notvalid.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:00:2a:47:de:0f:d7:d7:8b:18:6f:33:86:78:ee:7b:81:47 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=notvalid.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:00:2a:47:de:0f:d7:d7:8b:18:6f:33:86:78:ee:7b:81:47Serial Number (int): 261393058528130816680702565457276161458503
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 4a:cf:6a:15:50:c5:5d:da:bb:e2:67:ed:6e:5c:b4:24:54:9d:4f:1b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): b4:d7:02:27:dd:05:d4:2f:66:d5:dd:b2:63:67:e7:66:5d:f1:67:8e
Fingerprint (sha256): a4:53:cf:69:b4:e9:e0:ff:66:86:a2:98:8b:b8:b5:54:0d:bd:5f:33:dc:77:b0:96:5a:43:ae:7a:13:0b:08:10
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate notvalid.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for notvalid.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
notvalid.com
Other certificates including the domain name notvalid.com
(limited to 100 certificates)
qh.org
www.notvalid.com
al-karama.com
www.notvalid.com
www.notvalid.com
notvalid.com
notvalid.com
notvalid.com
notvalid.com
www.orlandosportsdoctor.com
notvalid.com
www.culturepeace.net
www.notvalid.com
www.esportscanberra.com
notvalid.com
notvalid.com
bilocali.org
newyorksportsmedicine.org
www.notvalid.com
notvalid.com
casinolist.co.za
notvalid.com
www.notvalid.com
www.notvalid.com
www.notvalid.com
al-karama.com
www.notvalid.com
www.notvalid.com
notvalid.com
notvalid.com
notvalid.com
notvalid.com
www.orlandosportsdoctor.com
notvalid.com
www.culturepeace.net
www.notvalid.com
www.esportscanberra.com
notvalid.com
notvalid.com
bilocali.org
newyorksportsmedicine.org
www.notvalid.com
notvalid.com
casinolist.co.za
notvalid.com
www.notvalid.com
www.notvalid.com
Certificate
The complete raw certificate details for notvalid.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISAwAqR94P19eLGG8zhnjue4FHMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjUxNTQ2MDZaFw0x OTA4MjMxNTQ2MDZaMBcxFTATBgNVBAMTDG5vdHZhbGlkLmNvbTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAL8rXgg6CB4yQSFvmynJvQ1jl0EOoMZ8sz4D 78wvTP2pV97ZlirTqEFrTaD4MRGU2chM81jxqI4/Tw2hjTlC3SaqfvC8LBFfJKUS 6ERvDSxyw6DHvamIPu6NCmfRYfecnuoGvYSvy3i6pX8QIzDbpRm/JqjiQgIkUf7b kR0mmCL5lbmDBlOPSiwo3nzLDm5z67pRMD+GMN8zE4yTlqi0+Lmo8o/K2hdiAGU5 REtWO3rs9bMvqLybYOOo5r+N1D7HM1sYa0idxSbH1cb+DZ0pbxjkNeYWOF5caNoe 35g7Cdp4DavIiBn0Dl0JdIHes+wdYHM+jzEalwHOJlrLvBwr4U8jS0O9+mWKMpRu f7k0B/pkeJAPGgsFdpeTaq9JTkYIWl7+T70VZp1bnYSVSGXk244LvtnvuUiV9OcV sCZCrJNpNsr9kEpw/xdYCxw+O7JORPzLQbhJzmqlFvUnPMoQPIVDomOcPj81Jz0H G36AjZyML/LCgTt+C3NmmQNij+b4zQODfKiPfqEtkiWppAKpdL5wxt8FlrvM0oqh bCb2vZj6T+wDVp8SUh9FBP8TsdZwny6IjPYuSlRazI4k21QEuiy0cvUsfPC0nA4t VjKnrWe1JPEQwMEYT5UF72gV8uecf7PVrNYl5zsIkx3BD+DNKRsvIVauRA5iq5yb xPEz6aVBAgMBAAGjggJiMIICXjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFErPahVQ xV3au+Jn7W5ctCRUnU8bMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMbm90dmFsaWQuY29tMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDx AHcAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFq7+KaxQAABAMA SDBGAiEAzxG8pxn8aUxl6LSbxBQ9voiHQXQ6FFKmOILNb/bx9qMCIQDI0Rz9hVgJ 1+AdGDOM7ZrgsMA5L6cSl+VE6n+cbUSK8AB2ACk8UZZUyDlluqpQ/FgH1Ldvv1h6 KXLcpMMM9OVFR/R4AAABau/inNIAAAQDAEcwRQIhAKVB8vdzuG3q1nUKlydXsXcH ouYjzIKairs/lNKo+tCpAiBqDDR6tiKLpXpVQS2zKE37+ZWOk3pZuFfalnNVUq2D NjANBgkqhkiG9w0BAQsFAAOCAQEAXV6Sq8oYS+44c0I0OxA5iMd2oM6Pw3t8SLrY BH1PNcbyYuWf1btNodCwhscDZ1Zw9+isX+FQrNy+uzfF6KmSGe66mXQzh71TF8T3 5xFPSlar6EMiOVFiHl5GrpWgLAlU+TSdaSLMPX2mWkUedsGV0xKywn5eDPXFpJk9 L1hi5vn8GkdR/1CrNKQjf5POT0ldP++WTXAI3eZXf10AzRHLkQxpt1Z5CNWN4m74 y9neN9oaZ0vq1F6h3zwJnPZ4gCmOQWde5kJ4KYB2q/AuVzLE9PBHzmF9M8oucCFC PIDLQhiOng+L9z5GmeAB4N6X+BZPbHxgVRdrn9QlqKroGlYB+g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvyteCDoIHjJBIW+bKcm9 DWOXQQ6gxnyzPgPvzC9M/alX3tmWKtOoQWtNoPgxEZTZyEzzWPGojj9PDaGNOULd Jqp+8LwsEV8kpRLoRG8NLHLDoMe9qYg+7o0KZ9Fh95ye6ga9hK/LeLqlfxAjMNul Gb8mqOJCAiRR/tuRHSaYIvmVuYMGU49KLCjefMsObnPrulEwP4Yw3zMTjJOWqLT4 uajyj8raF2IAZTlES1Y7euz1sy+ovJtg46jmv43UPsczWxhrSJ3FJsfVxv4NnSlv GOQ15hY4Xlxo2h7fmDsJ2ngNq8iIGfQOXQl0gd6z7B1gcz6PMRqXAc4mWsu8HCvh TyNLQ736ZYoylG5/uTQH+mR4kA8aCwV2l5Nqr0lORghaXv5PvRVmnVudhJVIZeTb jgu+2e+5SJX05xWwJkKsk2k2yv2QSnD/F1gLHD47sk5E/MtBuEnOaqUW9Sc8yhA8 hUOiY5w+PzUnPQcbfoCNnIwv8sKBO34Lc2aZA2KP5vjNA4N8qI9+oS2SJamkAql0 vnDG3wWWu8zSiqFsJva9mPpP7ANWnxJSH0UE/xOx1nCfLoiM9i5KVFrMjiTbVAS6 LLRy9Sx88LScDi1WMqetZ7Uk8RDAwRhPlQXvaBXy55x/s9Ws1iXnOwiTHcEP4M0p Gy8hVq5EDmKrnJvE8TPppUECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 261393058528130816680702565457276161458503 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-25 15:46:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-23 15:46:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'notvalid.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 779903123247101446401334301778001790363207432886575850568540820954482879730704379923584389405317625887178621725139083840883088707314838640808768877581702504091622323540960365496776724718733874210999370053605127713541260504529558929304481801081317736831204026365261973049915795263714028199258045778753742249601819768768159831082689422003039740890912606651034475315460858547309057975733388239159890022145586823487915157395223615412449098264618770510834183289872917052109722337934913179497960164569464191803168863165031783583080268658067853737419155312615255035522910474747535961776716514950948285350138408991857013759786748833832138987246149034842157619080522803919810420792738003253512674472005907539054053728124558921279477348741077655878100060378875950570856759787631801919825948087182326685982884070250446558538689269329362732520336916964679311514069504309028204851419835616360418148733373365899318500464919788523194983326570808651990812861614942652718564899676822190943741831442614202004853303203658725539452352975814139299919618550325446395390443369405743198115205624597961696145188997751161726785643990183477819993732815869719179343909387859501302122762012935100368889345696288733429345815482716539027849999034731955477927273793 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4acf6a1550c55ddabbe267ed6e5cb424549d4f1b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'notvalid.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016aefe29ac50000040300483046022100cf11bca719fc694c65e8b49bc4143dbe888741743a1452a63882cd6ff6f1f6a3022100c8d11cfd855809d7e01d18338ced9ae0b0c0392fa71297e544ea7f9c6d448af0007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016aefe29cd20000040300473045022100a541f2f773b86dead6750a972757b17707a2e623cc829a8abb3f94d2a8fad0a902206a0c347ab6228ba57a55412db3284dfbf9958e937a59b857da96735552ad8336 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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