www.niv.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:69:3b:11:91:7a:92:61:cd:20:fb:eb:01:05:de:42:1d:d5 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.niv.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:69:3b:11:91:7a:92:61:cd:20:fb:eb:01:05:de:42:1d:d5Serial Number (int): 297145021993437715134261498983239085333973
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 4f:50:c1:15:12:8b:09:e4:fe:42:d4:ff:f8:ef:31:56:ef:46:4c:83
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a0:37:78:24:cf:d2:84:79:a7:1c:87:6e:b8:25:d2:0d:36:05:8a:d0
Fingerprint (sha256): aa:3c:cf:62:ff:1d:c1:70:50:e4:01:72:19:b9:8f:a9:89:e8:c7:26:55:80:04:96:fb:64:9f:58:bb:7f:8a:e2
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.niv.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.niv.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.niv.com
Other certificates including the domain name niv.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.niv.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTjCCBTagAwIBAgISA2k7EZF6kmHNIPvrAQXeQh3VMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMjYwMDQwMzVaFw0y MDAzMjUwMDQwMzVaMBYxFDASBgNVBAMTC3d3dy5uaXYuY29tMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAtV9Q+RmzMWJoWt90VwXbR/XQyjiFnHOctv9F 6it1BSg7vQ7C/I/wG1vjONtW4xrmSWmYtN8c9TZ5s7Tl729iQe77suIh0b+rT2sa FXDy+0F7HR4Hpf4AsXwFyMiJGhLHDbc74ZHUcwD27HjgPBCHFe2X3SXuUDvVXXa0 kJ33ZRNXjstQ8q1NNjyOePHcY/0h2g8HrAWvcVFNRjHwm2RP/nPMOTOmYjpnRWKC RUwUxd5VYF+gJhBG+9GSJ5YkWzDi2ZuuAN0VBBpKsGPi6eYiCtcJaW5pSkKkv+SZ EVFBVN0hxEXQbG34FSMd2JdM6AekMgIRZ6Dd1hkfbOiTAzaZr6gxAvgWTdjMhyB5 5+pUt8oExRRCyXPak0NsTFbQnFsYi++3PNrFwiJy8jRwmjfTUloygfe7JRaHuSvd qa8pC8YC+PodM69s54EJR574xYWlcLBHeuAeJdz+Wkgbvpw15oP2WvSuzS2lXtO9 4e7cpwzXAyHbrSqVZ++XXlZGxplKxs9b8SbMoR6kHrzHz/++FPxS22ep9Wy6sR/s xhywt+QhtPq39DV5fsF5BylPqCWfz1Hhmyir39MvkBiSSr01qmzb6HsRhlLhdp6S EVRPZMF610pWqwqDDpYc4Z3JEsFoyDs8rhwUsRdH5RktIBHz5R0FKjCKCJBTP/Ou UL4TA0MCAwEAAaOCAmAwggJcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUT1DBFRKL CeT+QtT/+O8xVu9GTIMwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAWBgNVHREEDzANggt3d3cubml2LmNvbTBMBgNVHSAE RTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRw Oi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2 AF6nc/nfVsDntTZIfdBJ4DJ6kZoMhKESEoQYdZaBcUVYAAABbz/c1osAAAQDAEcw RQIgWKo79j3gCxhbdzwq7pP696pOdtFwFiv67IjoXLvY7DICIQC1jy5Lya2Q2OGS SPsfJUXT/MImcFqqjWRa/qJZf5nM9QB2AAe3XBvlfWj/8bDGHSMVx7rmV3xXlLdq 7rxhOhpp06IcAAABbz/c1qIAAAQDAEcwRQIhAN3DF9XgYvPzXjBhsvhKSDJPwjjg 0IYT8DUWHexmds4eAiBOaFHod7xeNWdq9V5o/N3zYyR1cQjeB/5JlrNmheaozjAN BgkqhkiG9w0BAQsFAAOCAQEAPoVpHP/HcpzQErQtZq28S3gfIoYO9qU9EsQaqv0M XiOxN+itIkFQokWdoBiBTI1VMil6Z6QqG73MYxryOxpHuJkuPttVlS4lJgWCWvGB 5upcqPNlnPtlJFwF5o4SXlyjCnzVaruo/v5+bfia0QAowkzAo9UBU3ly9gI+gK+f 9y/+nBYku4iqJyrfAhH2AkFg4wx4a6HLDia3cWeqbXySXh5tAN78e0Ft3RlrN9eJ xlIt5MSFHdkxfoZjG91n7vNDwMTGh173WuZrPUd+piPfcJEVWfcWipMjJImhjnIQ mw86rI8FBYXGrm07KeNLgJHdG+o5MDYU7h5P1NBVJEgxOw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtV9Q+RmzMWJoWt90VwXb R/XQyjiFnHOctv9F6it1BSg7vQ7C/I/wG1vjONtW4xrmSWmYtN8c9TZ5s7Tl729i Qe77suIh0b+rT2saFXDy+0F7HR4Hpf4AsXwFyMiJGhLHDbc74ZHUcwD27HjgPBCH Fe2X3SXuUDvVXXa0kJ33ZRNXjstQ8q1NNjyOePHcY/0h2g8HrAWvcVFNRjHwm2RP /nPMOTOmYjpnRWKCRUwUxd5VYF+gJhBG+9GSJ5YkWzDi2ZuuAN0VBBpKsGPi6eYi CtcJaW5pSkKkv+SZEVFBVN0hxEXQbG34FSMd2JdM6AekMgIRZ6Dd1hkfbOiTAzaZ r6gxAvgWTdjMhyB55+pUt8oExRRCyXPak0NsTFbQnFsYi++3PNrFwiJy8jRwmjfT Uloygfe7JRaHuSvdqa8pC8YC+PodM69s54EJR574xYWlcLBHeuAeJdz+Wkgbvpw1 5oP2WvSuzS2lXtO94e7cpwzXAyHbrSqVZ++XXlZGxplKxs9b8SbMoR6kHrzHz/++ FPxS22ep9Wy6sR/sxhywt+QhtPq39DV5fsF5BylPqCWfz1Hhmyir39MvkBiSSr01 qmzb6HsRhlLhdp6SEVRPZMF610pWqwqDDpYc4Z3JEsFoyDs8rhwUsRdH5RktIBHz 5R0FKjCKCJBTP/OuUL4TA0MCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 297145021993437715134261498983239085333973 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-26 00:40:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-25 00:40:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.niv.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 739934547334452216581590333827704620947382134178193897070028487321285606586688237308956006072867791860428248072829714477330227634343487614369720246941020594075635035089013933248628531653395112801718303324817365596513098545472221505848002961609283893365560598680616441438705616463478151550348098990343127549737437364836164287839507219035827957081573172767207373299442472142192537248035885199732515272548238738382728675779676560631108009614820990615643407051395978111009494425650049582655681413407943391500113833806610771003325587520467192493157174566799256629697652680810494194244440262541734208944639022461869151544020554239928605124726717276120440411214809328970385884131396110384208862556170226806365432567027747719178597003552556579244619509202301869990531671462301155786968759505573885748886180513159693091578742362915410403455391848739085662870346946394531091798632513138475094702816980563736191176878085370324355072185082160643997392900207960268419220681599321403877471284041995114674886503409628232448349186560138377951328846728308982555367330851159097532002963101959602416877496427250002420813206747733406505390017378066978466011057135895292378692679592836391687979002913952936761843280569662260203933327074690660386131346243 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4f50c115128b09e4fe42d4fff8ef3156ef464c83 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.niv.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f3fdcd68b0000040300473045022058aa3bf63de00b185b773c2aee93faf7aa4e76d170162bfaec88e85cbbd8ec32022100b58f2e4bc9ad90d8e19248fb1f2545d3fcc226705aaa8d645afea2597f99ccf500760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016f3fdcd6a20000040300473045022100ddc317d5e062f3f35e3061b2f84a48324fc238e0d08613f035161dec6676ce1e02204e6851e877bc5e35676af55e68fcddf36324757108de07fe4996b36685e6a8ce . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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