zaiden.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:29:f9:95:f5:4c:86:38:13:5d:4a:42:43:05:e6:87:d0:5b was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=zaiden.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:29:f9:95:f5:4c:86:38:13:5d:4a:42:43:05:e6:87:d0:5bSerial Number (int): 275620191237474814711890919883270290657371
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: eb:cb:45:20:f0:c6:9a:90:9c:7a:39:91:49:15:21:ff:23:68:83:f2
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e5:b8:41:fe:70:59:ac:26:00:f6:50:b7:e9:72:05:a4:46:ba:52:11
Fingerprint (sha256): a5:36:c7:a1:90:ad:bc:c8:5e:ca:7c:c1:f8:bc:62:ea:8f:f9:d0:f6:51:45:2b:af:09:6b:a7:3c:22:f9:7d:9e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate zaiden.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for zaiden.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
zaiden.org
Other certificates including the domain name zaiden.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for zaiden.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSzCCBTOgAwIBAgISAyn5lfVMhjgTXUpCQwXmh9BbMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MjkwNDQ4NTlaFw0x OTExMjcwNDQ4NTlaMBUxEzARBgNVBAMTCnphaWRlbi5vcmcwggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQDS4PSqds9dNEDOjmCaVTohke59fUBZcGNX0Bpk WkSTjjMrNWVwPtvnGmQYjTlS5Yk+OI5OrkeFxAWsXlKhKBgZWif5+7tYRUiVH2EM LbdOFd6jdrbYzkslQTxMfWeQOl/D2iQC2dTCc+U31e02GHLTfDTl6kjUo6Ulr7kl 1I73BtVb1p7T1dR17Eu3RchaSU2dvV9IETcy3mZTsT28CViaP4HJBmvRGkD8gxb4 b1adTLKkjHIs0R5FaUGyZ8HQ37ihNs00r6ZyDYrDsE6d8RB97qpT40l0Ov/d9tAX 6eVRNFauHJwa3oARnfRLnTyNsdWccWOb5f5gJnRi9YlVCkbBNq+HfM/W0PjqNu/1 /Ksga4uBazrp8LvtjvK+/nRZbPH1C+2Lhkct7sst29i6M7ma7OoomKtAEc9oMKeS 9rxPTawQSYw/X7UQV6M/VDjKmoVhp8S3XyAexqxFurLSTK0UWz9Wr9pjwMXI02Pj fvvlMnJoR5Nt74yoVwHSWh4qzrxKhUaIiM6zNCdstDrcOKKf9mwigQz+7wfqJyDu bOA8ahy+QOfFn0yyQ8geGorLI4Myo/ms16S2PNlH1Gomg+MAkIMT7wJgCaOL7M6A FfT53wIWOBC8LKo3/5QAnbaRNmzdR94OmxI80oIO8ff9yXXsuD/xFXv84TysEFDo JKrYcQIDAQABo4ICXjCCAlowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTry0Ug8Maa kJx6OZFJFSH/I2iD8jAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMBUGA1UdEQQOMAyCCnphaWRlbi5vcmcwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQDi aUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWzb632uAAAEAwBGMEQC IAFnEfDu3C+oQppli+gTQLF/MdgauB2SHR+aY1rroqhIAiBG5z83v5bJTd01Lmza duFyMTtpXQ4yXKZXOD1CuFDCggB2AGPy283oO8wszwtyhCdXazOkjWF3j711pjix x2hUS9iNAAABbNvrfcgAAAQDAEcwRQIgWxoP5aZwD206eJw4rOuPWSqTNALwQvfC G6aoMlNBDo4CIQDFP0J+HsZ8ldHkciy8wVoRxyxvEqQYFmtKV75jewRINzANBgkq hkiG9w0BAQsFAAOCAQEAZOkw8fWiMwcILXj9bmvWUhASM8akoBzbbxh7HeFqsW10 4gVjd5SOJlUsezTktvGQgheyeKO4043V/at4TKWUJHKAU3ONcCcqsvvqYgXQMteD LOiZKWuUBnwCPHtXt/8HCYHeFmi/5ohfCYtrFMSO7spaq2Op6TfmOJBOce/NUXEo hstYRCgkij76YYj6LylPwU5v3yMT+FXF9zWIDnR3QWdz0ti4nk2+RUsr3CwhzUkI KsXJsVG3eViTwNq/0fTWC8pP3hFmhyhsBXyPZTVzVo1yn8lM3oQva89Tq69SHtRS 8oTDlERim44hsd4mFpxJzBo0bw0HvdaaJ8k8fhb0pQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0uD0qnbPXTRAzo5gmlU6 IZHufX1AWXBjV9AaZFpEk44zKzVlcD7b5xpkGI05UuWJPjiOTq5HhcQFrF5SoSgY GVon+fu7WEVIlR9hDC23ThXeo3a22M5LJUE8TH1nkDpfw9okAtnUwnPlN9XtNhhy 03w05epI1KOlJa+5JdSO9wbVW9ae09XUdexLt0XIWklNnb1fSBE3Mt5mU7E9vAlY mj+ByQZr0RpA/IMW+G9WnUyypIxyLNEeRWlBsmfB0N+4oTbNNK+mcg2Kw7BOnfEQ fe6qU+NJdDr/3fbQF+nlUTRWrhycGt6AEZ30S508jbHVnHFjm+X+YCZ0YvWJVQpG wTavh3zP1tD46jbv9fyrIGuLgWs66fC77Y7yvv50WWzx9Qvti4ZHLe7LLdvYujO5 muzqKJirQBHPaDCnkva8T02sEEmMP1+1EFejP1Q4ypqFYafEt18gHsasRbqy0kyt FFs/Vq/aY8DFyNNj43775TJyaEeTbe+MqFcB0loeKs68SoVGiIjOszQnbLQ63Dii n/ZsIoEM/u8H6icg7mzgPGocvkDnxZ9MskPIHhqKyyODMqP5rNektjzZR9RqJoPj AJCDE+8CYAmji+zOgBX0+d8CFjgQvCyqN/+UAJ22kTZs3UfeDpsSPNKCDvH3/cl1 7Lg/8RV7/OE8rBBQ6CSq2HECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 275620191237474814711890919883270290657371 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-29 04:48:59 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-27 04:48:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'zaiden.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 860310173399274217651922385687389683641013908259897221808218970030722194564974517546683081627871465121515362623421260297051843166092739344198222058653681015048445691617895522439723841386205662897181756466012301728624819168096991355564392922218810563415292121946039339949090315947580516886991019907644101624542566805304291153863780830067087983443885838827094198114912216371981385651909429007915171109612090388216003663198862616178934141647094959338529338083158495065996691320917935263991993918902964448966517409384453947975327565455402399450198965529521168056763245948919977677835585251737031766124435714363565205819933467963109811196976155178259207265517855162776289729401997137472330780818885077910148325257569419831131214217517293061908493850629112352614368430999411500671453444734610766215023263426624604491700272046430219406689209239131287168581571779104673272123512791238612013309085335344810202828304947320993993010458584405962281490208897574994385231492178627801387814560397081266807167000071370372003456988505687229770029542290628806422640230995931310340695502610825118146332163274425342333270349604592981163501074159736684720670326483232779738328382835826517397037887296576208607147959043469061028234865743441920894454913137 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ebcb4520f0c69a909c7a3991491521ff236883f2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zaiden.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016cdbeb7dae00000403004630440220016711f0eedc2fa8429a658be81340b17f31d81ab81d921d1f9a635aeba2a848022046e73f37bf96c94ddd352e6cda76e172313b695d0e325ca657383d42b850c28200760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016cdbeb7dc8000004030047304502205b1a0fe5a6700f6d3a789c38aceb8f592a933402f042f7c21ba6a83253410e8e022100c53f427e1ec67c95d1e4722cbcc15a11c72c6f12a418166b4a57be637b044837 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0064e930f1f5a23307082d78fd6e6bd652101233c6a4a01cdb6f187b1de16ab16d74e2056377948e26552c7b34e4b6f1908217b278a3b8d38dd5fdab784ca59424728053738d70272ab2fbea6205d032d7832ce899296b94067c023c7b57b7ff070981de1668bfe6885f098b6b14c48eeeca5aab63a9e937e638904e71efcd51712886cb584428248a3efa6188fa2f294fc14e6fdf2313f855c5f735880e7477416773d2d8b89e4dbe454b2bdc2c21cd49082ac5c9b151b7795893c0dabfd1f4d60bca4fde116687286c057c8f653573568d729fc94cde842f6bcf53abaf521ed452f284c39444629b8e21b1de26169c49cc1a346f0d07bdd69a27c93c7e16f4a5