danielrutz.com

Issued by Let's Encrypt Authority X1

About this certificate


This digital certificate with serial number 01:cf:bc:50:e5:ce:ae:ec:b5:0b:7a:8c:b5:13:cb:33:da:1e was issued on by Let's Encrypt .

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. While the certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates.

danielrutz.com

Let's Encrypt

Organization: Let's Encrypt

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 01:cf:bc:50:e5:ce:ae:ec:b5:0b:7a:8c:b5:13:cb:33:da:1e
Serial Number (int): 157801050792397692821192043346864238746142
Serial Number lenght: 137 bits, 18 octets

SubjectKeyId: 62:ba:83:e8:18:f7:a6:a6:58:25:f1:00:63:36:da:42:9a:42:0a:a6
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 74:6c:17:3f:a7:e6:f9:f1:f4:c2:f6:e4:d4:c6:b9:c0:51:57:dd:0c
Fingerprint (sha256): bd:cb:e2:8a:53:6d:4a:4a:09:90:0a:a5:07:7c:33:2e:04:23:3d:f5:83:0f:0d:14:cc:36:3b:1d:f7:71:9c:ef

Issuing Certificate URL: http://cert.int-x1.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x1.letsencrypt.org/

Check the revocation status for the current certificate on danielrutz.com
3
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

danielrutz.com
ssl.danielrutz.com
www.danielrutz.com

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIGKDCCBRCgAwIBAgISAc+8UOXOruy1C3qMtRPLM9oeMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMTAeFw0xNjAxMTExNTQ5MDBaFw0x NjA0MTAxNTQ5MDBaMBkxFzAVBgNVBAMTDmRhbmllbHJ1dHouY29tMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzsQOk2kD9nBdrean4DEWb0Z1AbIHXeBn kZ1o/TyiCT9/lpaAdBzXpat+FCMKtgfWPZc4p3bkRt9f8og++a873fJegAUr2ZxH 5Q4RLip0XvU6x+FLcesHGNJifh82ClxNivMMCssFBlD6tMWgvmMuR/xhmqOBxDhg ad1oX9mZTIbKuVEaIkq2a20dIDJ6UUp1qtTbPLc4ksOqVDqc0X2RH9i3cm6cZtN/ EsnBXQWaPNZPmUbtliyYIy8/AGyAU6rgMP6mEQhduy1b1ty/aP3MFuqUKlrX0JGi +4t7Z/9VXjC3RdtwZBzkiJv3Vie013MIawBpdqQwMwCadxH1mng+YhP8ZS0whPGT Njq3qSmTKa5iIamNQWuDg661NW6fiM8zzodpdVGpFAWY+uZZIx36p4woHDWUPWCv S4UXQIZmH3QHu7G9YbIV2nKaM55RenJbFsEDEY/G/PdZhmx00i9HOV7Qm6+FA0KH WfQO42Jgee0q8OU/oZm/EeHEnBreqcbKLwrEM2/dIOdGPHdl3UstgT/CO8/XZxqU od/unLx6ErwpgiZSuErtFgA0/IW3GX1rXomWtbpjYi7YKFv1Cd4GsSb47FRxjNv5 p4eMDI8/YXChV/xSgJUZHssxDOl0B+SOGfEwPTAzWkUtZIgMBp6sd4csID92hp62 NMPRW2CQD70CAwEAAaOCAjcwggIzMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUYrqD 6Bj3pqZYJfEAYzbaQppCCqYwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwcAYIKwYBBQUHAQEEZDBiMC8GCCsGAQUFBzABhiNodHRwOi8vb2NzcC5pbnQt eDEubGV0c2VuY3J5cHQub3JnLzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgxLmxldHNlbmNyeXB0Lm9yZy8wQQYDVR0RBDowOIIOZGFuaWVscnV0ei5jb22C EnNzbC5kYW5pZWxydXR6LmNvbYISd3d3LmRhbmllbHJ1dHouY29tMIH+BgNVHSAE gfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwICMIGeDIGbVGhp cyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBieSBSZWx5aW5n IFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBDZXJ0aWZp Y2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5vcmcvcmVw b3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEBAIDrISZSI0BtDBKkPhR86ZK7K5L+ iKwzmQUE+3BI/fICEUsqyM672rei32IcRfjkd22Tdo3Vl3DAxeeWbW/5+JZNsGzM CWde8iqgRY6z7A2GFMtx1fR4s0p8g+fDviqJpmPKXU/ko6pD/0J6B/RTqW5keZ9W p0mKS+qiD/moRMTyud8h+/EVmySxIDjYtsGyrqj/ZvekwIEMFHRbh6pF985VTcAT zp/bqRjoWggAdnh6aJYt4jIoAX+SqzM+rtP+ANiIoIIFieiZXqvHhspoKhErNHai vVMF56u4XyezXT4i6m2iDZ4AdnKW+MfitJaBR16JRgFWm2TTplKEOopuNyk= -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzsQOk2kD9nBdrean4DEW b0Z1AbIHXeBnkZ1o/TyiCT9/lpaAdBzXpat+FCMKtgfWPZc4p3bkRt9f8og++a87 3fJegAUr2ZxH5Q4RLip0XvU6x+FLcesHGNJifh82ClxNivMMCssFBlD6tMWgvmMu R/xhmqOBxDhgad1oX9mZTIbKuVEaIkq2a20dIDJ6UUp1qtTbPLc4ksOqVDqc0X2R H9i3cm6cZtN/EsnBXQWaPNZPmUbtliyYIy8/AGyAU6rgMP6mEQhduy1b1ty/aP3M FuqUKlrX0JGi+4t7Z/9VXjC3RdtwZBzkiJv3Vie013MIawBpdqQwMwCadxH1mng+ YhP8ZS0whPGTNjq3qSmTKa5iIamNQWuDg661NW6fiM8zzodpdVGpFAWY+uZZIx36 p4woHDWUPWCvS4UXQIZmH3QHu7G9YbIV2nKaM55RenJbFsEDEY/G/PdZhmx00i9H OV7Qm6+FA0KHWfQO42Jgee0q8OU/oZm/EeHEnBreqcbKLwrEM2/dIOdGPHdl3Ust gT/CO8/XZxqUod/unLx6ErwpgiZSuErtFgA0/IW3GX1rXomWtbpjYi7YKFv1Cd4G sSb47FRxjNv5p4eMDI8/YXChV/xSgJUZHssxDOl0B+SOGfEwPTAzWkUtZIgMBp6s d4csID92hp62NMPRW2CQD70CAwEAAQ== -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 157801050792397692821192043346864238746142 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-01-11 15:49:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-04-10 15:49:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'danielrutz.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 843531062852833808905674819159828292791381600119041938464406775277085532937099395500799921810168098486152135200739818349110808258359175761995845913626449205350803428828711234022083202701236217412973428302956959230043873237139949422582788358093102684137586264712359300744463886893537536335192129056272795051302018671184738112665412334899895678772022282898061255772286280629742058068324703723267370992105927413002849804810234917562929401146764008334247200376547854543586353230600955383563601415307414628608212135819571559642108213539634755848993591329038476865337176018887503462845887450410403389205623835387045819739837123482590051483958052081265527513487745247203866986987342751035889053926498622540852094915882636700232699169074999468978901203336557703471073415301218024029678656773070559694819790115099482489863237872569958715997636709233506834760052760543514726200045862576344715936746482668441709923458010854496351242465226160170194095441551407028937760223115055951055621605818178975855595887557542705175681336574562023352969249733065166649702696030709330141499878341709688699684564071117410514688968417952901510848996983744191756515418576369854891871818094425461165156897776832795665888001090474492791510549133430144618546073533 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 62ba83e818f7a6a65825f1006336da429a420aa6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x1.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x1.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'danielrutz.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ssl.danielrutz.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.danielrutz.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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