www.deandrea.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:07:8d:bd:dc:e3:91:ff:7b:38:f2:aa:23:35:10:30:ac:60 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.deandrea.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:07:8d:bd:dc:e3:91:ff:7b:38:f2:aa:23:35:10:30:ac:60Serial Number (int): 263907241335399335283131725374768645450848
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 13:12:79:ce:2f:52:a1:7a:02:c5:d3:7d:f8:09:77:d2:a9:5f:4d:36
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 05:f4:94:34:0a:0f:a9:cf:63:17:34:62:05:4c:9a:b2:24:05:1c:89
Fingerprint (sha256): ad:f4:ae:2d:89:a8:46:cb:61:85:4a:5b:23:83:20:85:62:00:94:58:74:95:88:ad:35:c2:03:f4:43:af:f7:49
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.deandrea.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.deandrea.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.deandrea.com
Other certificates including the domain name deandrea.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.deandrea.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWDCCBUCgAwIBAgISAweNvdzjkf97OPKqIzUQMKxgMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjUxMjMwNDhaFw0x OTA4MjMxMjMwNDhaMBsxGTAXBgNVBAMTEHd3dy5kZWFuZHJlYS5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDg4YxLWGC1FMdYdxmf2DLSZkQ2XFTC 9Mm5reOW+UMUJhyfjPdpLzbBnFNDwBYxtuJ/Z1MYSH96/Jy5FrfxUDZpLF1l8YTR XkeghGB55VOQvZeKtRPyhCeTcTl8GnnpUnTL9aRX8SZicohJlrzggzbpIDaRuTtD uusY2olH9+4JfwRH9SfpTh+6doaNqbaGGExzZMoDn5HOwXToFDFtfPjzNSb0xH1m nmMd/yV1iFiEIcGe3uACcC4KLonJLkjgwiWRpOkOr2gDvFYdbzoZVNX7hwnHy3WA vk50fZiOH5Uiy6Vm36BEXWSQmqIePYq5gAaXjauA4V4vJj8dGoQOIzq60xc6Kzcn Cck7lqc76ac8TBmXQNbvF7b30JgLO2r7SiY9Jy73XsfwF7CBfNMJa+jfg2Qkopm4 xjDC001RCiXgz0zMCSptngAvuBSYP6hbvSoV7T8yCIL4GD6Ez5qLSYVE5DzQzlie UMNlXMq17KKdoylpR4dM54v2olX1vb8uGK7ZduhYnU2PGghFjx14O1k19FgDfRRs 7lbqJCvO0tSyDyxoVNzQKIO154IpCUSaJbFOCS40MgI2hs6xckQURFASRULA6kDb 0rhcdv1OniXs51NSRQ+RCBHCSP+P6lQy7GF87vizCx2pQnOyqWHLdXnEZU8ynn5Y Cbw36VYeUvOp1wIDAQABo4ICZTCCAmEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQT EnnOL1KhegLF0334CXfSqV9NNjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHd3dy5kZWFuZHJlYS5j b20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQC BIH1BIHyAPAAdgDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWrv L80vAAAEAwBHMEUCIQC8nJNv/oinLFovQOCgnrPeczpNY5zzd1o5ee7By5f40QIg c2igKA2p0HALALUnGzh9ccVLZLYpMOEmjIMBjyjUASEAdgApPFGWVMg5ZbqqUPxY B9S3b79Yeily3KTDDPTlRUf0eAAAAWrvL80yAAAEAwBHMEUCIEkCoAbVhKQZs2Od BDHCYEZIS5hpJtEIWGKZNWCPHQLCAiEA7HPtIQ7I8pm8Fnx6oCLRialPCi+AHugA 8M+j5+A2WJ0wDQYJKoZIhvcNAQELBQADggEBABB/kGUCgUMLALwLpqmV3KCkn4BX uN4jkxoiiTweNSEpjO4jO9XhrRC6SHgiKwOOG/Q10NM3O8vi3wHH7wFjNZM9bHbC U8YLHM1sqtQhX77JrwG/NCxzCqjcI8xqOvGAWEYf6j6IwcGiX/a/UzR+GBnvjRK0 P3U8g41AfKmfmeGXgDy8Y0xYwK+ZOIldkiVKb6w3ffVAiPyZ9cdluS2X+NjFO9iX TH2zbSAOFEwjQ+xiP5EIrUq5Yt3+IwtiaN2Ddek83F+W5uwqt7vYTFv0YYZj5zFe kfFgFA1Eci2g8rqfdyFNw05yoTO2HOeq++6ei+m4+NBvUp5pwitxt5Ko8cY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4OGMS1hgtRTHWHcZn9gy 0mZENlxUwvTJua3jlvlDFCYcn4z3aS82wZxTQ8AWMbbif2dTGEh/evycuRa38VA2 aSxdZfGE0V5HoIRgeeVTkL2XirUT8oQnk3E5fBp56VJ0y/WkV/EmYnKISZa84IM2 6SA2kbk7Q7rrGNqJR/fuCX8ER/Un6U4funaGjam2hhhMc2TKA5+RzsF06BQxbXz4 8zUm9MR9Zp5jHf8ldYhYhCHBnt7gAnAuCi6JyS5I4MIlkaTpDq9oA7xWHW86GVTV +4cJx8t1gL5OdH2Yjh+VIsulZt+gRF1kkJqiHj2KuYAGl42rgOFeLyY/HRqEDiM6 utMXOis3JwnJO5anO+mnPEwZl0DW7xe299CYCztq+0omPScu917H8BewgXzTCWvo 34NkJKKZuMYwwtNNUQol4M9MzAkqbZ4AL7gUmD+oW70qFe0/MgiC+Bg+hM+ai0mF ROQ80M5YnlDDZVzKteyinaMpaUeHTOeL9qJV9b2/Lhiu2XboWJ1NjxoIRY8deDtZ NfRYA30UbO5W6iQrztLUsg8saFTc0CiDteeCKQlEmiWxTgkuNDICNobOsXJEFERQ EkVCwOpA29K4XHb9Tp4l7OdTUkUPkQgRwkj/j+pUMuxhfO74swsdqUJzsqlhy3V5 xGVPMp5+WAm8N+lWHlLzqdcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 263907241335399335283131725374768645450848 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-25 12:30:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-23 12:30:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.deandrea.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 917434629287003725139710086035847248998487028828401122981351310243025714759212556627279188533621543967599168495787944385743154008209365381611284692208195024371358502433865925310203532535203819631524646024161124867138997095961366551542180350267304134740925416440829634931298696122609537809642064652089680277074697774685846382950652881435088798593674395109391265373280537598801618610887166066932189900228394517498754801986161637464298693192865549628879063587721770268239076286630699789843254275943324754055745649696680529272561327939412866930711353858661345826526349836171151563886765865523872370207007448770545671105202714921742576188865987782299935362468733976999126436042215977043023440326186047687179478253529117489196879969080985335715137016434039766808669628962861644006979069843696870850281829654511810173898500621519986335980995184720564383511723372866244289398466311484681157758240245984738946383967463680275006186728692671476291424365356407775457979258050818625450898770798273004942123387618897712332035068398926152651325479346926689662755153179793671282942566946935249844756670257092102110416570371823867042577007307088313200316069606665280435069457205654817642012937870308934679187883980319591865326339688388734397489326551 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'y�/R�z��}� wҩ_M6' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.deandrea.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016aef2fcd2f0000040300473045022100bc9c936ffe88a72c5a2f40e0a09eb3de733a4d639cf3775a3979eec1cb97f8d102207368a0280da9d0700b00b5271b387d71c54b64b62930e1268c83018f28d40121007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016aef2fcd32000004030047304502204902a006d584a419b3639d0431c26046484b986926d10858629935608f1d02c2022100ec73ed210ec8f299bc167c7aa022d189a94f0a2f801ee800f0cfa3e7e036589d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00107f90650281430b00bc0ba6a995dca0a49f8057b8de23931a22893c1e3521298cee233bd5e1ad10ba4878222b038e1bf435d0d3373bcbe2df01c7ef016335933d6c76c253c60b1ccd6caad4215fbec9af01bf342c730aa8dc23cc6a3af18058461fea3e88c1c1a25ff6bf53347e1819ef8d12b43f753c838d407ca99f99e197803cbc634c58c0af9938895d92254a6fac377df54088fc99f5c765b92d97f8d8c53bd8974c7db36d200e144c2343ec623f9108ad4ab962ddfe230b6268dd8375e93cdc5f96e6ec2ab7bbd84c5bf4618663e7315e91f160140d44722da0f2ba9f77214dc34e72a133b61ce7aafbee9e8be9b8f8d06f529e69c22b71b792a8f1c6