esf-bernex.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:1c:42:94:46:85:56:9b:b9:5c:ca:82:75:bb:49:5e:94:58 was issued on by Let's Encrypt.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=esf-bernex.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:1c:42:94:46:85:56:9b:b9:5c:ca:82:75:bb:49:5e:94:58Serial Number (int): 270953263007056706358657115955659597059160
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ba:e8:85:25:6b:26:99:c6:5f:6d:b0:ee:b7:75:80:94:19:4d:9a:88
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): af:8d:5d:22:5f:d7:48:33:98:ec:8a:15:2a:5e:d6:6b:51:c9:6d:30
Fingerprint (sha256): a5:33:8b:8a:86:df:66:46:99:41:6b:7d:17:93:70:88:b6:ec:e5:9f:88:fa:71:0c:7e:ad:75:62:6a:ba:71:6b
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate esf-bernex.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for esf-bernex.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
esf-bernex.com
esf-bernex.valraiso.net
ski-school-bernex.co.uk
www.esf-bernex.com
www.ski-school-bernex.co.uk
esf-bernex.valraiso.net
ski-school-bernex.co.uk
www.esf-bernex.com
www.ski-school-bernex.co.uk
Other certificates including the domain name esf-bernex.com
(limited to 100 certificates)
www.esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
esf-bernex.com
Certificate
The complete raw certificate details for esf-bernex.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFtzCCBJ+gAwIBAgISAxxClEaFVpu5XMqCdbtJXpRYMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTMwMTA3MzBaFw0y MDAxMTEwMTA3MzBaMBkxFzAVBgNVBAMTDmVzZi1iZXJuZXguY29tMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvcXDFZTiDb1XEi/zN5yOakqZlg6G3L3O IqrCmygiNjzMhSdOx3A713DlYkONqIXVry3fhggkr5Z81ItnjmDAGk4Zn/1x6ouo 0XUnXk2kBcD6vqqhqNuMjr6dPkFK4lpOX56TrFFTe/LZlnfzF3dNlT4jl+fEqDAz sQ1OQZX8N7joTFUyxs0sfUKOWXTQsTR2j+KnP5Bi5DEdebim7d5SzDh5GAMYdftB /EJ9yqo3BO1mg7s/AAB8qjlMF89WWI5SA5sZdBL2Q7AciLOude9XIZhhwahGf6aH MQhcCSZdmeSb38iNXzcd4KJ6uIxa8q4YdAshWsd5S/6Q22Ej9P6qPwIDAQABo4IC xjCCAsIwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS66IUlayaZxl9tsO63dYCUGU2a iDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRj MGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5v cmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5v cmcvMHwGA1UdEQR1MHOCDmVzZi1iZXJuZXguY29tghdlc2YtYmVybmV4LnZhbHJh aXNvLm5ldIIXc2tpLXNjaG9vbC1iZXJuZXguY28udWuCEnd3dy5lc2YtYmVybmV4 LmNvbYIbd3d3LnNraS1zY2hvb2wtYmVybmV4LmNvLnVrMEwGA1UdIARFMEMwCAYG Z4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMu bGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcA8JWkWfIA 0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMAAAFtwt7mbgAABAMASDBGAiEA11kV 4kgPLZ9Xc8qsaa3qAKueB0M+jmrxtrQ8Hz3I4XoCIQDuQ/pRWFBGfNY1pa92qzjv BMFWmz/g6sDMhxBZsbnQHwB1ALIeBcyLos2KIE6HZvkruYolIGdr2vpw57JJUy3v i5BeAAABbcLe5mQAAAQDAEYwRAIgd9V6bDDaRgv/xpra6wD/5MBGhwHc+YRzaUaq CpSoxqgCIFJ6XgOAr/jsJOHPEAV/oo+SHY7WlHs0QKsvoK2zLb6jMA0GCSqGSIb3 DQEBCwUAA4IBAQAhyDJFxJ5nVMUDXFGeG0fn0P0FH3wziCiA4vf5dmY76VOSXXDp e4iU+om077L6mc2f+QFdXK0a792SsHHp5meJNR+CRSkNkqDxM0Za4wbZLVBUQcsb slvdw6aLjK5WA3BWEIyBU4BnkpJv+x25TG1lRqXenDwmEnNZ9bwYlkN4ElVP5KwE 5ZcmxQQsH1uyDr49pGr73DHkPMDXUyFp+C7s6YuFytn2qJ0HXE5Dl2ydizfn0ARV Ce/bQdHRya3sh/W+N6nZuFpaTEcmN2Hye3BPiVwI6tjvQwFTT/nrfzzyiKEtlOcu 6LKfQ6pg5aUT1OY+bprOBs+sTxY3E9hFCKk6 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvcXDFZTiDb1XEi/zN5yO akqZlg6G3L3OIqrCmygiNjzMhSdOx3A713DlYkONqIXVry3fhggkr5Z81ItnjmDA Gk4Zn/1x6ouo0XUnXk2kBcD6vqqhqNuMjr6dPkFK4lpOX56TrFFTe/LZlnfzF3dN lT4jl+fEqDAzsQ1OQZX8N7joTFUyxs0sfUKOWXTQsTR2j+KnP5Bi5DEdebim7d5S zDh5GAMYdftB/EJ9yqo3BO1mg7s/AAB8qjlMF89WWI5SA5sZdBL2Q7AciLOude9X IZhhwahGf6aHMQhcCSZdmeSb38iNXzcd4KJ6uIxa8q4YdAshWsd5S/6Q22Ej9P6q PwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 270953263007056706358657115955659597059160 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-13 01:07:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-11 01:07:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'esf-bernex.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23956559739106740721235017606066283121352861999364370946471004703309186348420697510492868865867850783068064374384780996460050064428785676988242607910031294185333884744444407031347522816408735727257928047336480476735960986115857331088197527275187313146328985011794947336433057682368442098474673268336453303530681244838222062961922445198166418914489140471068042036911220137442269395376329188684318655242409999686912333839394724972947597169325227540400918596194202790736107122391780525707028012099198786326134093587933825698488494685109491581916828548862768025333693148996127594632813291370314214082158923212401573538367 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bae885256b2699c65f6db0eeb7758094194d9a88 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (117 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'esf-bernex.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'esf-bernex.valraiso.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ski-school-bernex.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.esf-bernex.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ski-school-bernex.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016dc2dee66e0000040300483046022100d75915e2480f2d9f5773caac69adea00ab9e07433e8e6af1b6b43c1f3dc8e17a022100ee43fa515850467cd635a5af76ab38ef04c1569b3fe0eac0cc871059b1b9d01f007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016dc2dee6640000040300463044022077d57a6c30da460bffc69adaeb00ffe4c0468701dcf984736946aa0a94a8c6a80220527a5e0380aff8ec24e1cf10057fa28f921d8ed6947b3440ab2fa0adb32dbea3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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