www.jena.boston
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:84:7e:bc:ca:29:68:de:89:fa:73:ad:b3:b3:9d:84:d9:c9 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.jena.boston
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:84:7e:bc:ca:29:68:de:89:fa:73:ad:b3:b3:9d:84:d9:c9Serial Number (int): 306422593208450471139477057612638968928713
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: af:2f:b2:16:76:63:cd:4e:78:c8:19:63:11:76:e5:2b:83:a6:66:01
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): dc:75:23:61:bc:ee:1f:e7:54:12:90:25:0b:ae:27:35:80:a3:4c:6f
Fingerprint (sha256): a2:77:a4:7a:c5:19:ee:84:ce:33:83:cc:15:37:0c:05:71:67:3a:6e:91:94:d9:3e:17:de:87:6e:7c:2c:4d:7c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.jena.boston
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.jena.boston
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.jena.boston
Other certificates including the domain name jena.boston
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.jena.boston in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVDCCBTygAwIBAgISA4R+vMopaN6J+nOts7OdhNnJMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMjYwMTM3NDVaFw0y MDAzMjUwMTM3NDVaMBoxGDAWBgNVBAMTD3d3dy5qZW5hLmJvc3RvbjCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBANDNWuuXL8ygc+4Hbkw5Lx3qBE4YcPdj 5a8Tq1z9cRIp+eBBTPyrd8lBGr65T0tFSITTILX3mzuvvomVL2yuiuMxxyeQjjV2 F1H9AGsA+VKSpGqYTNkG6sdDwRzWO15St4SuS94VfAgdTR7X3UgO2oU/j5wUfN1I vTBpcuJAIXp93+QYLpIAfvec6Dc4TA+H0Eq0RYHLzuqptM58JyO95YLEk3q4/fOg 8ul4VCtycr3v7cihWnZ4J2U6MneYuDlv3O2/Zdh2PvDmjunjCoNw3ufEGbXI8LmH KzhnX57oX0NFSwA94vfffIn1Mc5+fpph3J6l39yYLpzEJOVRrV5Fyz5/3mNMXp0h 6LcHWscVV5tf5dMdAaRpxGxXf1y8HoT3JdG58ud3ZFEF8wjUvDOm9Z3R0rmytCnG 7rPNLX+GzyiFhfJta9YX8cgzbXIotIh4xwcOvPplEVIGDxY3bhjEqGDwOGvILhwi vDbv2hUZABVEI2zf8RaAJ2i8aCTBoDuMYN9+GP12Ri8YMGoEAVBIFXP0ATWh9DCk QW3Grsmz2orvgf7POoY1Gh1cVdMCGaEa59xQFpfUiZe9puYuyPXyAAPmJgvzG6zl 3VlaC5jlkrNEYTb9iVVTQZk0MY0rN+4rfiqQEUjLThxpGU1h7uPNVSFHARdEcXUr Ld6QNsGLh4B3AgMBAAGjggJiMIICXjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFK8v shZ2Y81OeMgZYxF25SuDpmYBMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPd3d3LmplbmEuYm9zdG9u MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAgYKKwYBBAHWeQIEAgSB 8wSB8ADuAHUAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFvQBEw bwAABAMARjBEAiBw7NKLBxbVuEcq8MF4m/quTFVVlEwwz35i0rU5r13F2QIgUBCq sK2Gp07zmEZ/p2tw94Lj6CeCIkic88Ica6RRrKQAdQAHt1wb5X1o//Gwxh0jFce6 5ld8V5S3au68YToaadOiHAAAAW9AETBsAAAEAwBGMEQCIHG7XoaqUKSK14n9mC23 Pv3xwQxrgJ4JrNFk+gZmGtqtAiBn2Xm1wGMtXPSyJvUv3VvaspsoQkXYbNYmz5Fj 77HMFTANBgkqhkiG9w0BAQsFAAOCAQEAGEohKijsPI1nP/ORFAQC9wTwfFD7Ms6L sHeNvm7x3GSPy3yHCQUXn3ISZALMxPjcUpefyeHP1/Nrwf/Q7l0VZNz1VQZJf2ZQ 2gAAWKcTundb5ZmU8Cfman9ygyM3enFFbGoMh7MVv+/L3ZkIWfozcczkxL3JPrQw w1udo1uyHv6rq1RCLRVNylbQqVabcH1lOn5/WsYGo1wI+wAZvzMVZ2Jhb6Cik8Iq lm2IbM1aMKVEJxAzqcOyoZhzndIUoYD7ZwldKkuw7WKk4TKJqPIrOH+1L/iZ930d teno4FqGXuLNVsTBasUKa+ZYKcBl0FuclNFMUf4UQX8DyZqQ15MHKg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0M1a65cvzKBz7gduTDkv HeoEThhw92PlrxOrXP1xEin54EFM/Kt3yUEavrlPS0VIhNMgtfebO6++iZUvbK6K 4zHHJ5CONXYXUf0AawD5UpKkaphM2Qbqx0PBHNY7XlK3hK5L3hV8CB1NHtfdSA7a hT+PnBR83Ui9MGly4kAhen3f5BgukgB+95zoNzhMD4fQSrRFgcvO6qm0znwnI73l gsSTerj986Dy6XhUK3Jyve/tyKFadngnZToyd5i4OW/c7b9l2HY+8OaO6eMKg3De 58QZtcjwuYcrOGdfnuhfQ0VLAD3i9998ifUxzn5+mmHcnqXf3JgunMQk5VGtXkXL Pn/eY0xenSHotwdaxxVXm1/l0x0BpGnEbFd/XLwehPcl0bny53dkUQXzCNS8M6b1 ndHSubK0Kcbus80tf4bPKIWF8m1r1hfxyDNtcii0iHjHBw68+mURUgYPFjduGMSo YPA4a8guHCK8Nu/aFRkAFUQjbN/xFoAnaLxoJMGgO4xg334Y/XZGLxgwagQBUEgV c/QBNaH0MKRBbcauybPaiu+B/s86hjUaHVxV0wIZoRrn3FAWl9SJl72m5i7I9fIA A+YmC/MbrOXdWVoLmOWSs0RhNv2JVVNBmTQxjSs37it+KpARSMtOHGkZTWHu481V IUcBF0RxdSst3pA2wYuHgHcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 306422593208450471139477057612638968928713 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-26 01:37:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-25 01:37:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.jena.boston' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 851838528450631197288008819103874022514731350432184381563209444059390512361177268160436406403724169433442650244614495063642111981318504871872308267640320669291221776556508048714746110456468763125047893293740230623967479402650259605894216209381856343508091824003127075923552403037269551141931106063313154439220766020662823842062343533185130039704806672946146335287885667371181025429678037829468551866796769112461955503212091124460052121461677453469233930238978092671447829923474360625541872111993424298575204588184152349235994125845510788359119533421247491831403988578176415409344921777412161454714520494326832574229689311987603384082086772058103143792852098717388319309650593157948326606837243374511687432102129899539930369921040250012811877778397027109382276514591935840665929543720155603866767937576598618147512108297033464016626248881994836060819634675826283023263160290507202871085055439100939695739634074924692055190261282981865789470878014987553344067640541692792754652767916774308007722553386124686438691083249561315603245865951538508172149675026815398205186645294479540306054124441858642892694140843394415210629072394018529575247107900565965082693749785217424018563332868609598828765226791516275872651807090028572864739246199 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) af2fb2167663cd4e78c819631176e52b83a66601 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jena.boston' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016f4011306f0000040300463044022070ecd28b0716d5b8472af0c1789bfaae4c5555944c30cf7e62d2b539af5dc5d902205010aab0ad86a74ef398467fa76b70f782e3e8278222489cf3c21c6ba451aca400750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016f4011306c0000040300463044022071bb5e86aa50a48ad789fd982db73efdf1c10c6b809e09acd164fa06661adaad022067d979b5c0632d5cf4b226f52fdd5bdab29b284245d86cd626cf9163efb1cc15 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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