www.jena.boston
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:fd:09:8b:d5:58:ad:8a:73:34:09:8b:53:2a:c0:0e:42:af was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.jena.boston
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:fd:09:8b:d5:58:ad:8a:73:34:09:8b:53:2a:c0:0e:42:afSerial Number (int): 347440985734682603941557299671732793000623
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 43:96:1f:5d:5f:ee:9b:ca:5b:87:e7:92:d6:ac:8c:36:9e:71:d0:5a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 1c:ac:8e:dd:b5:74:46:5c:8f:e5:01:af:51:4d:54:3e:af:e3:8f:a1
Fingerprint (sha256): b3:9a:21:36:7d:44:9f:ee:53:53:bc:75:71:34:b7:0d:61:1d:00:05:6a:76:01:8c:2d:9a:ac:da:dd:d8:f6:59
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.jena.boston
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.jena.boston
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.jena.boston
Other certificates including the domain name jena.boston
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.jena.boston in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVzCCBT+gAwIBAgISA/0Ji9VYrYpzNAmLUyrADkKvMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MTcyMDQ5NTBaFw0x OTExMTUyMDQ5NTBaMBoxGDAWBgNVBAMTD3d3dy5qZW5hLmJvc3RvbjCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBANBjYMlNgQ5SBsslHp66Kto2IO5IULvi DOEoY6RK9Da1H826VT8kZhXSWcljVHfmvL0T0R2u3KgfqVS4lY13fjJwcEhd2IQr jKNjJU5MRjl4FGQ/j0bcWSNlVcUiRspRGH5QwYYLd1oA4yzy6qOUi3Rrwd7f114Y 9QiQsWTQqoCllMpuQv8tvj6jC4uydFqO1BZhaQ+8b4qyB8BCi3LZahFVAdBT6l5w x21dMtxSatjpaD3oVw/GQwHRXEJZ2IeSa52+4wcQQLiuGbrWSqceL/gWTdGQJ8M5 WXF/CLkQe8j6HU4w1NsgC1V5yVeyoObklYjHs5Bkp7F1Dl4N5Ra40lJ8X41SExQi U4xvycOpE4Rcbl9PXNgeES0BetqYjwrAsxm36+xEhQclekGSo6R6WOEllWBMvZr/ DCa4qJkogLRt2jLF7EIUEPJRylO48N/vvQ7q74ihoxg4eWTNDMWPZAqmgqbqkvKB zPlhzGhgZDjam4Yfo2nA5OnuQh68hV07YadSOsEPxGIRk+MRdDo3MCT1iIvt4jYa 5Hc2pHaUJWLEVGOdWbk06mqj2QNKl7GItGI4ENguJBT2LjnTmqNJyNL6iA+6duUM 6w97xqdDnJviucPZlHuEA+kdeY/49ZPn8gdsq289KxY64OZPuM7wy1Zsn1K8sUwM Zzbuzo8pWQJpAgMBAAGjggJlMIICYTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFEOW H11f7pvKW4fnktasjDaecdBaMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPd3d3LmplbmEuYm9zdG9u MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB 9gSB8wDxAHYAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFsoY7e AAAABAMARzBFAiBT9bbASXJivIlKwRZpHrxObX9dBP5G17A5cySD0IrlSgIhAMFb YG8dq1f0bITlsVWoLp7wqDcDFZ72MS/JJ5dR1wgeAHcAKTxRllTIOWW6qlD8WAfU t2+/WHopctykwwz05UVH9HgAAAFsoY7gFQAABAMASDBGAiEAyg/lZ5rlhmzJnHw+ ApwPmwFie2jlRASPDoB22WuqKlwCIQCtMN6fZylOjBJj8nhS7ID7wrrfPnMWOEuF BKZUWKtoyzANBgkqhkiG9w0BAQsFAAOCAQEABwzMIZVD4ZteQSCgA3CvleiBJOko gjqMvJgtg2djQYws9ylbR+EebDBsPIlRXKFUstBh2yKx+ZNkXq0Da4K62WbyDhFQ f/wCT8mg8R17PzhFxzFVCICjvOpqNiMplNPfs/YV5s6Kjy4aJXaToGCbMGpvqKEP JAwHnJMF1MpH81nx7vUEUf0Wj04FuSnNo56rknW8qWKwVTiu3EOgvru+5EAWxeIt MtsPpnGJiFj9ElTXiPXZ5Rpa6TScqtPyDFkWdZ3E6UCnQXZ2z5fkufMcpA43oToD 1nwdVklJ4RNi39AqaA9tPyEPb4PmYuO0DGdgBnyN4g3YiC/4VGWM7P0/XQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0GNgyU2BDlIGyyUenroq 2jYg7khQu+IM4ShjpEr0NrUfzbpVPyRmFdJZyWNUd+a8vRPRHa7cqB+pVLiVjXd+ MnBwSF3YhCuMo2MlTkxGOXgUZD+PRtxZI2VVxSJGylEYflDBhgt3WgDjLPLqo5SL dGvB3t/XXhj1CJCxZNCqgKWUym5C/y2+PqMLi7J0Wo7UFmFpD7xvirIHwEKLctlq EVUB0FPqXnDHbV0y3FJq2OloPehXD8ZDAdFcQlnYh5Jrnb7jBxBAuK4ZutZKpx4v +BZN0ZAnwzlZcX8IuRB7yPodTjDU2yALVXnJV7Kg5uSViMezkGSnsXUOXg3lFrjS UnxfjVITFCJTjG/Jw6kThFxuX09c2B4RLQF62piPCsCzGbfr7ESFByV6QZKjpHpY 4SWVYEy9mv8MJriomSiAtG3aMsXsQhQQ8lHKU7jw3++9DurviKGjGDh5ZM0MxY9k CqaCpuqS8oHM+WHMaGBkONqbhh+jacDk6e5CHryFXTthp1I6wQ/EYhGT4xF0Ojcw JPWIi+3iNhrkdzakdpQlYsRUY51ZuTTqaqPZA0qXsYi0YjgQ2C4kFPYuOdOao0nI 0vqID7p25QzrD3vGp0Ocm+K5w9mUe4QD6R15j/j1k+fyB2yrbz0rFjrg5k+4zvDL VmyfUryxTAxnNu7OjylZAmkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 347440985734682603941557299671732793000623 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-17 20:49:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-15 20:49:50 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.jena.boston' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 850149665993662711308696906818205976342833904780457229626358142091592622480775081533807171705055073565239465069366792573594383181306373052367876071109134351612274739963984309791145529666641783812764674293935745875460659881895826106233800798564452802109437196278530894166505311672683168908071913028418209859727348149242160663393738459827497911622275215777623807235716685717068044003422825806401078043064320228597104376661646992493553066708153764361878594046421641215222945111402706748389733161545517900617139718126653750634075145663045467885107662002457201700639858867509865657690107745238776066580342479842217622302141310466954198158479817372576720779801725019325837435949368679468272215557744248327313602385581775335119764080757702288152638056512713076376158499153693401962148064820814634250909344431305682247958444631979571885070400100861044109593531729683766528610397629630968051630759292039736279110387339984698902897212362024447780076525862797663760049366916157421351570708145158767664010817416794425376222515847772385673757742496583571037898947152632676906821066836385239080171241458639749488013443056382710316326304646394376737753482767877868559288584442212581560187151454706329740442420121503620528557914164266173985145291369 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 43961f5d5fee9bca5b87e792d6ac8c369e71d05a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jena.boston' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016ca18ede000000040300473045022053f5b6c0497262bc894ac116691ebc4e6d7f5d04fe46d7b039732483d08ae54a022100c15b606f1dab57f46c84e5b155a82e9ef0a83703159ef6312fc9279751d7081e007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016ca18ee0150000040300483046022100ca0fe5679ae5866cc99c7c3e029c0f9b01627b68e544048f0e8076d96baa2a5c022100ad30de9f67294e8c1263f27852ec80fbc2badf3e7316384b8504a65458ab68cb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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