geoescape.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:d6:e9:4d:b7:be:4d:bf:d0:31:07:7a:d8:1a:52:15:80:fe was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=geoescape.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:d6:e9:4d:b7:be:4d:bf:d0:31:07:7a:d8:1a:52:15:80:feSerial Number (int): 421579683904756180927482107460587183505662
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 43:f9:5e:ee:07:e1:f7:63:a5:5c:6f:39:3a:0f:7e:15:f6:3e:b5:1d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 3b:a7:2e:54:ac:86:90:e4:14:68:fd:b5:16:53:37:68:2e:08:32:70
Fingerprint (sha256): b6:b0:91:f7:17:68:fb:c2:1b:fa:59:d6:a1:a2:f0:d2:ed:ce:a0:ca:89:99:84:fc:61:55:b7:41:6f:1e:7d:3e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate geoescape.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for geoescape.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
geoescape.com
Other certificates including the domain name geoescape.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for geoescape.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgISBNbpTbe+Tb/QMQd62BpSFYD+MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMTcyMDI4NTFaFw0y MDA1MTcyMDI4NTFaMBgxFjAUBgNVBAMTDWdlb2VzY2FwZS5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQC/2/D3W8HCErkIVgWFhkaN9bG539yv6j5Y 0UQ4ZR1rMuF12mJ5w3ZGC+Glg5/Ea8m+Z/t3F6qq2LAxBGKVqPAm2DLcvMVt+ETx bBtSAyRhqvjPUsjvJkNHfexMmUmtDSsfFkhnZkNoCteIQTwo9jM4k13gqymS0U9Z mMIoM4dPGHKZRUKF6s/mWzhB+b48es3l3ZaoIm4HeDUSxO/F/6XuMe98Sy08SjjJ BdYEbXimIZv3BYBTkHJlgmzsxhmiCC5WIRmRdVIZV2Iib6qAstZ1pOXuKaLoLiEn z5fMnhEoKNTHDN5HPxCnlr8DbMtKL0FPCRqWevf8cro7VMl1NBLs+mnbtbZdbRR3 HIb3yejVdCI7Xnnj9KVzpmwpgwqUIyHdTBhZb2B+cPgZCwZqes8UjYL8fhfJeVIc b6/upfCjtJqssf9ngJ7OoKEGGc6sv7VaSfAFVydlB/gQCuo3iHgSjKh1Bo/e/txO x6dzMb4j7CNlG9Bt1/I98Cwr1CD7cW5J5p5T5iICVWcMhluNR4XTW7QH0FsBIJjD Lryym1o/GNF+ugaHWaA3rt4+vbia+AulJLswdHG+Xolb+3+pDTHaEvHNDsrTGbIm I3BJUIP4s6pCCbXKSuyVpXioof9p90HW8DgvH5bzagEWPyqAIjj/hKdoeml1X9Jm IL1GfxniYwIDAQABo4ICYjCCAl4wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRD+V7u B+H3Y6Vcbzk6D34V9j61HTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDWdlb2VzY2FwZS5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHy APAAdwCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAXBVDccoAAAE AwBIMEYCIQC8buWaKlxll0im4eSxYhrq4Wfaae4+EUXJ5qNMjFgtYAIhAJ4nRn36 rjbc/nzNH6erDG+sdcGyALly2/OIkgbu36T1AHUA5xLysDd+GmL7jskMYYTx6ns3 y1YdESZb8+DzS/JBVG4AAAFwVQ3HMgAABAMARjBEAiA5fn2tST2rsoz6Sr/6ZF+n jA2QMF5fpCU7QXDOJNbc7gIgLImcGcxHxye7ml/Xh2hlr6MKhLA7wQsPWfc5iHoR J3AwDQYJKoZIhvcNAQELBQADggEBAHUcf8/Ja2PXVkN4sd3wN3rT/d1hFEKtjHpX nFH6u0HZOm+h4I3AI+ftmsnqZgkF8olepxQhSwqxvgplPV1Izla7Ijit2Zwa5hqr RbD1tReo3e+gVxtYYz5A0ACx6qgavFz9KT90fEdCfTWNPkzs0I0pBDqg2QOWCuX+ DARoWLYzG5Fhrh66xZKNbBKPORXSvK81a7nzju2Sdm6MGlZdKwyVv1/7Ph+JqajS hQvJNnwz4ERA1G3TcFcvxKObI6qaWQNyCWILTyexhEEDtVjiS9tIBXVAhnqetdJ4 OI6ZrgHfA7XKfM07/kwx8bgvuNMzBiKe1jbbUK17EA64uBFDP7s= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAv9vw91vBwhK5CFYFhYZG jfWxud/cr+o+WNFEOGUdazLhddpiecN2RgvhpYOfxGvJvmf7dxeqqtiwMQRilajw Jtgy3LzFbfhE8WwbUgMkYar4z1LI7yZDR33sTJlJrQ0rHxZIZ2ZDaArXiEE8KPYz OJNd4KspktFPWZjCKDOHTxhymUVCherP5ls4Qfm+PHrN5d2WqCJuB3g1EsTvxf+l 7jHvfEstPEo4yQXWBG14piGb9wWAU5ByZYJs7MYZogguViEZkXVSGVdiIm+qgLLW daTl7imi6C4hJ8+XzJ4RKCjUxwzeRz8Qp5a/A2zLSi9BTwkalnr3/HK6O1TJdTQS 7Ppp27W2XW0UdxyG98no1XQiO1554/Slc6ZsKYMKlCMh3UwYWW9gfnD4GQsGanrP FI2C/H4XyXlSHG+v7qXwo7SarLH/Z4CezqChBhnOrL+1WknwBVcnZQf4EArqN4h4 EoyodQaP3v7cTsenczG+I+wjZRvQbdfyPfAsK9Qg+3FuSeaeU+YiAlVnDIZbjUeF 01u0B9BbASCYwy68sptaPxjRfroGh1mgN67ePr24mvgLpSS7MHRxvl6JW/t/qQ0x 2hLxzQ7K0xmyJiNwSVCD+LOqQgm1ykrslaV4qKH/afdB1vA4Lx+W82oBFj8qgCI4 /4SnaHppdV/SZiC9Rn8Z4mMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 421579683904756180927482107460587183505662 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-17 20:28:51 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-17 20:28:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'geoescape.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 782717025255039913249670541648949964650025776080833218710478608864399185035768174893075157003752014123889707248060237270329803141448395228128593638085954561851176941539196435070712376104127618910865696117442688748521850115562260828443760821989313060732940243678004831661578013830408540679306949470976522066151757706343489956253492999692923285581172373702132211851133067010141514905793000924692956798528260108797555452729791555279424403092132991734929621566407977013812307024655237574341006860953557828243575032896231271614515285136580630298913107922116914353667966645409450223859692228436612786451041255602621993660211820757630800572276519346651102546432860286567482027883819329472096446714582406512565918790621410992505896511512774573913056982656338742614440777307948830141224121432254740003509330237218457151284148330585661286898372488596854237242644926256604537138738031330668200781656685338540286753632219074475954861403159407193963184498270290012038234341876121691953445392683186515807682071708974062292911902902041048268896607774306692636496916243215405335133013967982394267567067508914852757218794016017500826786082506105570492190486681769119417483551925209629276198127964391848865317148365631924324923665993403246562917343843 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 43f95eee07e1f763a55c6f393a0f7e15f63eb51d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'geoescape.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170550dc7280000040300483046022100bc6ee59a2a5c659748a6e1e4b1621aeae167da69ee3e1145c9e6a34c8c582d600221009e27467dfaae36dcfe7ccd1fa7ab0c6fac75c1b200b972dbf3889206eedfa4f5007500e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e00000170550dc73200000403004630440220397e7dad493dabb28cfa4abffa645fa78c0d90305e5fa4253b4170ce24d6dcee02202c899c19cc47c727bb9a5fd7876865afa30a84b03bc10b0f59f739887a112770 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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