notvalid.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:00:d5:c8:c5:be:81:da:0e:ac:f2:a3:82:66:f7:e7:a6:d6 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=notvalid.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:00:d5:c8:c5:be:81:da:0e:ac:f2:a3:82:66:f7:e7:a6:d6Serial Number (int): 261621025828482863964814297376521196119766
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b4:d1:be:20:d9:d6:c9:cf:cb:90:7f:ac:f1:ff:94:a6:44:88:fd:5f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 2e:7e:2a:61:95:e7:56:2a:30:fd:29:52:3f:e7:44:b9:0a:9a:c8:95
Fingerprint (sha256): ae:ae:d8:c4:2c:38:85:b8:35:af:61:9e:e4:4f:54:e3:e4:22:10:20:b7:d9:e0:68:48:6c:b7:57:41:3b:82:3d
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate notvalid.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for notvalid.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
notvalid.com
Other certificates including the domain name notvalid.com
(limited to 100 certificates)
qh.org
www.notvalid.com
al-karama.com
www.notvalid.com
www.notvalid.com
notvalid.com
notvalid.com
notvalid.com
notvalid.com
www.orlandosportsdoctor.com
notvalid.com
www.culturepeace.net
www.notvalid.com
www.esportscanberra.com
notvalid.com
notvalid.com
bilocali.org
newyorksportsmedicine.org
www.notvalid.com
notvalid.com
casinolist.co.za
notvalid.com
www.notvalid.com
www.notvalid.com
www.notvalid.com
al-karama.com
www.notvalid.com
www.notvalid.com
notvalid.com
notvalid.com
notvalid.com
notvalid.com
www.orlandosportsdoctor.com
notvalid.com
www.culturepeace.net
www.notvalid.com
www.esportscanberra.com
notvalid.com
notvalid.com
bilocali.org
newyorksportsmedicine.org
www.notvalid.com
notvalid.com
casinolist.co.za
notvalid.com
www.notvalid.com
www.notvalid.com
Certificate
The complete raw certificate details for notvalid.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUDCCBTigAwIBAgISAwDVyMW+gdoOrPKjgmb356bWMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MzAwMzA0MTJaFw0x OTEyMjkwMzA0MTJaMBcxFTATBgNVBAMTDG5vdHZhbGlkLmNvbTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAOQJICGEShjuRaSpEjf5rVaFoFzq5dNhhoIc lsNRfcopOiaMACBSecC7/H8QK3mJZXGFJyG7omFmHhys+lx5bnMksWC9DT7LLEy6 5nR7zCCqHqlaIOBZ+vwehe/+0DK8/z1LXU7kMgmjTizTPhXqLd9Nz6sXkRC+7n/N FttdYR1IlTa3Xovg24g4w2jD0FFQDmrL+LL2PUsHYjz7xUw+GzFLmVcyilKbvpkv QlJ+mC/4rRz3GkIGSTz12Pu3SvsKxFpiik5CDEBusmRteleaBI5MxNU+Bf9xRI1R x4j6+PWipTSvwveOrdELyKrDkO+A4Lhon+lwtNYBZtUE5z+xicGiOHUCE1/YZEqL WD6XyiJyvjMSSl/9cGWVPyR+BXsAXxURSusS3RvZOLpCO8yI1T65yb5rJSKO8dNa +gxzbQfWJV+ezvFYQhl21AAKLszCjUuL9b6Z+MEi3KMSmsp/TF6D7pHSSEkj7lGA Pr5lmhdkgxSFYz9/oSWNjco9WUaljK+eAvk64MbiVN64OIO8vR+1s0mfR74ixFIC WXxJTCsaBkSvLIzc2mBp502lrrrcdBc3HycNcb9UB/Vl1VGSSO6abQwybBuU5nWC EDRe+PkJNFhsiVS013YbB4ca+w7UkC2fSovjcxPcpvXGWgm3awiIcs5lUL33CWj4 dCFfLARhAgMBAAGjggJhMIICXTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFLTRviDZ 1snPy5B/rPH/lKZEiP1fMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMbm90dmFsaWQuY29tMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHUAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFtgFcSRAAABAMA RjBEAiAd72PaXKeGLy4mJTFj0pGEtGQN/SIQSOiDq/ZBg4u/KgIgELgs5Bg1TnX/ qzrHCMdAqJst16+CcwOfQV/S9cHjhJ0AdwApPFGWVMg5ZbqqUPxYB9S3b79Yeily 3KTDDPTlRUf0eAAAAW2AVxRWAAAEAwBIMEYCIQC2qu613HTeLFRQzEfrlqBf+OIp 6Wq6nYZShrHZCrQ3KAIhAKOcDZ6HbajoXYqFP938yLBEHOtVkaXR6tOKCzroPG1A MA0GCSqGSIb3DQEBCwUAA4IBAQAZ7qNBVh+G5/Ml0rheXgswOdIfVzTmjoYSj8QC 6F36JxwFDiVVO3ljibSlr1wtp/8WjBiMHY3+/kptEHJzmoYDyRo3Ec1M/4Nxbh5P 8ClV/11t9LvMS2jIdIW/VK7EwCCj4hvHjD13UgBO3AljLRxQ5EwG5xoMiFew3wuc XlCqwoWJnjL5hx3q3+1mPEUt6ZizmPCDFd1Y8aXeHWIx8adNHVXAJEah0Q+gZ+Fx GpctzQT2YTMxOsylhAANnAT6XyEpmREr1t1fBJ52eHlLiodwUPdiHd75FRJ7WB2I TraDQHvZpQr71r4ai7ihDP798T0P36cCW2z2jPYZqhNs3iRW -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA5AkgIYRKGO5FpKkSN/mt VoWgXOrl02GGghyWw1F9yik6JowAIFJ5wLv8fxAreYllcYUnIbuiYWYeHKz6XHlu cySxYL0NPsssTLrmdHvMIKoeqVog4Fn6/B6F7/7QMrz/PUtdTuQyCaNOLNM+Feot 303PqxeREL7uf80W211hHUiVNrdei+DbiDjDaMPQUVAOasv4svY9SwdiPPvFTD4b MUuZVzKKUpu+mS9CUn6YL/itHPcaQgZJPPXY+7dK+wrEWmKKTkIMQG6yZG16V5oE jkzE1T4F/3FEjVHHiPr49aKlNK/C946t0QvIqsOQ74DguGif6XC01gFm1QTnP7GJ waI4dQITX9hkSotYPpfKInK+MxJKX/1wZZU/JH4FewBfFRFK6xLdG9k4ukI7zIjV PrnJvmslIo7x01r6DHNtB9YlX57O8VhCGXbUAAouzMKNS4v1vpn4wSLcoxKayn9M XoPukdJISSPuUYA+vmWaF2SDFIVjP3+hJY2Nyj1ZRqWMr54C+TrgxuJU3rg4g7y9 H7WzSZ9HviLEUgJZfElMKxoGRK8sjNzaYGnnTaWuutx0FzcfJw1xv1QH9WXVUZJI 7pptDDJsG5TmdYIQNF74+Qk0WGyJVLTXdhsHhxr7DtSQLZ9Ki+NzE9ym9cZaCbdr CIhyzmVQvfcJaPh0IV8sBGECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 261621025828482863964814297376521196119766 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-30 03:04:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-29 03:04:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'notvalid.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 930304272659186907184092909321842294932855441267995934690084292791460161677255486269523258777018597457526381784826415935196001620181898422568063217974473907756604143605290363416280879230297196641120243941441404582169006942656515321528070214001456547725544009324355858173374607887171275692903569837481252152304254233893717455238636562078739051011605675639960600880268094393274129070688502339538997037041113373270272243152661152368608311395394770350950691847050430647537828661055304664044498075984649214012300916075863301363737088567412662375254861031553673797380484111624318610591478348947829948292868526152710677264307578769527826834796008211168010827370828922675674266592836166584597964409326545687051308670154397272316763737158791388569052637215017974474186840431048285634556227668427664710924139392950708372926689958390802155097071813145732240592426896914772415605893587834626791189195644653789731858856164169933522710285520147871819906950535018629954131109254280380634934841965698532197325269004505218511148647821114753487883435005106579964089598279138682660286323618468760287669466516917938730383374304292518202470535796087196517530897848246974906204572848475917033965397814114033771042107626728108221138423626726410288920003681 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b4d1be20d9d6c9cfcb907facf1ff94a64488fd5f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'notvalid.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016d80571244000004030046304402201def63da5ca7862f2e26253163d29184b4640dfd221048e883abf641838bbf2a022010b82ce418354e75ffab3ac708c740a89b2dd7af8273039f415fd2f5c1e3849d007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d805714560000040300483046022100b6aaeeb5dc74de2c5450cc47eb96a05ff8e229e96aba9d865286b1d90ab43728022100a39c0d9e876da8e85d8a853fddfcc8b0441ceb5591a5d1ead38a0b3ae83c6d40 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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