www.itm1.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:f6:8d:34:bd:bd:5c:0d:f1:82:b3:36:93:24:7e:ea:5c:d5 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.itm1.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:f6:8d:34:bd:bd:5c:0d:f1:82:b3:36:93:24:7e:ea:5c:d5Serial Number (int): 432346300984812192830404073259299754368213
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 0e:55:1c:89:12:5f:0a:f2:06:2c:57:2d:4b:11:40:4b:6b:61:f2:c6
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 9a:b5:91:dc:c6:9e:9a:f7:2c:c3:60:5c:f4:ef:35:0e:41:e3:c7:fc
Fingerprint (sha256): bb:97:b8:c3:e0:e9:0e:d3:c4:39:5a:18:4f:a8:b6:89:cc:0e:13:ef:42:01:d4:b0:b6:7c:aa:4e:e6:73:65:ee
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.itm1.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.itm1.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.itm1.com
Other certificates including the domain name itm1.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.itm1.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUDCCBTigAwIBAgISBPaNNL29XA3xgrM2kyR+6lzVMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMTIxNDA1NDJaFw0y MDAzMTExNDA1NDJaMBcxFTATBgNVBAMTDHd3dy5pdG0xLmNvbTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAL9dXM4EjKGf3aUyty/YAUu+MCsJSWjPwmjG rFdcs92TvLVLZ6KMx5no1YelgJTnJxw4Oqo9jm6tN2m3w2LgkitQ5Z55CohJxPlG uAn6bA8B0nYnKcTp7di/qoOoPwsz9ViVzcXOTsFFL+LFcYMRgUZpZBc6MQ47iWi7 USfUUxppPJFtkeNZolgKeqTLtVCEg8TcllO67HYPMAO/wjAobKygW3Mes4XWpB02 YClDQyO7/M+hDe2zM/qJUXPqzAb+V0L4Vax9azBTmzTdXek0TOUMMicbcw7gb7xS P8ac/gNEuAnVEb7sh6BH4LulDnBZFcP6Vcm/XTJ6AJj9jkDNWA+IGq1tIfkaCwHl onnYyhpGjjOHWQLvYxOOe00rKoAUHypLD1dRknx0JBpvHKJuaSw5tdOBUGKzxuOm yvMgVH1Wzl+IscSoDG9GB6K9zGFsT3QJqGHFp2KhqM3cg4k3ekIJ5u1ulb01jhen wyXoxSo03fzKpbV/1sF1CIW7YrlGwKZ+fZxQvzzH9vzzwmKkUBdjZsUaBBIcXrDm 9xY/lM+EE4Ac33nOL5sHJpDQcGfWJtKkc3MBQ0+I7rhO3mMv4gEOTNxu2IQOuAZr Jz14qUvSpnawy9p4juIqPUFiKyLWYE6z2LeLGezlAQ/TEkIuoPv34nbA9D6vR6kY 0XzOvUSHAgMBAAGjggJhMIICXTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFA5VHIkS XwryBixXLUsRQEtrYfLGMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMd3d3Lml0bTEuY29tMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHcAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFu+qTr2AAABAMA SDBGAiEAoOztpR/9BoKv6cLen3T9CWb4vutFCUD1lhuMWerrsbgCIQDTm+YYz9H6 m1ZL2UVrCw8cfAzIb5TIdy2+m/CVqGf2aQB1AAe3XBvlfWj/8bDGHSMVx7rmV3xX lLdq7rxhOhpp06IcAAABbvqk6/sAAAQDAEYwRAIgG6mHbzL15vAEWMYX8R1aLSfp aSUj9q+8s4mIv4BJMVICIHGIxvlzATbY+dPWxsegB+pMOgwilqYYwRSBoEsHpm+g MA0GCSqGSIb3DQEBCwUAA4IBAQAIJsBqRYkuEeK193HrS1vcVvH46nvvaMBSteD5 H6m2fx1RSt74ndnXAQFVkfZDIQh0Zm+Cw4HYg6JnDgdNpX8gZ1cdSBiU6S7KjRMA GK9HBaGnjiVlwXRDA2zefIapMyzQdiEP4AXZAtSjl4V5F+VYu2YsejFVoyP6p0su 7ZruXEcL5tlnRee/LeDcleql1wwghTWc6mIPXf+Zg/1FmZkVV0tKOEYdmxaIl1hq 9YjJ98vVMDZ6VEFhFZM2gkaq3YiDYXuafOvJy3R4cCVCV7Q9AEaoykMFVbHIBhk9 /FNLv+jDCgD1xp4OBV317R0OFiMs8T2zrA+jjuegC9l5ud8s -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAv11czgSMoZ/dpTK3L9gB S74wKwlJaM/CaMasV1yz3ZO8tUtnoozHmejVh6WAlOcnHDg6qj2Obq03abfDYuCS K1DlnnkKiEnE+Ua4CfpsDwHSdicpxOnt2L+qg6g/CzP1WJXNxc5OwUUv4sVxgxGB RmlkFzoxDjuJaLtRJ9RTGmk8kW2R41miWAp6pMu1UISDxNyWU7rsdg8wA7/CMChs rKBbcx6zhdakHTZgKUNDI7v8z6EN7bMz+olRc+rMBv5XQvhVrH1rMFObNN1d6TRM 5QwyJxtzDuBvvFI/xpz+A0S4CdURvuyHoEfgu6UOcFkVw/pVyb9dMnoAmP2OQM1Y D4garW0h+RoLAeWiedjKGkaOM4dZAu9jE457TSsqgBQfKksPV1GSfHQkGm8com5p LDm104FQYrPG46bK8yBUfVbOX4ixxKgMb0YHor3MYWxPdAmoYcWnYqGozdyDiTd6 Qgnm7W6VvTWOF6fDJejFKjTd/MqltX/WwXUIhbtiuUbApn59nFC/PMf2/PPCYqRQ F2NmxRoEEhxesOb3Fj+Uz4QTgBzfec4vmwcmkNBwZ9Ym0qRzcwFDT4juuE7eYy/i AQ5M3G7YhA64BmsnPXipS9KmdrDL2niO4io9QWIrItZgTrPYt4sZ7OUBD9MSQi6g +/fidsD0Pq9HqRjRfM69RIcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 432346300984812192830404073259299754368213 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-12 14:05:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-11 14:05:42 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.itm1.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 780699852324294592661641667580292405915540819454325878166690278119856381606821322438072188028158979595339993038565601260901290001320102576861214667354333002476237793074634845617577077188421951030825179607249339783536969285620200406599998209831440941617756895886303921232752915379181114948789437105987091062232862643157639724215247382860116201756837968752249153981089908769338316748217622075919295554861051922244645877030195283371834438150046463300419677953187727423370354241601857914630922642371783253465171341585108553585096903895199226881518054128433583176249234920206248582023150378313949728964210512159842719705622595048360436961530375213934533188012427288723258055838161474631956249934279377316458873007986486180325167440840559569430035705813785787078629353963922239506986715052806956996440393178829880666549812683078332360144627213921272466420521313618521852865455020450437832072388708179915219973303878408727865362810421767543917354893224530938589318139250843548835370934448861773573624609105320258125861697311333768828182223489995800963662742957152186807725184127561282371648786437514101626017781787468612621181493790232456200990841542875947106548551802428446194706635740063776301667306756250615575699870612778320257888371847 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0e551c89125f0af2062c572d4b11404b6b61f2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.itm1.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016efaa4ebd80000040300483046022100a0eceda51ffd0682afe9c2de9f74fd0966f8beeb450940f5961b8c59eaebb1b8022100d39be618cfd1fa9b564bd9456b0b0f1c7c0cc86f94c8772dbe9bf095a867f66900750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016efaa4ebfb000004030046304402201ba9876f32f5e6f00458c617f11d5a2d27e9692523f6afbcb38988bf8049315202207188c6f9730136d8f9d3d6c6c7a007ea4c3a0c2296a618c11481a04b07a66fa0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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