www.thermatica.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:1f:1e:67:11:3b:2b:c6:df:b0:c7:42:72:42:ae:cb:e0:e4 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.thermatica.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:1f:1e:67:11:3b:2b:c6:df:b0:c7:42:72:42:ae:cb:e0:e4Serial Number (int): 271926023165768782000172469651663743607012
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: e5:7e:8a:82:38:cc:d7:72:c0:9e:44:4c:8e:6e:41:9a:bc:b4:86:37
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): c3:85:48:7c:0c:97:60:94:12:bc:b5:96:60:91:fb:33:0d:dd:26:db
Fingerprint (sha256): aa:a4:92:6b:c3:e0:ed:2a:e3:fd:f3:c9:5f:51:2a:db:01:e8:ed:db:54:c9:31:68:21:f1:ce:32:17:b7:ec:44
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.thermatica.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.thermatica.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.thermatica.com
Other certificates including the domain name thermatica.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.thermatica.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWzCCBUOgAwIBAgISAx8eZxE7K8bfsMdCckKuy+DkMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMTUyMDQ1MjBaFw0y MDA1MTUyMDQ1MjBaMB0xGzAZBgNVBAMTEnd3dy50aGVybWF0aWNhLmNvbTCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMlLOPpKa23u617C7ujgx5W9qD3m L+fmSkXOIvpGyCX43bLaGIigTNirOgKmFhK1hikCxOvE259FinltjvvdNRXcftvB Z+bP6nA1JheanUK7d/Pqh4sutoKssNuK5GWXyGJTSN1NuQV/YdWLM51YWMjFz6Ox yQ8bK55rzYjG8Z6XQ1AiO97cFXOATe/Af0Hwknhp2LukmR7vUThJSTJafKKVvIao o/1Z4Ax61idL+nE77DqTXBYswQLRoU/tP3E+Q5+BRN0q87MP5aQyPfGhv2pdBF+M g9TM4jVyUW+uTZA+FliEU1Gt7MD5rttvl7J6kn4TgR2a54Hj2ww2Mt0hMcq3fucW azO2GmAyYK9R4hhrGOIQZQcaX28KywggzUhd+JG4QDHLGQx7cU89fd4EmUsDih70 cbD1MzQumq+6BH7dm4L+6MP8UU/NKaNhSBJ2kcEUrCShLeoTA4UGwWtZsdUQl0bU yI8M2MrDDbxAu8kLeIsHDuUlVzMv4BHki+fYLPu/pmXotKINFfGnO3h5ySV+v3bR nZAIBidnvGUevH97TItuYTvG4SxMpiXY8O1bzJVCeTdJz0/99mcSlxuGIwktotW3 pipXAW42yQrXyFGqGAMTd+VBG8AFjKLDKPQ0/oITZ44p2NsviK2GjEzYzyoQM0YT YL+V4oFxJ65TY9OrAgMBAAGjggJmMIICYjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FOV+ioI4zNdywJ5ETI5uQZq8tIY3MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISd3d3LnRoZXJtYXRp Y2EuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHW eQIEAgSB9ASB8QDvAHYAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4A AAFwStAmogAABAMARzBFAiAX3z1lxn0QdqSEjGrh2qhUDVcr0aYFDiFwzsCsP4wK XgIhANitOasQcWmK5noKMsW6GLZdwMkDf6v/x17lp+sNORvxAHUA5xLysDd+GmL7 jskMYYTx6ns3y1YdESZb8+DzS/JBVG4AAAFwStAmhQAABAMARjBEAiAj7QRbezTs ZaISyPV9ZV+QPI2zxr9M+VX5EWKFTuLC3AIgNBnnJTvF4UqNEDuiucecCEOr4EDN 7Dq/onWn2pgWVwQwDQYJKoZIhvcNAQELBQADggEBAJxBdI5wVNEt47s9p2KD6YcL jJNb2qzSbPIIWoTO6ewWrJKJya53e7vuUj5BVY/gi+tVpA8uSHo+A6uZ2f/zq/+Q 6FKhe5dKBm5PllDXV+9ZF+Kol3NgPgBEE6giwtfJ3pKGLZswNjo/cEtx7/nKfeR0 SZKdGHJvaIPmN8WKltuAErskKahA5apqCJ/fM9bEI5hSD1jrnlY6IU1kUNF7+F8W WOcCEvAMMMretoFO/bty5zZhM/KbAEtMb72c9JyGxU52VeeYuH/6jJKB7bv+YjPp tD3mtFJPlgqe+pgQqj/N+XUP33FtbNxY1Xid5q+mwCF1VkU0HGc8rQkFk8s9JKg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyUs4+kprbe7rXsLu6ODH lb2oPeYv5+ZKRc4i+kbIJfjdstoYiKBM2Ks6AqYWErWGKQLE68Tbn0WKeW2O+901 Fdx+28Fn5s/qcDUmF5qdQrt38+qHiy62gqyw24rkZZfIYlNI3U25BX9h1YsznVhY yMXPo7HJDxsrnmvNiMbxnpdDUCI73twVc4BN78B/QfCSeGnYu6SZHu9ROElJMlp8 opW8hqij/VngDHrWJ0v6cTvsOpNcFizBAtGhT+0/cT5Dn4FE3Srzsw/lpDI98aG/ al0EX4yD1MziNXJRb65NkD4WWIRTUa3swPmu22+XsnqSfhOBHZrngePbDDYy3SEx yrd+5xZrM7YaYDJgr1HiGGsY4hBlBxpfbwrLCCDNSF34kbhAMcsZDHtxTz193gSZ SwOKHvRxsPUzNC6ar7oEft2bgv7ow/xRT80po2FIEnaRwRSsJKEt6hMDhQbBa1mx 1RCXRtTIjwzYysMNvEC7yQt4iwcO5SVXMy/gEeSL59gs+7+mZei0og0V8ac7eHnJ JX6/dtGdkAgGJ2e8ZR68f3tMi25hO8bhLEymJdjw7VvMlUJ5N0nPT/32ZxKXG4Yj CS2i1bemKlcBbjbJCtfIUaoYAxN35UEbwAWMosMo9DT+ghNnjinY2y+IrYaMTNjP KhAzRhNgv5XigXEnrlNj06sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 271926023165768782000172469651663743607012 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-15 20:45:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-15 20:45:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.thermatica.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 821207212781204772551916971409671478613369935976002332062973484075556291186840945744759598869793894870509664962991027435600902388860976891950866531498936291634569154255836153974399804120799988572326911970169025251186590204639493958175083840363777737330150012516860347122969490752574754996431710558049397461904734129429438757368917392070055798823893459674084738512398976019953287024955918056405232608896955714465846524640713312814146876136688332604539702579053039752603709149083779826547059027417191116488740613438218442602179276968562448242072816642264441755784959053979496048827957326030940795207432310647617071552526244148787961041993678825293828031491036319436749061566017627747857300583437280112144816778030776611655874604645983414767708798131547721723433192109438117257687954677964869079928336872526725834246265085272539832417159586048757131487823603057466686824315392487163359112064347096058265648463369544086008740990253888936941505743244179561808110535498744182641935974615396552335828467540225917498618062585972696729313662812233291964993509388838721648147126010409358561483418077924029617426586583349832934550761250480086159422769598502001713071370522532878353748362556851247376042273539996953721873027483386939957393478571 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e57e8a8238ccd772c09e444c8e6e419abcb48637 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thermatica.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001704ad026a20000040300473045022017df3d65c67d1076a4848c6ae1daa8540d572bd1a6050e2170cec0ac3f8c0a5e022100d8ad39ab1071698ae67a0a32c5ba18b65dc0c9037fabffc75ee5a7eb0d391bf1007500e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e000001704ad026850000040300463044022023ed045b7b34ec65a212c8f57d655f903c8db3c6bf4cf955f91162854ee2c2dc02203419e7253bc5e14a8d103ba2b9c79c0843abe040cdec3abfa275a7da98165704 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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