www.cisterne.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:d2:28:8e:6e:5f:87:45:cc:96:3a:9c:ca:86:ea:8d:dd:22 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.cisterne.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:d2:28:8e:6e:5f:87:45:cc:96:3a:9c:ca:86:ea:8d:dd:22
Serial Number (int): 332850063513296722546500060970129923366178
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: fe:57:cb:a2:7b:77:21:99:6f:4e:32:77:41:93:b2:73:76:71:36:9f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): eb:92:18:be:91:f4:b5:f9:6e:cf:9b:05:41:62:d3:00:f3:a3:94:92
Fingerprint (sha256): a6:7f:98:93:55:12:bc:7f:fd:4c:16:5c:6f:3e:5e:e7:b7:0e:69:0f:9d:e2:89:cc:67:87:88:00:a7:20:f9:56

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.cisterne.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.cisterne.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.cisterne.com

Other certificates including the domain name cisterne.com

(limited to 100 certificates)
cisterne.com
cisterne.com
www.equilifemagazine.com
www.cisterne.com
cisterne.com
cisterne.com
cisterne.com
www.thelogpeople.com
cisterne.com
www.cisterne.com
www.europhiles.com
cisterne.com
www.cisterne.com
www.cisterne.com
www.cisterne.com

Certificate

The complete raw certificate details for www.cisterne.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtc0kGY5qMvLQjoLx8i0F
abr+rrDQ6aR1M63O0Cp+HlutqvjWjXQ4AYMQfiJcRFaKASrW3BJEo6gQsG2vN1yX
ZiHNDIVkfMN2rI/+icCOu2+O3rXunFNGmV07xhxVrmmSBtcRh7ku+WSjB/M3k3XT
Tkd3hK5IbXmBlSucEaeqc5NjI4Z7ufNJE+q1nyjg+tOb96HML21ld7fdhwa3RpUw
yZ4kJ6vrPxX/MhM4AWK+lxatJPP9K0FtgySbPJZeZk6QOWWC7b/syNFBPmWhZpsn
foB+bNWhejAaUsusmt1K4ctVvRmzPljzWz1ZT3484VllpNmUHKVDioa5y+EgK1cR
jN6nplZfbi69MMomgDTB7JBm66fcM9KlFXIsx2UUPE7ncTGuMD9BBQNjEYEPPs+m
YEmn8FVj5N2GHfFMByeSptTtMzv9WSUHdTd3ycVvj4RNwDc0HauLsLlEEbD8KMx9
U0sLqMYZQJK3BvDiAvfffoxLbQdtgBlo4WfXNLMcF8n8oYIV8yi7KO+dZUjKS6jl
djtAJ1GJivULkz42y3H+TpSefoK6Z8hMesQaoysuDwIdzt43a/LG3DC01BTpOp+P
jqKBsR+On22CXIcavZos0PXgFtluvGKSPHsD0V3cIDSUIpacPhqQCN5Bi6OKqlAZ
QhQNgzE5lXfztFr2Fk8Z+vECAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 332850063513296722546500060970129923366178
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-25 13:00:38 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-23 13:00:38 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.cisterne.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 741684726017823872904092648300373961456362967199828869266466745394792064139225254200868737884531920512924417050781011855515168256667238262113285892519127146684901379852193471720232528197140105816738097263100372352830627819155197887823745631805858220537876866760302816324507426214882479263301871784500893096599692348450580364426054202872762095523209150099199245241037782694395011624148159601848095115771003823258826028285270627555665389709395071798440744580157204483778130619380957478595087391629730557334606474345080023969293677384829808640580268108159627756600144761048179858589857212987933505261065552384955311994743813488588859137825210587628323269851497663039153406714310653069926352581164995515168066768600575519794240675726662134626220527654443530142631217662655994364710932036928603713703326204557820034793703893081798946948064687788687206599652745475743233479055845386695877207314567598542262339208255909238028309670413704561237714820226409967208285051289212775692762948625729306026260706390460527686246630929217756300779765751988290599800777043565642609609153156781258359689010995720963527825148738010355040433389833993272730417814018387816862301410936949409770507698855518335718355123032174393041872060047896676628602419953
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							fe57cba27b7721996f4e32774193b2737671369f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cisterne.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016aef4b1c830000040300473045022100f9acd1059a752b6e3dd2015392a1c2fc5f566a7b3a174437c5836f79f556b59802206451d15f225d81ada8777a6a5d9c978cd60647b8afb0b4178ed49313f03f7292007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016aef4b1c780000040300473045022100b0cbaf2a5250f592d308922eaf07f709f4753018a23e319a230b90864bc8439d0220063e757abd10eeb1b79fdab944bf4109f71d64a831650418dd99d867cfe721a6
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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