negarin.shop
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:7a:8f:2d:1e:00:69:fd:ea:91:af:0c:97:63:84:85:f8:c6 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=negarin.shop
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:7a:8f:2d:1e:00:69:fd:ea:91:af:0c:97:63:84:85:f8:c6Serial Number (int): 303041620424896200521006793853338357463238
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 62:c8:2c:1e:80:3e:b9:36:e5:5d:f7:45:af:8f:be:27:98:27:7f:17
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 0a:4d:d7:03:8e:0b:11:a7:0a:5d:60:e9:e0:fa:8c:3a:17:96:84:76
Fingerprint (sha256): be:a2:66:d7:db:b9:77:8b:bd:90:b7:9a:e9:b5:7d:83:db:00:13:6a:fb:8a:45:65:e5:f3:8f:58:e6:a3:43:a6
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate negarin.shop
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for negarin.shop
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
negarin.shop
www.negarin.shop
www.negarin.shop
Other certificates including the domain name negarin.shop
(limited to 100 certificates)
Certificate
The complete raw certificate details for negarin.shop in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYjCCBUqgAwIBAgISA3qPLR4Aaf3qka8Ml2OEhfjGMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMjYxNDMwNDNaFw0y MDAyMjQxNDMwNDNaMBcxFTATBgNVBAMTDG5lZ2FyaW4uc2hvcDCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBANGAS51blRychq6LEJC73GAqruXs8Br7bEWD 321GWAa9QsfLyTC8tcFzhZdSXBNcQuBhCaYM6Z2Yn07ru/CPSwOke/rT4jxvOiHL DOj+oewHaqxHA5THunBMdp/PrnoRQiI53xesxbr/zBqkKB/HhB/Myo7Pjrb7ADnY 15yNL50Tfy2LkWjZ1QLQRcoNje+ooFy5FfxlSxUkzYfT1BHkM/VmYBgodNCBow06 kg8pNfKzZsOptjkb8ImAWqyqArYNOlp6tnYNig9IltmyjxktwHXo29iOalx3zqlZ /TCJWEY4po7wZpsYhbS238cnV9JRwl+bRnwBF1n5owuLOKhGk26KQGkORqVQdv3G ZCp7YjEqXYZtaGNp7JUQbSWQGht1Hlf+VvQDD3MJeJRoKiz7axdQJkv1Ij0hH49h W5gKeEfvMUIiOQw3QqrsZzUEdPtPd41h7yA6OlWZmR/++y57PxhxM3l+UEg8QQU/ 3ZvfeyMrAQOIfhVjC3W+FTgpPL9krQwBDB3fOef7ZzRYO4L2mgZvIHJyDDAidIH0 ouPuYbTWDOsbwv4Szlt5bWos6PlZ9QdqNcsIPifEs+pJUcPan/bG1ap8viXwpWJG d1tzk3poqDhAT173husfqcSn+On6pVN1EBQPcLUvK1Cajd5wKANc7TyYA0hCrecD 5mOnrvnHAgMBAAGjggJzMIICbzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFGLILB6A Prk25V33Ra+PvieYJ38XMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wKQYDVR0RBCIwIIIMbmVnYXJpbi5zaG9wghB3d3cu bmVnYXJpbi5zaG9wMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEB MCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYK KwYBBAHWeQIEAgSB9QSB8gDwAHUAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklT Le+LkF4AAAFuqFYTEAAABAMARjBEAiA03R78vonoSeOAYeVO8w17yta0bQzdn9iA mBIjGiTVPQIgLrhJ40sMuvB2oakI5ZDqdKS58e7SGrK1EflIIbbCqM4AdwBvU3as MfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAW6oVhNDAAAEAwBIMEYCIQCl 1Pd13ZdH0M1sorkHsXeREuQBdh5MJknROOvpC5ZH2QIhANh1RiV3DEXXHAslca0z SNJXPLDlKxZHA+xeee9pSRR9MA0GCSqGSIb3DQEBCwUAA4IBAQCRqcIJyO6FlWIj ZswGr0uyEFgm+W3qDpjpCvzZgGiaCchnQ4xkC3sTTuK/dEm3gQDhXsP4t3PnxRT1 k4svFQjqEJ1Sc9Dj49ORl7LgHkw1aaTQBk6VLvCGKzQSbuXMkb0yVGMCvQDPlRnm hPROsPIAppqGiD889bvb/C+wy3GC7C4livLGDwkKb13etn9g72BnQCmoHcYg8c2a F1LDy2PvvpthjA0diY/aWNkgvmFhBpcjuW3nSBIsoB3pcnIUNEcAUfK+TqyfjFrw WgYCKieKcU/68Zg+TiiTwmyKDf8e59WJ+KkjQifc8i1ABvE1EYLeBgREqDqDUgBi lAtp6btp -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0YBLnVuVHJyGrosQkLvc YCqu5ezwGvtsRYPfbUZYBr1Cx8vJMLy1wXOFl1JcE1xC4GEJpgzpnZifTuu78I9L A6R7+tPiPG86IcsM6P6h7AdqrEcDlMe6cEx2n8+uehFCIjnfF6zFuv/MGqQoH8eE H8zKjs+OtvsAOdjXnI0vnRN/LYuRaNnVAtBFyg2N76igXLkV/GVLFSTNh9PUEeQz 9WZgGCh00IGjDTqSDyk18rNmw6m2ORvwiYBarKoCtg06Wnq2dg2KD0iW2bKPGS3A dejb2I5qXHfOqVn9MIlYRjimjvBmmxiFtLbfxydX0lHCX5tGfAEXWfmjC4s4qEaT bopAaQ5GpVB2/cZkKntiMSpdhm1oY2nslRBtJZAaG3UeV/5W9AMPcwl4lGgqLPtr F1AmS/UiPSEfj2FbmAp4R+8xQiI5DDdCquxnNQR0+093jWHvIDo6VZmZH/77Lns/ GHEzeX5QSDxBBT/dm997IysBA4h+FWMLdb4VOCk8v2StDAEMHd855/tnNFg7gvaa Bm8gcnIMMCJ0gfSi4+5htNYM6xvC/hLOW3ltaizo+Vn1B2o1ywg+J8Sz6klRw9qf 9sbVqny+JfClYkZ3W3OTemioOEBPXveG6x+pxKf46fqlU3UQFA9wtS8rUJqN3nAo A1ztPJgDSEKt5wPmY6eu+ccCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 303041620424896200521006793853338357463238 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-26 14:30:43 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-24 14:30:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'negarin.shop' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 854690139296349459599977417898609150823382054671723930579052378954866576726057355192848026648521695132107068294902723027431284979001904782770368264022700532148930562939009009976472626326998874690705913874573660123461725078774136413377136435767744973644114766143976436126776001591361604653330363388455865580848662775379835819432259140724071430502323040835142954341645752590808395231137909661241477440109246248462433989167604642150005392974382621964614934023943178631693964848574357156821434612293298038585614585558250210575625821443670014534119569661752599181283259759782201890882482673639847817362770120282834803157066417261066428194336444929899811426284052696581456759507602417552944526958477977687818637516726528016203366278974958575490649800012457227768211626908146736472322804912443146835866689498050642623139444582518871416251189275929081624991319220361985150166504717590421833419004578212293174200860712108041748065157949516856983243828339682884957064361366751909600945720799522976443305882283171000321962460256026280424560285944848556106689154707570793831485258325981271058932033342571506816395055393677429699606267413619475476031012462642063260947947432154115118884045367642776999028445032279548359807161358176827169492105671 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 62c82c1e803eb936e55df745af8fbe2798277f17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'negarin.shop' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.negarin.shop' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016ea85613100000040300463044022034dd1efcbe89e849e38061e54ef30d7bcad6b46d0cdd9fd8809812231a24d53d02202eb849e34b0cbaf076a1a908e590ea74a4b9f1eed21ab2b511f94821b6c2a8ce0077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016ea85613430000040300483046022100a5d4f775dd9747d0cd6ca2b907b1779112e401761e4c2649d138ebe90b9647d9022100d8754625770c45d71c0b2571ad3348d2573cb0e52b164703ec5e79ef6949147d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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