www.compassionista.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:1a:3a:13:ba:e2:49:ae:7f:53:f7:57:5b:83:69:de:e5:e2 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.compassionista.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:1a:3a:13:ba:e2:49:ae:7f:53:f7:57:5b:83:69:de:e5:e2Serial Number (int): 270261397003077531639806257372806606939618
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 7b:de:b1:0f:55:c5:7d:09:f4:e5:34:ec:da:50:ba:93:97:00:aa:07
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e8:ba:06:6a:74:22:81:89:d6:02:71:53:cc:9b:ab:2d:2e:1a:89:86
Fingerprint (sha256): b4:c1:71:28:9c:0c:f7:9c:57:54:05:71:2b:8a:85:59:52:20:39:14:51:81:51:fb:10:25:89:1d:c8:dc:b4:f1
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.compassionista.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.compassionista.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.compassionista.com
Other certificates including the domain name compassionista.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.compassionista.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGZTCCBU2gAwIBAgISAxo6E7riSa5/U/dXW4Np3uXiMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDgwODM1MTdaFw0y MDA1MDgwODM1MTdaMCExHzAdBgNVBAMTFnd3dy5jb21wYXNzaW9uaXN0YS5jb20w ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDukQ567vdp7AWVa57My6Le aDzVxz0vS72MA+LhB0+AM+yGKXtoN81Ljjo46Cd+NEH9Lzxjs85CCDLadwePWJ30 STNH0AqldPMdtgK7taypO0Uz0yU06CvoojDIGdL1ka4N8pfgXkxUMjWuI9xjKYgv u2AmhyamU/83fzobhZPh3JYUYGOKZUx435cCb43dZ88nfpJKSVHbmj295rsvRcKh QjD6PXIvbICbqjar2Ue8hAS/8WVr0/kznx47pYF4nETmfOWVRZK/00BkmKVNS58Y WV2d+4aw8myDWqi3jYyB7fUfZs1KnqH+6LhITU9HJdJc/sswlYjejqv1UzI+AGSw 1U7lDG/5Nu4OEPNu+N7O67xaunWI8nIskTpxVmALlbbGixDh0pFpFEWxqDHLIWBE 1/B1Yf4Wg1IFUI2pNNFvpvueLBV/+us9sOusbGM13Y8Ymva5++snnBJirN/kxqzX jRjV9bZWpcn56NwqjQXZu8aXU5rCCwgN1QLN2vJ7YsQuh/7krfOLeQOfsV/q19T5 KF5GuzEYE087v1+D0B9kMA96NXdNwh67U7hGpgIKS/o4rJydYgvsQLB1gH0f7G2+ u92ALglxxYE4tth4p3DQcqfGl7vECSgSDUW2/vR91oU5642DWAbynfLQodLz6nSp QqMIEmPzwMBkJMlSk229xQIDAQABo4ICbDCCAmgwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBR73rEPVcV9CfTlNOzaULqTlwCqBzAfBgNVHSMEGDAWgBSoSmpjBH3duubR ObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9v Y3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9j ZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMCEGA1UdEQQaMBiCFnd3dy5jb21w YXNzaW9uaXN0YS5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMB AQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEF BgorBgEEAdZ5AgQCBIH2BIHzAPEAdgCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOey SVMt74uQXgAAAXAkJ0LyAAAEAwBHMEUCIQCDCnLmnfGOwszwURDc5YPGum6ZUfPB T640gr/L/y6D0QIgQkm+Hi0qko0JHrb5NQKhOcT6USysNrsJkEH8r29UN7wAdwDn EvKwN34aYvuOyQxhhPHqezfLVh0RJlvz4PNL8kFUbgAAAXAkJ0L2AAAEAwBIMEYC IQCI7P+LBZoHhqYMj1KBqfUcWRg2agIn8l43F4iHcrQExQIhAPR5AAtD7+6I/K4O p3iEs9Pe4VFvo/2C4/Ga26GaGMq2MA0GCSqGSIb3DQEBCwUAA4IBAQAdkTABWXFC 9JQITqawXY3hnlburw6WFNJTZ24fx8BL54FC72JhfPbpnsYsxznUivNGgZgZURF6 KfQnMuNzgZvEHGtRUh9W5px1OL3zh63hnV2fpbrJ7lk6tIcxEh4jcg5ihbr2sgFv he93bFLX4CODq+CgpTbUOpVlhm0aM0gOAQlK4vw1sVQs3ivUQ0/YZq9IX+Gw3Bm4 Vy0xXMRzJ1JOhvCCCrevGWKUzWQDswheJo6iYUbLJBLqNL0b4SCMputtTnbOjVvZ a9MON01oh7ioAtsXkF43Cej+lwpf2jkRXAhIKQAOVkkjx/qtWyEv3uV+VWd0Sr/j BTX2qjhpS+Mr -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA7pEOeu73aewFlWuezMui 3mg81cc9L0u9jAPi4QdPgDPshil7aDfNS446OOgnfjRB/S88Y7POQggy2ncHj1id 9EkzR9AKpXTzHbYCu7WsqTtFM9MlNOgr6KIwyBnS9ZGuDfKX4F5MVDI1riPcYymI L7tgJocmplP/N386G4WT4dyWFGBjimVMeN+XAm+N3WfPJ36SSklR25o9vea7L0XC oUIw+j1yL2yAm6o2q9lHvIQEv/Fla9P5M58eO6WBeJxE5nzllUWSv9NAZJilTUuf GFldnfuGsPJsg1qot42Mge31H2bNSp6h/ui4SE1PRyXSXP7LMJWI3o6r9VMyPgBk sNVO5Qxv+TbuDhDzbvjezuu8Wrp1iPJyLJE6cVZgC5W2xosQ4dKRaRRFsagxyyFg RNfwdWH+FoNSBVCNqTTRb6b7niwVf/rrPbDrrGxjNd2PGJr2ufvrJ5wSYqzf5Mas 140Y1fW2VqXJ+ejcKo0F2bvGl1OawgsIDdUCzdrye2LELof+5K3zi3kDn7Ff6tfU +SheRrsxGBNPO79fg9AfZDAPejV3TcIeu1O4RqYCCkv6OKycnWIL7ECwdYB9H+xt vrvdgC4JccWBOLbYeKdw0HKnxpe7xAkoEg1Ftv70fdaFOeuNg1gG8p3y0KHS8+p0 qUKjCBJj88DAZCTJUpNtvcUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 270261397003077531639806257372806606939618 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-08 08:35:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-08 08:35:17 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.compassionista.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 973266925485894103527010464520223348826988013456936287982895402654270667325356113273026696074778698593475122305182038812462363340387333414519559202858501752444322718632343184800509467816595838276739891854624096048762176664580967860963344429159194368811218624897964824299512172673212588314286455942247166432503040681978298791201171831835747777767961534790224959998745050768315833241676148344564430079346480405231970797383154931975087291854040397875140959926112904893730584481587954396677030199003659564125859170888114183296804145726398229057605167378669318719671079850114885848303840676756201271046948605512864884485865983769682168030839106693692501649343657863484309968914687503181744695744828934681881912008962560485488921834730215186028109167480906608255677998163192105010864357153917041024863239911154706712531106934634138537258524586477135091345371310003943986404506750633984517155007946232702632659307566370673493622740010008501960991368529857239324845320690355915482087817437954116890390059971328169843056226536839445673810926081378062040392931514668272626780501378079616333673909112046401303772964489032230401198445061200875875006248187577180025644566162016639791750974600005800533471493328796333872635391348683237840399482309 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7bdeb10f55c57d09f4e534ecda50ba939700aa07 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.compassionista.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170242742f20000040300473045022100830a72e69df18ec2ccf05110dce583c6ba6e9951f3c14fae3482bfcbff2e83d102204249be1e2d2a928d091eb6f93502a139c4fa512cac36bb099041fcaf6f5437bc007700e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e00000170242742f6000004030048304602210088ecff8b059a0786a60c8f5281a9f51c5918366a0227f25e3717888772b404c5022100f479000b43efee88fcae0ea77884b3d3dee1516fa3fd82e3f19adba19a18cab6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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