domaindonated.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:3d:25:15:50:ed:3b:16:45:87:08:28:6d:83:84:7e:72:d0 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=domaindonated.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:3d:25:15:50:ed:3b:16:45:87:08:28:6d:83:84:7e:72:d0
Serial Number (int): 369255660224684433324735047479587732615888
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 3d:4e:8a:77:12:7b:36:01:73:81:6d:0f:d5:80:bd:50:af:6e:dd:1f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): f8:82:3f:c2:f8:30:96:1c:85:9d:17:0e:90:25:b1:6d:8e:41:1a:67
Fingerprint (sha256): af:f3:e1:b4:27:3e:a8:7c:37:8e:cc:98:42:50:23:ab:97:2e:1e:c3:62:18:76:48:01:07:95:9c:b1:82:c7:0f

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate domaindonated.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for domaindonated.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

domaindonated.com

Other certificates including the domain name domaindonated.com

(limited to 100 certificates)
www.domaindonated.com
sarahnorris.com
www.domaindonated.com
domaindonated.com
www.domaindonated.com
namedonated.com
domaindonated.com
domaindonated.com
sri529plan.com
www.girlboards.com

Certificate

The complete raw certificate details for domaindonated.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 369255660224684433324735047479587732615888
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-27 05:54:52 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-25 05:54:52 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'domaindonated.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 911135497732152530870636852948239738674628188406696707348075054757304872296060365756255340105155574737309632467420364193416184780255313121226127486142636925829192621935014267035660316353564006752268435916965479118412715141749734119292022648363995520002279267934731782741951110588768666320779829093571107088404850054977661365583244317219463120974167750647342922710504452971207438685496408580701154068790024678022292910843957851327448583705027674303660389373685014960164786137506319720770571195211563051656976443339269448424110227582029003967222148963109988382155665451949922120323184932806859454388194364268798626524366620875788193832229846265327165668343117642319838782561185181571762127942137902971431290313021671801378600801832880127044798848709829433380927937295714816228605396467862634190966003691710719011058482842002671554296831857405150128565166161013221981734823829651426620284436316358380535233074775341136455697246122326165839785147897927279358330154245252209069917760346934454245361969107010265391893788709493258562799258319099100733602770725801942390435529008775688273001989546819814268866104186479135088850470686474837132518644952757831738608906569488829992970769208625251623773125816910114540635163228885477539821158771
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3d4e8a77127b360173816d0fd580bd50af6edd1f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domaindonated.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb273000001711ac5a5e5000004030047304502210082d4f90a48135bfb73659fd397c2d5b0a05aac5a9c21ea0b767f9a41ddb0b9a4022063a7bc0b6f5e06211ae51647bf41a4471bc68205ef3d04cad54d56992b77e6ea007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001711ac5a5e00000040300463044022035a9a0e992a831ba87204b5a0c7712d25b3e5e3ead0539b934625bc7db216f760220279c16a0767d2609f9d017834805bbb3ce4209d3760dff7a7dbe0c46d6af75d9
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00210e9ff93667bdc7f44abf7b53f523f2746b6361cec0e320c568320bb18542bd26a5063f4259ad2d379e96006f149557ba4b3affc34059195c42f7842213f1de550e7cd5ea107ced324d9e9526e1ce56c55cee302cf0b0f7dda1d1f8687343959ffb615c818988fe14772b4a322274ea5b7230a4450dd03fec835a2b31e35de4eeb64693cd677389328c3a732c71bc1f91a07c4d081cd07cc309df5ba767258af0feac4c59e3aaf78557c95b5ba84c9b0e645905cbe4ba7363605adaebcb033e79c6007f3760353126bd5f63ce921fbd743c18668d1e124a31ee1283aa6f96b17d4e424a1bafb28f23458ac926085d3ddbb7dbd10ef357c668738af1ef8d58b6