rootree.ca
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:16:68:5c:15:ca:b1:b7:da:ff:f3:ac:03:70:95:22:0b:89 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=rootree.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:16:68:5c:15:ca:b1:b7:da:ff:f3:ac:03:70:95:22:0b:89Serial Number (int): 268961787712403694209916974679327619812233
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 94:db:40:54:c4:f8:9d:e0:7d:67:3f:64:99:6f:f6:cb:c4:3a:19:fa
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 28:0a:19:a9:45:fe:3b:35:3f:64:42:93:2b:2f:24:bc:28:28:f8:c5
Fingerprint (sha256): bd:c7:f6:6d:16:f4:fe:b3:b9:fb:26:72:15:d9:bc:b1:be:12:35:11:d2:3a:01:e4:5e:61:99:96:dc:0f:35:c1
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate rootree.ca
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rootree.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rootree.ca
Other certificates including the domain name rootree.ca
(limited to 100 certificates)
wayofwahe.gg.rootree.ca
rootree.ca
aventurascafe.com
www.rootree.ca
www.wayofwahe.com
rootree.ca
timelyharvest.com
rootree.ca
rootree.ca
www.rootree.ca
tuesday.rootree.ca
rootree.ca
www.rootree.ca
www.rootree.ca
rootree.ca
rootree.ca
www.rejuvenatingspring.gg.rootree.ca
rootree.ca
pallasinvestments.com
rootree.ca
www.wayofwahe.ca
www.rootree.ca
rootree.ca
www.wayofwahe.com
rootree.ca
terasa.ca
www.rootree.ca
wayofwahe.ca
www.rootree.ca
www.rootree.ca
www.rootree.ca
www.rootree.ca
rootree.ca
www.rootree.ca
www.rootree.ca
rootree.ca
www.rootree.ca
rootree.ca
rootree.ca
rootree.ca
rootree.ca
torqwise.com
www.rootree.ca
rootree.ca
aventurascafe.com
www.rootree.ca
www.wayofwahe.com
rootree.ca
timelyharvest.com
rootree.ca
rootree.ca
www.rootree.ca
tuesday.rootree.ca
rootree.ca
www.rootree.ca
www.rootree.ca
rootree.ca
rootree.ca
www.rejuvenatingspring.gg.rootree.ca
rootree.ca
pallasinvestments.com
rootree.ca
www.wayofwahe.ca
www.rootree.ca
rootree.ca
www.wayofwahe.com
rootree.ca
terasa.ca
www.rootree.ca
wayofwahe.ca
www.rootree.ca
www.rootree.ca
www.rootree.ca
www.rootree.ca
rootree.ca
www.rootree.ca
www.rootree.ca
rootree.ca
www.rootree.ca
rootree.ca
rootree.ca
rootree.ca
rootree.ca
torqwise.com
www.rootree.ca
Certificate
The complete raw certificate details for rootree.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgISAxZoXBXKsbfa//OsA3CVIguJMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMDExMDU1MjlaFw0y MDAxMzAxMDU1MjlaMBUxEzARBgNVBAMTCnJvb3RyZWUuY2EwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQCpVHU9ftf+09lK8+jzxH7KsJIJ9ssKmqlquFYH UgSiNtz+8kv62YEyC41Rngu/V9S9oX4lXARi88pSMWloDSXMINJkKw7mkApwU1p/ HBTMQPWIoVwe231ncolObsOQ2E3rdPeUnqLqNTtKsvg5DK44OjT4giecfEASnC+T 478AZePJTewPENGsHhAC4D5lQ7upBAenVx0H3sfR3nKbyj1YbO2160SC7yXPnw/t iNN8rE6AaarCWq52k8VkQvxdD+Xv5hlItYPMi3536ipEw43y5ei3StS24QiNdlo1 8nbGCw04c/D2Q23ZhQe6YDP9nfioXk5/C3MwNfY+8NzJA1MhAgMBAAGjggJeMIIC WjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJTbQFTE+J3gfWc/ZJlv9svEOhn6MB8G A1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAu BggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAv BggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8w FQYDVR0RBA4wDIIKcm9vdHJlZS5jYTBMBgNVHSAERTBDMAgGBmeBDAECATA3Bgsr BgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0 Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AF6nc/nfVsDntTZIfdBJ4DJ6 kZoMhKESEoQYdZaBcUVYAAABbibSCpgAAAQDAEYwRAIgOTjfSneaGR53DTzDivX7 gax3kiqAIAgs+IEFoS+4UT4CICOQJ05PX/Cqd/mpBdrztX/G6JFTAckQM4vqHn/i cez8AHYAB7dcG+V9aP/xsMYdIxXHuuZXfFeUt2ruvGE6GmnTohwAAAFuJtIK1AAA BAMARzBFAiBfkikFg5jafeA5zv60Rws/StN16zDsJm8au2KFJQqD2AIhAMAEbR0X QVkM2Mq3diXnq4ooMXxhGCye3qgweK6/RoY2MA0GCSqGSIb3DQEBCwUAA4IBAQBg MVR5YGDBuQcAFvSLZUjitRBVSrlcTLXIMM+gFskaYFRxTquEwpNDFmejApQ6EF0I aDjSS6AhHA6aLVN6k0nicMHzpPBbcdoRPbBvmfv6r9KFnwmecT3ChymlymQmWQOt mbU42ocy/zYMj/ZXYgtTdBHhV8HPE6yglgA2cEd5wPRjrqrXFc3fEu/RJsaGAllV qV8pR2hXiaGLg48Tg53rKWQfOUuxUxozz8PX3QI7I5KI5EzPMauXiAtId4iIGYEj b0dg+Q00fT5IJPewTtrqv2TT3LLNH3bkjQ0g4wxpQJx3tp0lMbJhrllcMOGF6o3I 0ARJNYSpdgsNNWRZ17ez -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqVR1PX7X/tPZSvPo88R+ yrCSCfbLCpqparhWB1IEojbc/vJL+tmBMguNUZ4Lv1fUvaF+JVwEYvPKUjFpaA0l zCDSZCsO5pAKcFNafxwUzED1iKFcHtt9Z3KJTm7DkNhN63T3lJ6i6jU7SrL4OQyu ODo0+IInnHxAEpwvk+O/AGXjyU3sDxDRrB4QAuA+ZUO7qQQHp1cdB97H0d5ym8o9 WGzttetEgu8lz58P7YjTfKxOgGmqwlqudpPFZEL8XQ/l7+YZSLWDzIt+d+oqRMON 8uXot0rUtuEIjXZaNfJ2xgsNOHPw9kNt2YUHumAz/Z34qF5OfwtzMDX2PvDcyQNT IQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 268961787712403694209916974679327619812233 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-01 10:55:29 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-30 10:55:29 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rootree.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21375921316305902316426635791764008878838454008746832797969552448613250274619067110965349611385001206559341971396712492370612501985773800120714137395418030650855246914794997562829303766770141125939732385253063645434579542822599136830743787820782688852704902235036431895624848514415854211347140005090303565971148852842202080383058734750786968053288888497213505759289867153417720547443224650366428553450027795491546890293132725784331353834031175313044242745279474151202930771316932181566133257367254260353722232787674618814476628183683134422043271785426774300452915382688583539884889299989867047371442183178425081221921 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 94db4054c4f89de07d673f64996ff6cbc43a19fa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rootree.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016e26d20a98000004030046304402203938df4a779a191e770d3cc38af5fb81ac77922a8020082cf88105a12fb8513e02202390274e4f5ff0aa77f9a905daf3b57fc6e8915301c910338bea1e7fe271ecfc00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016e26d20ad4000004030047304502205f9229058398da7de039cefeb4470b3f4ad375eb30ec266f1abb6285250a83d8022100c0046d1d1741590cd8cab77625e7ab8a28317c61182c9edea83078aebf468636 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00603154796060c1b9070016f48b6548e2b510554ab95c4cb5c830cfa016c91a6054714eab84c293431667a302943a105d086838d24ba0211c0e9a2d537a9349e270c1f3a4f05b71da113db06f99fbfaafd2859f099e713dc28729a5ca64265903ad99b538da8732ff360c8ff657620b537411e157c1cf13aca0960036704779c0f463aeaad715cddf12efd126c686025955a95f2947685789a18b838f13839deb29641f394bb1531a33cfc3d7dd023b239288e44ccf31ab97880b487788881981236f4760f90d347d3e4824f7b04edaeabf64d3dcb2cd1f76e48d0d20e30c69409c77b69d2531b261ae595c30e185ea8dc8d004493584a9760b0d356459d7b7b3