zajac.boston
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:6e:07:5b:2a:f1:84:b5:29:16:81:f0:36:0f:6a:5c:26:78 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=zajac.boston
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:6e:07:5b:2a:f1:84:b5:29:16:81:f0:36:0f:6a:5c:26:78Serial Number (int): 298777696122564853551477276422803554051704
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a0:ea:f6:85:ad:6e:9a:e2:fb:12:de:0a:4f:f4:0e:20:7b:84:d8:e0
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 6f:bb:03:ac:f6:4f:d0:b4:ca:bc:11:1d:bd:6d:f9:b6:f7:c4:a9:04
Fingerprint (sha256): a4:81:a9:0f:af:3e:4f:60:3a:1d:97:77:c8:f2:ba:1a:f2:05:92:e4:a3:59:99:4a:54:01:5a:ce:0c:7a:92:ac
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate zajac.boston
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for zajac.boston
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
zajac.boston
Other certificates including the domain name zajac.boston
(limited to 100 certificates)
Certificate
The complete raw certificate details for zajac.boston in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTjCCBTagAwIBAgISA24HWyrxhLUpFoHwNg9qXCZ4MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMTExODMzMTRaFw0y MDA0MTAxODMzMTRaMBcxFTATBgNVBAMTDHphamFjLmJvc3RvbjCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAPDO9+xPxwkp2RnvuX+59djxsacQSHbIrmEf t4/evKcz+e0b3wnYhViNsGl5pKVoO6NBVKpLohQRYQbyMo0s9fxlbo+LrBiDC3iu 0JjDiPuH5qZQRO4ZnM7wnY2CW4YJi4vZpvXDdJqOdCpxZOtEX1OoUOha1JjUafCv QFtIzP/Hmqsz32HAtN49pLXu6/LE6qbA/zEzeeEwlcdyhI6Smf3t7oWrbDMA2UQI EXkW+spRnR8SYuMfJaHLVU4NPotQm8/2LGYMtArbnRtO68GYdc9japVqhNhgt5X5 nfSadp4NZzcIJmo54TC+W0DdDdJa0j2Z0CrslCoajyOXLbDSyZosplojPZiqQNjE 4MpnH6OeEXqjYVv+zwzgmu15FIUeiaBkil/6dmA3z78Cc3C/4aYyBdpuh13OmrkY iPmVxo1Q7fjYBaPvkfBlPOcnbpLxXoSqiR0eCAdU3naGLZGCRu+R/ShV+TKjXv6L 3GHU3OKvB1kaG/I5gNcAGDG18z8odVaYUhEYgdsmoo32WIiJ5jaIURVCujuq5jXy OA03K2ASUR0jp/yiWiBAJy3naglVOYg1BZWMjRbv8szSv3YlW319SJ05mxfmKqo8 DUkGhyBbJbV+Y4cdzxqS4yXpDO6c1qNTgQUKQGd51T766XmtIF9ejk77W2g9bjpv Ob0fnSdtAgMBAAGjggJfMIICWzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFKDq9oWt bpri+xLeCk/0DiB7hNjgMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMemFqYWMuYm9zdG9uMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADu AHUAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFvlhijbAAABAMA RjBEAiBMJu2eoewwQOSbpYw2FawPyg2r9dJaytOTxGq7tFcjpQIgNfva+zT/CsfZ 4XzX52Mi5T7mOAIG4QteHaqcKks7THwAdQBvU3asMfAxGdiZAKRRFf93FRwR2QLB ACkGjbIImjfZEwAAAW+WGKPbAAAEAwBGMEQCIFpZZbC2eHESjFiraz9/iGJofddC Tl66TJfoBUr0d/8KAiAEYamlWmlUjB/vF7vmjyOCvQDU0l74yUz8eFoDi4CHpzAN BgkqhkiG9w0BAQsFAAOCAQEAQ5zMFpQg5pyY9VRt4g3hyVMePxhiQ0SC5LkS3dnV iT9nn1BD6FXi7e25t0wC9XsexaONlVhFwjazh8WpEfgX+/An/TklmXc9yJVQSzeX dIQocKSAQltnXIAfNaCtdta0nqRDMdJ2ItxsE+i4cZQIVY5jSjwPN3lnr1cLLuka yGz9wxhE6cL0dRDKEWFyfdJOYaW0YPxgI9hDy4kIfip4imbN1pSEiWgv8jjRABSl hzAQDEz4sDpaqBZ7tRRfGHNYgIYLgdKsXdjM9jNhJ57LC0ZK2cFpavqI+7To0jx8 LbHPLlLi6vOqfic9ODPiyRvWvT86Jl9ur0G03VLO2hbl5Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA8M737E/HCSnZGe+5f7n1 2PGxpxBIdsiuYR+3j968pzP57RvfCdiFWI2waXmkpWg7o0FUqkuiFBFhBvIyjSz1 /GVuj4usGIMLeK7QmMOI+4fmplBE7hmczvCdjYJbhgmLi9mm9cN0mo50KnFk60Rf U6hQ6FrUmNRp8K9AW0jM/8eaqzPfYcC03j2kte7r8sTqpsD/MTN54TCVx3KEjpKZ /e3uhatsMwDZRAgReRb6ylGdHxJi4x8loctVTg0+i1Cbz/YsZgy0CtudG07rwZh1 z2NqlWqE2GC3lfmd9Jp2ng1nNwgmajnhML5bQN0N0lrSPZnQKuyUKhqPI5ctsNLJ miymWiM9mKpA2MTgymcfo54ReqNhW/7PDOCa7XkUhR6JoGSKX/p2YDfPvwJzcL/h pjIF2m6HXc6auRiI+ZXGjVDt+NgFo++R8GU85ydukvFehKqJHR4IB1TedoYtkYJG 75H9KFX5MqNe/ovcYdTc4q8HWRob8jmA1wAYMbXzPyh1VphSERiB2yaijfZYiInm NohRFUK6O6rmNfI4DTcrYBJRHSOn/KJaIEAnLedqCVU5iDUFlYyNFu/yzNK/diVb fX1InTmbF+YqqjwNSQaHIFsltX5jhx3PGpLjJekM7pzWo1OBBQpAZ3nVPvrpea0g X16OTvtbaD1uOm85vR+dJ20CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 298777696122564853551477276422803554051704 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-11 18:33:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-10 18:33:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'zajac.boston' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 982412848229493074414131340053614532638388281394748427845662437168790714013280015259149058996949187930456275975638499605198437292294162054513239945945017766448489268705887985073848296715192568511349429246811616315906371030290964052568356114292910541653724607259979875932227462494269635980052202205442429019142727124730980560973880926679063151350674158692483852820935530619062918480400442662254290480251192136666566665352240777703563830039387504315918837198271894049069287934638593785344957859246301776859691523618838180659715706403458537019036157656954585098225286612476388395477187462387692524305572980554538177649583224222691360008535076451248818729807591055633530778810621729903039459382255369758108064086841385569570121315052227737654574794648273604578572319642976086225633988986849839310407067276921436004225168797107105134868456807670694466178192604804298630565667750566002481897482271151805946256225455463903070473049469895690282043973420929634526502960973402673902872949474506696933451351347027856903170336125270236194485917594810277692525904099599456800798161427201275546528631166823688654958657374908813294994832720188308836199482249096996945078000802735877724592815006852305830138381403201210443992340976527607369465407341 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a0eaf685ad6e9ae2fb12de0a4ff40e207b84d8e0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zajac.boston' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f9618a36c000004030046304402204c26ed9ea1ec3040e49ba58c3615ac0fca0dabf5d25acad393c46abbb45723a5022035fbdafb34ff0ac7d9e17cd7e76322e53ee6380206e10b5e1daa9c2a4b3b4c7c0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016f9618a3db000004030046304402205a5965b0b67871128c58ab6b3f7f8862687dd7424e5eba4c97e8054af477ff0a02200461a9a55a69548c1fef17bbe68f2382bd00d4d25ef8c94cfc785a038b8087a7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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