masoretic.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:b1:92:a8:a0:a0:c8:c7:ce:54:99:32:66:c5:e3:12:db:24 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=masoretic.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:b1:92:a8:a0:a0:c8:c7:ce:54:99:32:66:c5:e3:12:db:24Serial Number (int): 321761779591467860680494548120658418785060
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 5a:f0:8a:56:bf:77:51:88:43:38:53:82:7f:d4:02:68:c9:86:7f:35
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 29:9a:fd:68:38:61:ed:5e:b9:8c:65:75:93:75:3e:c2:4e:81:37:fe
Fingerprint (sha256): a2:8a:47:2c:c0:35:42:ce:18:02:95:3a:2c:70:bf:b4:6f:f9:2f:46:b3:4d:bf:8e:bf:c1:cb:7d:25:8f:ab:e1
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate masoretic.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for masoretic.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
masoretic.com
Other certificates including the domain name masoretic.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for masoretic.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgISA7GSqKCgyMfOVJkyZsXjEtskMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMjMwODEzMTlaFw0y MDAxMjEwODEzMTlaMBgxFjAUBgNVBAMTDW1hc29yZXRpYy5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDExc+Uel7EY1cxNovXxiHOTts6e6X0iD4j /y4htisRyBcd/RqbfVCUpAlr/AsubvUVI/u9oNf20WXqvlla1Rkp9H1dUPf3H5OW eE4RxvYG5+ayOphOcKiNPAtICRJAu6Gat4Xnwu5YQYAnVALVlCShDPQxKq/MEP15 BJhT0Aq+1+NFJ3IilScZ0xIkkoDgM2qTYlcDBO0YGtoygK0gFklhWrtrULwLiaIn XcUr1ZoFpkMguDIE4TusUrkHlzk2va3pVIuZH6Ln1Xa9i2RgLHshOHZPsdj9K1a4 +k2u3gDGIJK92e5baKNvAhmOS5dsNLIEUcR5DayX+pQGeNBBc+CBVOGAAZ6Gi4zD mghwn83ri2JPo27i0e/G0S5de3V4zfv7FRA5fXlmPio5RbXksxbwtIGgi5oQFZBB IxRUR8xsxN6fIyGFi89iUO3UnW6F+g/OTS6ITVIVZmnAYUXugGasu6wugPx1qFsF XzLR/VVNoelO2pmcgSpLms0EzGaz8WcPwrgtL1M4Y8zqZkAzbvwTImuG7wiBh3jm CSTlunMbLhZlfqRqDHIZ8LzBfgcliv8PxuD8H68gobE2P0FOKm83/3gTOHr646DB s2ZID6IONGwrKzjSVgngqnAe3CR7oNLxsL1lykRwaHUF/8+liSWlsvhAACRvF5Wc USVzVWF9TwIDAQABo4ICYjCCAl4wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRa8IpW v3dRiEM4U4J/1AJoyYZ/NTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDW1hc29yZXRpYy5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHy APAAdgBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAW335FPlAAAE AwBHMEUCIE7v7ObMxCOi3KZhmBBDswDrAry6edt0BZNGrBbzvsrxAiEAyM/H+hbc gq7zKmnCdKXLIqSXu4vKSZUVWA4u7U6Teu4AdgCyHgXMi6LNiiBOh2b5K7mKJSBn a9r6cOeySVMt74uQXgAAAW335FQSAAAEAwBHMEUCIBNfuhhPsZsaPz/npKXQxsdN FcyfV2UZ0ToXbmGyWvvbAiEAyb5hbGhX4CaHvjUaO9EFiw+Q4l37a70aIXVdHBBZ DegwDQYJKoZIhvcNAQELBQADggEBAAnrsSPjy3/8uLZ9tVq85N9IOYrawyQKuY9I RCiKFQvnIoChxsESMhzMg1zZRrhEbQXiMgovQ3lRRcP8ZVscVta4gWzk95gL7fF0 qawniI6RqC/izsWq1ydnpOPL1qwcdbS4PgnFvo8T7eCXV2KCLUOKaCIcolbc+oUq bD4aTA3QeHfrDQn1ryr1TfkyNvIxoHByyCyfHFrNcO0qih4mbI675KGQzZRGXVqF L9M1nwmu88Z45CLvInRkzxdj2nLG+A9dCGhV2VyQtBdd1ArOa7bmrJKvHqsj/ROV JvdjKFeXh6bn2zQKuydRzzV5SOXTJrToMz3++EEdS/OWgzXP2CM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxMXPlHpexGNXMTaL18Yh zk7bOnul9Ig+I/8uIbYrEcgXHf0am31QlKQJa/wLLm71FSP7vaDX9tFl6r5ZWtUZ KfR9XVD39x+TlnhOEcb2BufmsjqYTnCojTwLSAkSQLuhmreF58LuWEGAJ1QC1ZQk oQz0MSqvzBD9eQSYU9AKvtfjRSdyIpUnGdMSJJKA4DNqk2JXAwTtGBraMoCtIBZJ YVq7a1C8C4miJ13FK9WaBaZDILgyBOE7rFK5B5c5Nr2t6VSLmR+i59V2vYtkYCx7 ITh2T7HY/StWuPpNrt4AxiCSvdnuW2ijbwIZjkuXbDSyBFHEeQ2sl/qUBnjQQXPg gVThgAGehouMw5oIcJ/N64tiT6Nu4tHvxtEuXXt1eM37+xUQOX15Zj4qOUW15LMW 8LSBoIuaEBWQQSMUVEfMbMTenyMhhYvPYlDt1J1uhfoPzk0uiE1SFWZpwGFF7oBm rLusLoD8dahbBV8y0f1VTaHpTtqZnIEqS5rNBMxms/FnD8K4LS9TOGPM6mZAM278 EyJrhu8IgYd45gkk5bpzGy4WZX6kagxyGfC8wX4HJYr/D8bg/B+vIKGxNj9BTipv N/94Ezh6+uOgwbNmSA+iDjRsKys40lYJ4KpwHtwke6DS8bC9ZcpEcGh1Bf/PpYkl pbL4QAAkbxeVnFElc1VhfU8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 321761779591467860680494548120658418785060 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-23 08:13:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-21 08:13:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'masoretic.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 802762572874582436861399179382838946865202548173918735937996059798848646296851046604593422908410300840145479402138298580406784823446450282411622210547721463962873242649586164333772737223989061953173605348868507800848664909824633507027941492926778557243604889040551782981406414989817072468111020752870702312560837907468622422422426214044543070706685396071822481398911591025195494921255165902058236292940944604006457260439466074410365934041631430037152271549112297815383541920592612025878056593369698844800289021956766014290909818136224183355230694176640062216536120262773402567319244605153415228933134642156304321621725743717014162875840812990916280972510357847874126688474858139542162076709413890238437381308022353319111675455544177988464953372656103734808577399877658241696892252436206270601665080552098957777368493553133716288181036002829228696326191250999844806281400768919944901925024119251605578285648439138190837655397853137417955098114464625345099981247358308087419809017401346008579709244780717829633308598012486887435191190441129388786284326856891785988774960234333150106014868503231139536970576286325544223571522488173066726469330956541436305657724999022568133426576706585218670056419035674305190919213959916262027589418319 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5af08a56bf775188433853827fd40268c9867f35 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'masoretic.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016df7e453e5000004030047304502204eefece6ccc423a2dca661981043b300eb02bcba79db74059346ac16f3becaf1022100c8cfc7fa16dc82aef32a69c274a5cb22a497bb8bca499515580e2eed4e937aee007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016df7e4541200000403004730450220135fba184fb19b1a3f3fe7a4a5d0c6c74d15cc9f576519d13a176e61b25afbdb022100c9be616c6857e02687be351a3bd1058b0f90e25dfb6bbd1a21755d1c10590de8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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