africo.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:11:5d:1b:47:42:1b:1e:ab:12:a7:18:e0:76:8c:98:1b:88 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=africo.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:11:5d:1b:47:42:1b:1e:ab:12:a7:18:e0:76:8c:98:1b:88Serial Number (int): 267245417873848405191393652935544207317896
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 6c:99:24:2f:97:77:4a:f6:88:06:2c:65:3d:83:b5:e7:7f:ae:e4:08
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 9a:18:31:c5:ec:8d:72:0a:55:f8:0f:2a:16:1e:88:54:05:fe:8d:60
Fingerprint (sha256): af:62:79:78:a0:90:e5:fc:48:d0:d2:d4:5f:00:74:0a:e2:71:ce:20:fa:74:84:5e:8f:94:09:22:cc:09:3c:55
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate africo.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for africo.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
africo.org
Other certificates including the domain name africo.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for africo.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSzCCBTOgAwIBAgISAxFdG0dCGx6rEqcY4HaMmBuIMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MjcxMDQ1MzFaFw0x OTEwMjUxMDQ1MzFaMBUxEzARBgNVBAMTCmFmcmljby5vcmcwggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQC7cAV7DD/Ax/YYCCtLHyxId66PkDlBX+1zklne f3ONSl4nUHoDw3nG7Bmtf3HlfPQUEEcq5I8c54YDdCEuBQYkJvaO54UJz6Z7mLyi TGLOa16O2dgDmtmCHGmZnV7IpTdl4g+jbV1DNZWMB1tqg+esXKSGVV+ydwA/CAQp sA0lW/0TnuE1bV7mmth7WBuLVaF4Fcj2waF8HVI/7ebwChjcB0DpHlSphQLEI5xF KtWIBhIPBdNhpVVN3rcapWkmpS28x84xI8VmSUlL2pEKqBtg0T/rlcUZ5JInTe/+ Qc38Geu3xqWq1vP5kEvskhZy7Y/XK/XjB6VM2+BI64OGdou75GPr4nwIMUySzotE rtk3Bc2T1msk3FLUhlJQge4X13jCrxzh7L9Hbjx1Hx5ccP2vdMlyQGJ00aO0bdsY ID1ASfVh4qaQu5R/WXlAn40A9VIskbrjIe32Avzotr1oj8zyaMTWgFXANcbKmqzC VpWk+3dr6WAteXNc5S3ErtsVqqJYWGO2Oj5ftbXexO3wjrspu78WYViHCXKveakr AjACWrL7yde1DSYAV7N7OUAFYol9X1CmfrDmiws9cVmxaypubWVNUBVaGt06QMZb wIe1H8zDh+RQcydRJp2ZtO+AMPuY9zyOsPt9rv1gs0xz7e/N6xx7x29T4OaolcFg E5DVJQIDAQABo4ICXjCCAlowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRsmSQvl3dK 9ogGLGU9g7Xnf67kCDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMBUGA1UdEQQOMAyCCmFmcmljby5vcmcwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQDi aUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWwzQA5OAAAEAwBGMEQC IE05RFF3Dniz6YvZpengQ9bpkpIYcs7NKj6u7SPXfgEpAiBqhtvLgCuna/B2Hwwt JMJl2db7XX1yQJHFAM6ECm2A0QB2AGPy283oO8wszwtyhCdXazOkjWF3j711pjix x2hUS9iNAAABbDNADnEAAAQDAEcwRQIhAO20T3hjq9jGVp2G5bwAdd6WFjvC5T8P QHeoNw4y836PAiA78OA5xI7EK3QycO2biI3Nlil8GMBFBGn4/rb6IkwgEzANBgkq hkiG9w0BAQsFAAOCAQEARAqCreMKrBrx38qpcEtAQY8Cxx7Yr+4NdJBn9V51bhWU SdMHcLwQBE+lw1XqVkezYID3wubJG2A42L5BlMK4uhRw91KP53cJICtmt+ZenMun FRYubdHkOpqgS/cA8imWZjQUsmekkDcavLzjM0p8miQv6NbCVVtZvqlR9sjCo45g jtFGMv4yHbCk5eUTnHvt07ArU0LuB/hCLzyS20IH/Vji2hgYjMK8Wjlr7vQIghOe /NZMBSDOQtNVzNB8CgWIcj/Hy8tZd6PXdVvOqwBx8iHpT+XwophWgabMqoJQc0XN aWUlqbMhuA/nLmDVWOaEMFuOfB28ag0IKSnA2cZo2Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAu3AFeww/wMf2GAgrSx8s SHeuj5A5QV/tc5JZ3n9zjUpeJ1B6A8N5xuwZrX9x5Xz0FBBHKuSPHOeGA3QhLgUG JCb2jueFCc+me5i8okxizmtejtnYA5rZghxpmZ1eyKU3ZeIPo21dQzWVjAdbaoPn rFykhlVfsncAPwgEKbANJVv9E57hNW1e5prYe1gbi1WheBXI9sGhfB1SP+3m8AoY 3AdA6R5UqYUCxCOcRSrViAYSDwXTYaVVTd63GqVpJqUtvMfOMSPFZklJS9qRCqgb YNE/65XFGeSSJ03v/kHN/Bnrt8alqtbz+ZBL7JIWcu2P1yv14welTNvgSOuDhnaL u+Rj6+J8CDFMks6LRK7ZNwXNk9ZrJNxS1IZSUIHuF9d4wq8c4ey/R248dR8eXHD9 r3TJckBidNGjtG3bGCA9QEn1YeKmkLuUf1l5QJ+NAPVSLJG64yHt9gL86La9aI/M 8mjE1oBVwDXGypqswlaVpPt3a+lgLXlzXOUtxK7bFaqiWFhjtjo+X7W13sTt8I67 Kbu/FmFYhwlyr3mpKwIwAlqy+8nXtQ0mAFezezlABWKJfV9Qpn6w5osLPXFZsWsq bm1lTVAVWhrdOkDGW8CHtR/Mw4fkUHMnUSadmbTvgDD7mPc8jrD7fa79YLNMc+3v zesce8dvU+DmqJXBYBOQ1SUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 267245417873848405191393652935544207317896 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-27 10:45:31 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-25 10:45:31 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'africo.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 764678626172684379352749775092026362792749421916819953640115299765407523495640681560453041905943293761952678997424240442744857807220607602422212554570885737139502850932667578915226411857266556307959791939340668602627304568454178907069550276977496596099286952362475598388090852924154531702721896187680761332765654254808166364153772472624426105148834098142253000798807331569823031288593178273760382035823428131489365194585295457109110101731514126004387875718704678487774839911235092351820642782632759544570416119349907305588469119760011123526894338017765707086828233010534305000745730769795406061856612953496893763227600369237573193185910108239432126493067981045864130261988585750085198438903309242868942121868032547692325196506403288019822029789355309730668217093376564339346043425351362517177941199075366734686186954308897223689960737348550853137245083757805634746935551749773173451628682144653779642586384148733647333047384271879852052723929914670261914685229360633596840588699229515932703255596914571735482102129185482513576654194065880650060579451668025814512192569506166089363990082138030466795950471088144295437154621647078673414357256831207581493729071402723045749131527897610816176849094107153673813224227233193249693024441637 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6c99242f97774af688062c653d83b5e77faee408 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'africo.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016c33400e4e000004030046304402204d394451770e78b3e98bd9a5e9e043d6e992921872cecd2a3eaeed23d77e012902206a86dbcb802ba76bf0761f0c2d24c265d9d6fb5d7d724091c500ce840a6d80d100760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016c33400e710000040300473045022100edb44f7863abd8c6569d86e5bc0075de96163bc2e53f0f4077a8370e32f37e8f02203bf0e039c48ec42b743270ed9b888dcd96297c18c0450469f8feb6fa224c2013 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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