data.cpicpgx.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:0a:42:ea:ba:2f:54:aa:b7:e5:1e:ab:31:08:ec:cd:ab:b9 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=data.cpicpgx.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:0a:42:ea:ba:2f:54:aa:b7:e5:1e:ab:31:08:ec:cd:ab:b9Serial Number (int): 264828629285954939215797202849834214468537
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 4b:75:14:32:b0:fb:1c:d3:d6:bb:20:74:70:ed:a3:19:b5:49:96:5c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 65:0c:31:c9:f6:fd:ea:48:eb:30:73:df:bd:2c:41:cf:37:5f:83:90
Fingerprint (sha256): be:e3:5a:74:a7:95:b1:7b:5c:66:1a:67:2b:28:a8:88:c9:b4:ff:3a:83:66:b6:c7:c5:c3:c5:cf:27:b0:09:a9
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate data.cpicpgx.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for data.cpicpgx.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api.cpicpgx.org
data.cpicpgx.org
data.cpicpgx.org
Other certificates including the domain name cpicpgx.org
(limited to 100 certificates)
data.cpicpgx.org
*.cpicpgx.org
files.cpicpgx.org
data.cpicpgx.org
api.cpicpgx.org
cpicpgx.org
www.fridge.cz
data.cpicpgx.org
data.cpicpgx.org
cpicpgx.org
cpicpgx.org
data.cpicpgx.org
data.cpicpgx.org
data.cpicpgx.org
data.cpicpgx.org
api.cpicpgx.org
cpicpgx.org
data.cpicpgx.org
files.cpicpgx.org
data.cpicpgx.org
data.cpicpgx.org
cpicpgx.org
data.cpicpgx.org
data.cpicpgx.org
*.cpicpgx.org
files.cpicpgx.org
data.cpicpgx.org
api.cpicpgx.org
cpicpgx.org
www.fridge.cz
data.cpicpgx.org
data.cpicpgx.org
cpicpgx.org
cpicpgx.org
data.cpicpgx.org
data.cpicpgx.org
data.cpicpgx.org
data.cpicpgx.org
api.cpicpgx.org
cpicpgx.org
data.cpicpgx.org
files.cpicpgx.org
data.cpicpgx.org
data.cpicpgx.org
cpicpgx.org
data.cpicpgx.org
data.cpicpgx.org
Certificate
The complete raw certificate details for data.cpicpgx.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgISAwpC6rovVKq35R6rMQjszau5MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MDkxNDU4NDFaFw0x OTExMDcxNDU4NDFaMBsxGTAXBgNVBAMTEGRhdGEuY3BpY3BneC5vcmcwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB9hwI6l4Qw2mEsdO9HgmhwEsDZqfZ f/wWG6I+xQMvBnxqpI7yfHoNV0T8GsgtaVmHOKpANZiHkKQ5XUrpqhpka6ul5P5u T34So0ns+pfxtquvCpo/dpYA2y7gMqrjK6WP3hVDntVpxs1qE8gv+TOH53OL7OU9 n/AAqQ6aQ+mnMNGJ0pJ+WQ3/mcQR2gIji2gmhKS14/bl2N/MZhEthlD62wrwteHy 9oa2db3E/4LPgtLmhIXLf/jgenQ/LrRTKO4Ua3UuiVWaqal6vdxFMwAJHifiQYBM 8xE2OxWtoep3EtYf4d7hhqJ9TMw7eg6D+hP2t2yDMqzML5zpWD69K0f7AgMBAAGj ggJ2MIICcjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFEt1FDKw+xzT1rsgdHDtoxm1 SZZcMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEB BGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0 Lm9yZy8wLAYDVR0RBCUwI4IPYXBpLmNwaWNwZ3gub3JnghBkYXRhLmNwaWNwZ3gu b3JnMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYB BQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIE AgSB9QSB8gDwAHYAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFs dxqBWQAABAMARzBFAiEAxapUhDA5NaOCrvdF5yDjQmw3CBeNbMmVG6Trp3Fhbg0C IHWEmjoyzi6HR9kPuNghJn4ufRS+aTqqEB1TZ+g0VzieAHYAY/Lbzeg7zCzPC3KE J1drM6SNYXePvXWmOLHHaFRL2I0AAAFsdxqBwgAABAMARzBFAiEA+qoFFUQKiBhy 210xbzdVXYNYP4BY4tlERDmzrOQwKCoCIHYoeW5vUatv40BRU0n+GqnkFdqkgHPQ bkHDKAsYmmYpMA0GCSqGSIb3DQEBCwUAA4IBAQCL/xpL1/G/dswbT1x4QAj+he7N whXwGP6N4Qkj88DVqBLSExG+1obggS7Mz0FLBHb+K9q2Jbi3ULF8vF7bevHCCeT8 wAUCIr0ZVzcRO049BVFuj2cvEtwBOthFAmr6JSjD6QIsTfre0tPrAHDYSiZaikuX emX8oXXGhx+hfquO1G5CB/Fv+BdZWTGdjxYq9wEmnHZmM5nGOaeuFwl5UFAUC4iz 1qxZP0lQIJmo6pZI5bagHy4yYSfqapqv7DG0ed5qd6d3fbzdPD2gSrJwMpdhl1F0 vTmmd3DaNmUvmPiPI6uaYc1YCNGfvJTt9yFyMHjKo4S/HuhikRkmMhnyunth -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwfYcCOpeEMNphLHTvR4J ocBLA2an2X/8FhuiPsUDLwZ8aqSO8nx6DVdE/BrILWlZhziqQDWYh5CkOV1K6aoa ZGurpeT+bk9+EqNJ7PqX8barrwqaP3aWANsu4DKq4yulj94VQ57VacbNahPIL/kz h+dzi+zlPZ/wAKkOmkPppzDRidKSflkN/5nEEdoCI4toJoSkteP25djfzGYRLYZQ +tsK8LXh8vaGtnW9xP+Cz4LS5oSFy3/44Hp0Py60UyjuFGt1LolVmqmper3cRTMA CR4n4kGATPMRNjsVraHqdxLWH+He4YaifUzMO3oOg/oT9rdsgzKszC+c6Vg+vStH +wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 264828629285954939215797202849834214468537 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-09 14:58:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-07 14:58:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'data.cpicpgx.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24485353981533991084975726715856889398620379728256800102112877890354253766536353769291052394040538081265021143391499402016821104748297668089240009347566173415206107610159161218411398166942770522982260129133016803868766373821382570714096362336402595235103948637483391643444447728589457789348994720050505398462381501502679862366994258546364845065878320699700723694814773630525426044228046842878084421623357098032999848118568719868660793759109593196810202584565988829241549076399902740943479531316231441905378027643811049819620363210961782734522836744366846771996036636299402353951574260234980944636315088856526996850683 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4b751432b0fb1cd3d6bb207470eda319b549965c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (37 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.cpicpgx.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'data.cpicpgx.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016c771a81590000040300473045022100c5aa5484303935a382aef745e720e3426c3708178d6cc9951ba4eba771616e0d022075849a3a32ce2e8747d90fb8d821267e2e7d14be693aaa101d5367e83457389e00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016c771a81c20000040300473045022100faaa0515440a881872db5d316f37555d83583f8058e2d9444439b3ace430282a02207628796e6f51ab6fe340515349fe1aa9e415daa48073d06e41c3280b189a6629 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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