www.josefa-foundation.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:54:55:d3:ad:bd:c5:d6:27:17:5c:a1:95:dc:d2:ab:3c:34 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.josefa-foundation.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:54:55:d3:ad:bd:c5:d6:27:17:5c:a1:95:dc:d2:ab:3c:34Serial Number (int): 290034660094810651157219997450462141561908
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3d:de:ca:ef:0b:58:97:fd:91:3a:c8:d4:c0:1a:8a:94:22:bf:d6:6d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 26:8e:d3:2a:17:9f:79:6b:99:a6:2a:8a:43:c1:19:22:f6:b3:5b:25
Fingerprint (sha256): b7:24:f4:34:ea:61:54:c7:1b:54:04:e6:11:df:cb:40:fb:ac:99:f3:9e:dc:e7:9c:b8:b7:c9:d3:27:58:78:e7
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate www.josefa-foundation.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.josefa-foundation.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
Other certificates including the domain name josefa-foundation.org
(limited to 100 certificates)
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
josefa-foundation.org
www.josefa-foundation.org
josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
josefa-foundation.org
www.josefa-foundation.org
josefa-foundation.org
josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
josefa-foundation.org
www.josefa-foundation.org
josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
josefa-foundation.org
www.josefa-foundation.org
josefa-foundation.org
josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
Certificate
The complete raw certificate details for www.josefa-foundation.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGLTCCBRWgAwIBAgISA1RV0629xdYnF1yhldzSqzw0MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNjEyMDYxNTM0MDBaFw0x NzAzMDYxNTM0MDBaMCQxIjAgBgNVBAMTGXd3dy5qb3NlZmEtZm91bmRhdGlvbi5v cmcwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQD0JmkH38PkuTGapfYY wZmFz3uymTv3UmoyB647ZovhJ2WJYU6yJ7fARQN0BpEZkJkAwrasonK+F0y6ksEa Qm1SznsGOXqrCTvO20uRY4CGofynvs2GeAxMNwt/nXBLJy2cEyLSyRAq19OvLI86 fzfWk+8/yjKJ85ZRoZiK9Erc7v5pNXyhWDLEBiHucxCxdgXH/SHJ/RjmLFItuRCY 67I5DPaSp9KHMiKQ6Ufl9yLl/bd8wDtZJRoQN4f8oKwJ7q5gI2PPq9eaDbKwxgK0 G7xuunIW469G67gscINNDzXyk9G3bGJe1AhpwewtlVS2EVPD5rW9ct4SlySUjbAe 5clwlQPKfEzflwYJQxCfxoMo8LVLtm1MnVbdsSWTEJiWRmnr5Q7GrmyszDy6Xp8n MU5ZQMU5qs0pPbaQEFVx3Tro63Ot7JfocM3V2BPN+4ngz+wz9keobsfbFxpN0K5T TqAxVuHk8TK/6w7eRia5P3fhXMNF3JEtSYf87CnOKULc6eBsH/+80FT0KB7bWL5X ZgD71QXoCjc05c8/Igifo1rxzm202NrvzAiH2YI4yRXYPiXut/xEmvi0Epj+6IEX PFg4qi93GBIOptqEf16rpei55UNoMo8a+3BLgeAt2bRiDXxkn1GqRw2Joqjq8i3n 6STIaE3U/LZNtT88tJyPnrpSxwIDAQABo4ICMTCCAi0wDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0G A1UdDgQWBBQ93srvC1iX/ZE6yNTAGoqUIr/WbTAfBgNVHSMEGDAWgBSoSmpjBH3d uubRObemRWXv86jsoTBwBggrBgEFBQcBAQRkMGIwLwYIKwYBBQUHMAGGI2h0dHA6 Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcvMC8GCCsGAQUFBzAChiNodHRw Oi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzA7BgNVHREENDAyghVqb3Nl ZmEtZm91bmRhdGlvbi5vcmeCGXd3dy5qb3NlZmEtZm91bmRhdGlvbi5vcmcwgf4G A1UdIASB9jCB8zAIBgZngQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYGCCsGAQUF BwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUHAgIwgZ4M gZtUaGlzIENlcnRpZmljYXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9uIGJ5IFJl bHlpbmcgUGFydGllcyBhbmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGggdGhlIENl cnRpZmljYXRlIFBvbGljeSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNyeXB0Lm9y Zy9yZXBvc2l0b3J5LzANBgkqhkiG9w0BAQsFAAOCAQEAiz0N38SlPD+8WdMuR5N4 JOd6V/R72c3fii+ckG/LTHcrs5EA60R+m+C3LRVTzqEIDeaA+LlFMPtlso/RpMdP 5jbyGVofNX3rLxQcbyv3DCVX1ToOxIEkLLO8/ZYrtWWBK8PjD+KhKc5CZR72vDzG YRh4jVgpoE3kN374RySRb7vT/WsAcc53tlPwdGetNaCgcJePxNXxgNLSDpw94+6R xpqko7lbIM1K2mBj8XgOlCWdYnbRCbJUyN1LGRJRem8y4xTD6klnpQdUaNUNJos0 iMdiBEXRlwC2wbiIeugPxGD6p6s5mZMRqiRzPNCi6qXySOQWUfya6OC/wlme7UnJ sQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA9CZpB9/D5LkxmqX2GMGZ hc97spk791JqMgeuO2aL4SdliWFOsie3wEUDdAaRGZCZAMK2rKJyvhdMupLBGkJt Us57Bjl6qwk7zttLkWOAhqH8p77NhngMTDcLf51wSyctnBMi0skQKtfTryyPOn83 1pPvP8oyifOWUaGYivRK3O7+aTV8oVgyxAYh7nMQsXYFx/0hyf0Y5ixSLbkQmOuy OQz2kqfShzIikOlH5fci5f23fMA7WSUaEDeH/KCsCe6uYCNjz6vXmg2ysMYCtBu8 brpyFuOvRuu4LHCDTQ818pPRt2xiXtQIacHsLZVUthFTw+a1vXLeEpcklI2wHuXJ cJUDynxM35cGCUMQn8aDKPC1S7ZtTJ1W3bElkxCYlkZp6+UOxq5srMw8ul6fJzFO WUDFOarNKT22kBBVcd066OtzreyX6HDN1dgTzfuJ4M/sM/ZHqG7H2xcaTdCuU06g MVbh5PEyv+sO3kYmuT934VzDRdyRLUmH/OwpzilC3OngbB//vNBU9Cge21i+V2YA +9UF6Ao3NOXPPyIIn6Na8c5ttNja78wIh9mCOMkV2D4l7rf8RJr4tBKY/uiBFzxY OKovdxgSDqbahH9eq6XoueVDaDKPGvtwS4HgLdm0Yg18ZJ9RqkcNiaKo6vIt5+kk yGhN1Py2TbU/PLScj566UscCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 290034660094810651157219997450462141561908 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-06 15:34:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-03-06 15:34:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.josefa-foundation.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 996045262972934687101532755241096827822597898598050124563681795088131807083013837609490738556542879507045525534556223846011646896574476624227476426000927129418958470397327026895548421066936456088370565754392086725617915418034011602667036760513484579296055166789914359942820475844693221096296355246683221656465675976295275376970307271812388386281885584176350003151293050214736850945702718477398379826313917442673349698291879265622383594705699419652427680768221172353876086932606054045318584192993865929743373048632008277884232645415432954178844608332189358610882073536898542770612309687366705505630902129714363688067003556411332819305530247644342069794148922014863459172980474826433039795640811775109315334215481257938127530126657784375026546231922073780187920100599227507158874386833624077764652778458943076265817444218113137857928771974072786545015392238468819801585547193041287920291152460900392139491966968237293166066446557760158648559352159970400033699701090691375974334384455461262052294629927252950058097947403216206399879308491332744226491661416354949888442721722814717463044199424731122807438814344309994445447398549809627066219194613165682515179003476270222992561309340335727608764606076564423840556402099115436160818238151 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3ddecaef0b5897fd913ac8d4c01a8a9422bfd66d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'josefa-foundation.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.josefa-foundation.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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