www.josefa-foundation.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:54:55:d3:ad:bd:c5:d6:27:17:5c:a1:95:dc:d2:ab:3c:34 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.josefa-foundation.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:54:55:d3:ad:bd:c5:d6:27:17:5c:a1:95:dc:d2:ab:3c:34
Serial Number (int): 290034660094810651157219997450462141561908
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 3d:de:ca:ef:0b:58:97:fd:91:3a:c8:d4:c0:1a:8a:94:22:bf:d6:6d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 26:8e:d3:2a:17:9f:79:6b:99:a6:2a:8a:43:c1:19:22:f6:b3:5b:25
Fingerprint (sha256): b7:24:f4:34:ea:61:54:c7:1b:54:04:e6:11:df:cb:40:fb:ac:99:f3:9e:dc:e7:9c:b8:b7:c9:d3:27:58:78:e7

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org/

Check the revocation status for certificate www.josefa-foundation.org

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.josefa-foundation.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

josefa-foundation.org
www.josefa-foundation.org

Other certificates including the domain name josefa-foundation.org

(limited to 100 certificates)
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
josefa-foundation.org
www.josefa-foundation.org
josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
josefa-foundation.org
www.josefa-foundation.org
josefa-foundation.org
josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org
www.josefa-foundation.org

Certificate

The complete raw certificate details for www.josefa-foundation.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 290034660094810651157219997450462141561908
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-06 15:34:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-03-06 15:34:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.josefa-foundation.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 996045262972934687101532755241096827822597898598050124563681795088131807083013837609490738556542879507045525534556223846011646896574476624227476426000927129418958470397327026895548421066936456088370565754392086725617915418034011602667036760513484579296055166789914359942820475844693221096296355246683221656465675976295275376970307271812388386281885584176350003151293050214736850945702718477398379826313917442673349698291879265622383594705699419652427680768221172353876086932606054045318584192993865929743373048632008277884232645415432954178844608332189358610882073536898542770612309687366705505630902129714363688067003556411332819305530247644342069794148922014863459172980474826433039795640811775109315334215481257938127530126657784375026546231922073780187920100599227507158874386833624077764652778458943076265817444218113137857928771974072786545015392238468819801585547193041287920291152460900392139491966968237293166066446557760158648559352159970400033699701090691375974334384455461262052294629927252950058097947403216206399879308491332744226491661416354949888442721722814717463044199424731122807438814344309994445447398549809627066219194613165682515179003476270222992561309340335727608764606076564423840556402099115436160818238151
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3ddecaef0b5897fd913ac8d4c01a8a9422bfd66d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'josefa-foundation.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.josefa-foundation.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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