632c1a3569748e1ceb7566692d034e61724 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 007836c97c8c7f9b4187fd464e03d5dfcf3f545ea921a17f6bf0ab00f175a25b4e31e9e5a2da4401f993d3998dafb33854ed956d8b2839e6521149323aa86111f9eac215bcdeeb72a3bdf34c9c389ddb8fc5c1ba357c96b6f93c586302f51eb38ad562bd31cf2616b0aaad51d0ce6700426a9d17a4326b61dc79242c56aacab0e27b577b4bf2ddc604619e2eef4b4aef0a7947506255a0faa60e8ec2ca53926159993a7301154b2f0f3b9ae0e897d1c31b01be2991ce4095bebe06d149f673a01a5c1e8f691c74582baccfb7b02555984e34a22c3ca4f3b954d53e426bbc77afccbf5b3b9de146d172b2e4244f3c568d98ae3dc4030400b48c63b4446624c34d9a