pro.geovina.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:fd:59:88:67:94:37:61:bf:e6:bd:e1:65:e4:11:ad:b7:e8 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=pro.geovina.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:fd:59:88:67:94:37:61:bf:e6:bd:e1:65:e4:11:ad:b7:e8
Serial Number (int): 347547306171106886521157677086150849574888
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: fd:a6:0f:c5:5e:0e:f5:79:16:25:e2:68:60:50:b5:e2:b5:23:80:a3
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 4e:0f:2e:5a:70:a4:cd:1c:f1:4a:66:80:4b:ba:66:19:2b:9a:2d:1d
Fingerprint (sha256): ba:d0:01:dd:c5:01:4d:87:56:61:5d:c6:38:40:92:72:e2:d6:4f:94:15:87:82:fb:24:06:d5:b7:a0:36:0b:6f

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate pro.geovina.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for pro.geovina.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

pro.geovina.com

Other certificates including the domain name geovina.com

(limited to 100 certificates)

Certificate

The complete raw certificate details for pro.geovina.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 347547306171106886521157677086150849574888
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-30 09:30:41 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-28 09:30:41 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pro.geovina.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 756918070992582977481539708485151138072162118330912177905081279819680115146706182430029985291042809333496011249624481133903320240906100499248257976655807256286838345483857457431889743630772060317642983381664725860132083320577079941599058728516786316566056200837942661524199011716232215406388577118700498622192004721920986336377250927264397762989608930798128706921972385556415345119225922821070195294729024652955773333997085652314809055822034919387059778079749866413514488436302676530026968951984652003064602503729030285610879597827038603026742351951581720523855637668394693734350989387382696916128531422304911233566454199545446149385746584322279197259211637363947945372710490281197317617510286701802432338253056836279591433719464623371997414766864494048033097313062932757518770911873253624186475877325397778985364865889873850903382900702579247414257359012866402660748866814636076757111906360916372161523331301302240870167544509168176973537058812589795734983431180637003487417318558922924770198330240518714186896335051247227536252221256321517791261774671991554577298389930844355375430451736986597850277074709663924965196671100059458011730196127511338427713804432964911378665125410503166503307390069717809512471203446692172760740412981
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							fda60fc55e0ef5791625e2686050b5e2b52380a3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pro.geovina.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016b084ab1f700000403004830460221009b2544986a37cf25e2c0f9349d95210ecdd2ce82d3147f2082102ee033d88fe602210091c88c6881f01ce878e2cce2a9033c0ecc3cff707c69bb0ee1f511d3b8560259007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016b084ab4080000040300473045022100a78a6b095bcc6508933060d20161f87baeeacc02e4a99e20f806fe2d433ad6cc02205cb4dd69f75ebbbac66a63d6ad401e4a6dfa3f81c152c81d515870c16deddaf4
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00266c09525af18fb4ad6d85101a2c497732f93a9759db0afab7cd871364c4f74b6effc8af97b8c6c2e727dca80ce398c0e86e9e20bb6eb3cca6d70b562064b109eeb04fbd9133d56b6949608dc9f048734d6b44ab5d870c3284e0a4a060a6b0e735b60cf717a38e71a572ae9f355c5f82610b2cd7c7e14d1710881768d369d4d18162f02100747ba6ab96dbe25a6dce52b5c9105d4fcabd3782fde130047e807cf52d780f08b9da0e6f88cd51fbdb21e1d27fbbac3b9e661a2494b8fd0be624652b7d0b1d70348e7b0b0745aba9336bc7514f0ea5d8ae127607f27c1f645857b391e92e1752db04188c0762d95b08e90daf10c222d66c9d7eca49531c10a8ffbf