www.ot10.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:cf:38:a2:ea:4b:05:f1:ad:68:80:8b:1a:7d:3a:4a:1c:39 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.ot10.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:cf:38:a2:ea:4b:05:f1:ad:68:80:8b:1a:7d:3a:4a:1c:39Serial Number (int): 418962876351558085492502040704733210614841
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: d6:40:42:a7:86:47:f8:50:2a:07:08:e9:dc:11:f7:68:0f:f2:60:58
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 54:99:c6:9e:d4:c1:24:35:cd:38:af:ed:2f:a9:76:6e:e4:6b:5e:dd
Fingerprint (sha256): a7:2f:d8:5e:b5:6a:0c:a3:a0:fd:6e:3f:8a:27:8a:4d:21:b1:3a:da:66:7b:07:47:d1:47:fb:cd:cf:75:39:d5
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.ot10.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.ot10.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.ot10.org
Other certificates including the domain name ot10.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.ot10.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUDCCBTigAwIBAgISBM84oupLBfGtaICLGn06Shw5MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMTAwNTU3MzBaFw0y MDAzMDkwNTU3MzBaMBcxFTATBgNVBAMTDHd3dy5vdDEwLm9yZzCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBALhPICkZ1gwP/10qv1u2irQeF0OuXRXm7f2X CtdoLrCfcS7s3i8eIX2FuPmLa6Vm+obzrLi4bsGVn0HL2SX4yhG2MBIAuUAlvnko 0t+2nkssFNfnJ47hXhov7EFelMp1+i56G0BwYTMngElz6lxeBqHKkicY+BDpt/PE u6V4DPMzJ8JdNC7Z1lHTk1QdEI4IYK3sYOwdjHZrXo36RYKAbQvGfC3sYlzGOCXH DxaZDu95Msa5JAypG8Kv4ZZOCQLLVYXvd727dxh+ggVu3JNfAeL3wxvBCR4vQJ4U ObPmYyqKifM3RwWX9aLuJYiAZtwHmYLoUoRzxPBLgRFfBL/JV8OctBdAUlO/NMi6 R1QxKpcMJAyoqagYmnQmCZJMxMRZO6dnCm1zTW5IcwC/SO68c4afXL53w1a6MgrA MAcdgRWYMgBtvWU9zZQZVr3Ox9Vb6TJh+AeeFYwKr/KektImKDd/CLAe4SBvlk1v Jlc/m85kgrSo2gL6h9gwHr154dMQ10jaaAFcnbv4n+Ky0N5F6U2mRAaYlV88+DQz MGHTbsRv1C5CD3pRxliJtmjuh9HNQ+FblAPm7N3F/OsEZCmznluSIth8fh8ryIfs 5bC2Ikmjep5zDHoG+b5Ie6qQWZF6X8EFHa9ToGiTm3TIligvFVgSX62N4WRrBGLg ZIJw+40TAgMBAAGjggJhMIICXTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFNZAQqeG R/hQKgcI6dwR92gP8mBYMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMd3d3Lm90MTAub3JnMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHUA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMAAAFu7pk+NAAABAMA RjBEAiB9BtlG9uGk5WPpZkLajasRfmcLm9dMuqcXEhyP8RpO/gIgYxB3HSdtsWHa 7f+Cs9UmTr3o/aH4bZK4snLxtNKe8WwAdwCyHgXMi6LNiiBOh2b5K7mKJSBna9r6 cOeySVMt74uQXgAAAW7umT4mAAAEAwBIMEYCIQDtJt3Xb1BDyDDxaD2KmUNv9CMd SewF91XNaOZ47XyQ+AIhAMxovELVYuGhSHFTSmHjQxLAxtOYokOqcRUL032hJYc3 MA0GCSqGSIb3DQEBCwUAA4IBAQAmsXUQklARTAFrw4uOgccRCbna9Wxc/TsE2B3z CQ2rS7uuuLfd66eC1GpdZvS1OvfsUwnji9MHTTjYsMNAm4yKxMZJ8cHvjijvxoDB C9v2fpZaoBD7qjXKSN9xfhlT3ORvR0Pxg//rnZKsB2SL/bDX49L1MzYxy+nBj1/B Ukz9ousSvBVw0MFzcIomFyg+WUz4NJoECa3aXb8UVEbhEkLnkA+oE7ZkD2G9/gak 3tl2uWEGJggaEkfA2Exw1DMZA+l0Vb+7fo7oAffSbU6qfOdns9cqR/3v8Mle76WY oOrseahHK4021LTi/aU2xjVLVbjsV3Xj2L7K4KhhlZmD8/to -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuE8gKRnWDA//XSq/W7aK tB4XQ65dFebt/ZcK12gusJ9xLuzeLx4hfYW4+YtrpWb6hvOsuLhuwZWfQcvZJfjK EbYwEgC5QCW+eSjS37aeSywU1+cnjuFeGi/sQV6UynX6LnobQHBhMyeASXPqXF4G ocqSJxj4EOm388S7pXgM8zMnwl00LtnWUdOTVB0Qjghgrexg7B2MdmtejfpFgoBt C8Z8LexiXMY4JccPFpkO73kyxrkkDKkbwq/hlk4JAstVhe93vbt3GH6CBW7ck18B 4vfDG8EJHi9AnhQ5s+ZjKoqJ8zdHBZf1ou4liIBm3AeZguhShHPE8EuBEV8Ev8lX w5y0F0BSU780yLpHVDEqlwwkDKipqBiadCYJkkzExFk7p2cKbXNNbkhzAL9I7rxz hp9cvnfDVroyCsAwBx2BFZgyAG29ZT3NlBlWvc7H1VvpMmH4B54VjAqv8p6S0iYo N38IsB7hIG+WTW8mVz+bzmSCtKjaAvqH2DAevXnh0xDXSNpoAVydu/if4rLQ3kXp TaZEBpiVXzz4NDMwYdNuxG/ULkIPelHGWIm2aO6H0c1D4VuUA+bs3cX86wRkKbOe W5Ii2Hx+HyvIh+zlsLYiSaN6nnMMegb5vkh7qpBZkXpfwQUdr1OgaJObdMiWKC8V WBJfrY3hZGsEYuBkgnD7jRMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 418962876351558085492502040704733210614841 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-10 05:57:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-09 05:57:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ot10.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 751915463185360050482080850041381723639351882889015428194148852229328203588058660578430060570897358795108106206679779116381788510900878186134319034801897483810942921154053765308855766951436941215691233854738374630775660388976430881182145106049153279125434364577221736043031029025183740471538220841554371851791724295323179812548188167215751189210392072288350791306298009034994414187895219755401906391045394245839674368658367944131285842618290039982835090602924527950878685087231947449315794709705778313391049662287773255170381652191095823800998311241066544231026820068158382947683203316532073418725315013873844453549429490822938208911639019688481810414710330643729961857151764633505591433393902244348699664970626190830560605475206992158676373671001848556180709774213775785068816189411497685763283379936094000008520395516445022754119342492565951529592764048908669681896919168229166855552571057342175548213346999303126896151884901502672793250591971282413305327585242046903057862014493853568846990054183272841722337627133931108473471188471968892466606718672300545142869700009240515369761902113159909972238449429158040839143494992871808075256441433405772465217630362849074415368242729522601534331681956170667097808773140965848916340477203 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d64042a78647f8502a0708e9dc11f7680ff26058 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ot10.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016eee993e34000004030046304402207d06d946f6e1a4e563e96642da8dab117e670b9bd74cbaa717121c8ff11a4efe02206310771d276db161daedff82b3d5264ebde8fda1f86d92b8b272f1b4d29ef16c007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016eee993e260000040300483046022100ed26ddd76f5043c830f1683d8a99436ff4231d49ec05f755cd68e678ed7c90f8022100cc68bc42d562e1a14871534a61e34312c0c6d398a243aa71150bd37da1258737 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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