equity.positivepractices.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:43:34:af:cc:41:22:19:d4:7f:46:eb:09:8d:b9:3a:96:8f was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=equity.positivepractices.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:43:34:af:cc:41:22:19:d4:7f:46:eb:09:8d:b9:3a:96:8fSerial Number (int): 284205809029486619637480693590836660311695
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f6:57:70:6f:a0:02:99:81:92:85:e7:42:ad:17:c7:c6:1a:be:3a:2d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): d6:35:1d:32:fe:3f:06:be:1b:0d:88:3a:a7:79:3d:cc:bf:76:1f:f5
Fingerprint (sha256): b2:85:60:a0:f6:7c:b2:8d:3b:df:c3:09:de:2a:76:1f:8b:d3:17:7f:ca:d1:bf:78:93:35:b7:aa:5a:f0:22:72
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate equity.positivepractices.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for equity.positivepractices.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
equity.positivepractices.com
www.equity.positivepractices.com
www.equity.positivepractices.com
Other certificates including the domain name positivepractices.com
(limited to 100 certificates)
positivepractices.com
positivepractices.com
human-rights.positivepractices.com
education.positivepractices.com
data.positivepractices.com
civil-rights.positivepractices.com
data.positivepractices.com
education.positivepractices.com
education.positivepractices.com
positivepractices.com
www.positivepractices.com
ald4all.positivepractices.com
equity.positivepractices.com
education.positivepractices.com
positivepractices.com
ald4all.positivepractices.com
nmevaluators.positivepractices.com
education.positivepractices.com
positivepractices.com
education.positivepractices.com
data.positivepractices.com
dreamtasker.on-rev.com
www.tlc.positivepractices.com
nmcpp.com
positivepractices.com
www.ald4all.positivepractices.com
www.positivepractices.com
data.positivepractices.com
equity.positivepractices.com
positivepractices.com
data.positivepractices.com
positivepractices.com
data.positivepractices.com
nativenews.dreamtasker.on-rev.com
lwe.positivepractices.com
data.positivepractices.com
ald4all.org
equity.positivepractices.com
ald4all.positivepractices.com
civil-rights.positivepractices.com
positivepractices.com
positivepractices.com
positivepractices.com
human-rights.positivepractices.com
education.positivepractices.com
data.positivepractices.com
civil-rights.positivepractices.com
data.positivepractices.com
education.positivepractices.com
education.positivepractices.com
positivepractices.com
www.positivepractices.com
ald4all.positivepractices.com
equity.positivepractices.com
education.positivepractices.com
positivepractices.com
ald4all.positivepractices.com
nmevaluators.positivepractices.com
education.positivepractices.com
positivepractices.com
education.positivepractices.com
data.positivepractices.com
dreamtasker.on-rev.com
www.tlc.positivepractices.com
nmcpp.com
positivepractices.com
www.ald4all.positivepractices.com
www.positivepractices.com
data.positivepractices.com
equity.positivepractices.com
positivepractices.com
data.positivepractices.com
positivepractices.com
data.positivepractices.com
nativenews.dreamtasker.on-rev.com
lwe.positivepractices.com
data.positivepractices.com
ald4all.org
equity.positivepractices.com
ald4all.positivepractices.com
civil-rights.positivepractices.com
positivepractices.com
positivepractices.com
Certificate
The complete raw certificate details for equity.positivepractices.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgISA0M0r8xBIhnUf0brCY25OpaPMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMTYwODU3MTRaFw0y MDAzMTUwODU3MTRaMCcxJTAjBgNVBAMTHGVxdWl0eS5wb3NpdGl2ZXByYWN0aWNl cy5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEBg07X7vSraYv YdqK4JhXsLphCMUJLIxuPw0vmTHMMBqWXLRI+qJGtt0r9McFjr0QTvH2wvITYP8h fzYVtrwJIyQCj31p9cLCzOrmoxyTyAVppay0q+FwBU08MiG+6YZgwLjkmZAKiOlz kOIvNiXcMt+cJunejblavHGJAVgw8UB3MhLYMgLfZX5XTN+6Vbj2kFAFp3BQ3NG2 x1Gf/KgLj0X4BWXt+zT4hEDz6jEh3x3vqMNEFOialFUvnbpW5GhvuTw79/NgUc3T 7fSNjHaRBfTzHmjnaJBfvOj3ImT2un2coFB0A/3tqPkYbMm0i13u/encQYfZFtsm fR2Eslk/AgMBAAGjggKTMIICjzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFPZXcG+g ApmBkoXnQq0Xx8YavjotMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wSQYDVR0RBEIwQIIcZXF1aXR5LnBvc2l0aXZlcHJh Y3RpY2VzLmNvbYIgd3d3LmVxdWl0eS5wb3NpdGl2ZXByYWN0aWNlcy5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHy APAAdgBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAW8OI/RdAAAE AwBHMEUCIQDMI93c7u+EjtXqjV8NSD/NEVLH/XFJq9YSJ16RLwKlIwIgQEExydpF 64fnCyNCmwpQBbPlvjS9jobXS1faFUab0pIAdgCyHgXMi6LNiiBOh2b5K7mKJSBn a9r6cOeySVMt74uQXgAAAW8OI/ZHAAAEAwBHMEUCIQD8/Q/PMX0qHoSSG35YxOeH okanOB0wjWVCwqf5Ehi+HQIgepkCxL0hjWiAPRZluVPJiDTg8NUUI5OpzR+KyQaJ 2MEwDQYJKoZIhvcNAQELBQADggEBAJlEi5qSurZbz10n4GnoerzNS2q+mswfVj3g bpQSSvhJy0niYYRMo5dwIYe9jVSFdOa68J6e2NYDa3URen3wjvvAIktJWixEqXeo ByF+9tTFDkS6mmCbbKa7hbHSwVNeaGjOhzNknGnksP2ougfsya6ugQVO6Uu7CUZN vPlX+DS25Lh5AUqXRsi/EUhg/OHvGJdB3OFs7C355VIbDwqhl/WtP4TE04nTRjOX JD3EEdyUl7WnwLyFJCNGwpRkeSDKfi9tHB2/bbLfrn3s4kF4sNhUNt0yyyh/eUhm WFAwQJsN/uQ7oI4IDnx7Z32XOnENqoHuZF/ItSx8Ff9zc6KoRwc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxAYNO1+70q2mL2HaiuCY V7C6YQjFCSyMbj8NL5kxzDAally0SPqiRrbdK/THBY69EE7x9sLyE2D/IX82Fba8 CSMkAo99afXCwszq5qMck8gFaaWstKvhcAVNPDIhvumGYMC45JmQCojpc5DiLzYl 3DLfnCbp3o25WrxxiQFYMPFAdzIS2DIC32V+V0zfulW49pBQBadwUNzRtsdRn/yo C49F+AVl7fs0+IRA8+oxId8d76jDRBTompRVL526VuRob7k8O/fzYFHN0+30jYx2 kQX08x5o52iQX7zo9yJk9rp9nKBQdAP97aj5GGzJtItd7v3p3EGH2RbbJn0dhLJZ PwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 284205809029486619637480693590836660311695 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-16 08:57:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-15 08:57:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'equity.positivepractices.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24745691971540592593954902551329787954044274893505673321048575823340108798543149853903310793156778162645431959938345906442990975459384771444441388346272052699443262580919811293290803663531579831069305054664489811451879812564631215718100078886671257185692375969293137770399137810428821212769574996174926722935425444818128881580837540461612762636365950763220670697871642597339305012484971774529178546529875550862898229516666188842592316994540137950673086628753268220198194297854806998373570877740704543930607918463744987785889843541867713156867130493018425991570800939081611801699709635615346928281421157554943629089087 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f657706fa00299819285e742ad17c7c61abe3a2d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'equity.positivepractices.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.equity.positivepractices.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f0e23f45d0000040300473045022100cc23dddceeef848ed5ea8d5f0d483fcd1152c7fd7149abd612275e912f02a5230220404131c9da45eb87e70b23429b0a5005b3e5be34bd8e86d74b57da15469bd292007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f0e23f6470000040300473045022100fcfd0fcf317d2a1e84921b7e58c4e787a246a7381d308d6542c2a7f91218be1d02207a9902c4bd218d68803d1665b953c98834e0f0d5142393a9cd1f8ac90689d8c1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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