equitymargin.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:4a:13:06:2e:73:7c:7d:f0:8d:00:dd:df:72:60:d4:9b:dc was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=equitymargin.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:4a:13:06:2e:73:7c:7d:f0:8d:00:dd:df:72:60:d4:9b:dcSerial Number (int): 373655326307032106343367808673964717546460
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b1:70:1f:79:f0:7b:e9:03:d4:94:f8:9c:bb:1d:99:31:d7:f3:69:7f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 2c:08:0b:83:c8:72:90:37:76:fc:54:6b:30:a7:6a:ea:42:ce:20:f6
Fingerprint (sha256): c1:b1:59:ed:92:a4:27:e2:43:c5:76:ea:e5:a5:71:f8:f9:06:3c:5c:ab:50:25:7d:5d:32:9d:b6:f2:d5:8f:27
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate equitymargin.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for equitymargin.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
equitymargin.com
www.equitymargin.com
www.equitymargin.com
Other certificates including the domain name equitymargin.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for equitymargin.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGcDCCBVigAwIBAgISBEoTBi5zfH3wjQDd33Jg1JvcMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MDMxNDQyMjhaFw0x OTEyMDIxNDQyMjhaMBsxGTAXBgNVBAMTEGVxdWl0eW1hcmdpbi5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDry27pNj1p7AXsRt9gXKa5sJrywlDh ypa561rIsvW596SoCmVjTcnv9B6/+e+vA3fs06Sg/67glRwL8Nx4jD4Kkpr6SjWJ zb/5q6PL64nfhUEofo4t4YEh3WfMcpdePmBGB7YH+DrYv6Kh10fxdfPZu20bDIqe J4lO7gWLTR3djyUCWOOeqa7v7htUT9KPqWz5oN6djfu/R1PCFkxwAB3tzBSCDDWl XBs0kyPaK/qzJF/X7F3blxOXxIlW7uzdYNj3cfxgOywA2WTxWRleiyM/wt7V6TzV jfGhoS2aNXkgs8GYyJKln1PtIYq9qC9JIyZ9W0e2SNUr00kYAv2HKBmIPHhqKEWb sVrJZgdft/zxjhLShvOV/XQp7bMw3AwmqjmzhoH1GwA4wboKM4dX60tm6Smonb3Y MXBG6B8l53dfnxsduwo7wgyDZh2xdLM7OLQQTnjWYBVHYwuI0LZzR3mQkR4mYUb+ ryNrMghxOqvBFye4uNcnTstOZ0JUFmHDdJW+J9Qyzo3SdrYORKRiLrFFWq83jcdC Tp9TFI2GakcalhNpxA0+cNYYPqLLIjn4mK02F2mHjIsND+XXQlZayXKJqIA22bZW nYPCYA76BmzaqKbVQsaVxex4OMCu5em1C50gVnqrsufMidLNasub7yY8I34bIa5/ tl4Ncqk8eSWrIQIDAQABo4ICfTCCAnkwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSx cB958HvpA9SU+Jy7HZkx1/NpfzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMDEGA1UdEQQqMCiCEGVxdWl0eW1hcmdpbi5j b22CFHd3dy5lcXVpdHltYXJnaW4uY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcG CysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5 cHQub3JnMIIBBgYKKwYBBAHWeQIEAgSB9wSB9ADyAHcAb1N2rDHwMRnYmQCkURX/ dxUcEdkCwQApBo2yCJo32RMAAAFs98qoCAAABAMASDBGAiEAzHnAPizSaBr4ZQUI TuZtv2n3yCAHqLkEWhZpgGhTiDMCIQCW9RjN9TNizH5Gjzz6aG73Q181eMk59Zib 9wuV3A+obAB3AGPy283oO8wszwtyhCdXazOkjWF3j711pjixx2hUS9iNAAABbPfK qIUAAAQDAEgwRgIhAPkOSee3sWC95UBf39QsDaK0h3nUsE4r7uy7siDj+dY6AiEA rMkfPowRhxon86NM1LqkJcP3wycHoFQLhKYj5p/X5AMwDQYJKoZIhvcNAQELBQAD ggEBAG0IuGClJDsiYlxbKfhqku45P86tNLeLBVBxXT6NWtW6Q6a19gAC3aBePmdS 1xVfvjoGXnWz7y1uDhQY6ymrLr9Ftz55abv403ajAPLozvF91UHK+R+jPtHW7+1K Q6HOFcCObjk/YE2wmvMOqHuBeA1diEWDeI8ipl18KDVwDJqOBjFXB5vy7fbeAeXF 92zrfk8559syoLSdZpAQz09I7Szctjp7Ui/OohEdN37q9GoCoPT8B/aM7lrclNq0 Uu8M8cv97Cr/iHPr6yg/pN/BTl17qpFXGmtNuDkZ8xxNeaCyL2MCEX06yvHZA3Em r9kkueWznOl08LLDUzWJZt1JSnM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA68tu6TY9aewF7EbfYFym ubCa8sJQ4cqWuetayLL1ufekqAplY03J7/Qev/nvrwN37NOkoP+u4JUcC/DceIw+ CpKa+ko1ic2/+aujy+uJ34VBKH6OLeGBId1nzHKXXj5gRge2B/g62L+ioddH8XXz 2bttGwyKnieJTu4Fi00d3Y8lAljjnqmu7+4bVE/Sj6ls+aDenY37v0dTwhZMcAAd 7cwUggw1pVwbNJMj2iv6syRf1+xd25cTl8SJVu7s3WDY93H8YDssANlk8VkZXosj P8Le1ek81Y3xoaEtmjV5ILPBmMiSpZ9T7SGKvagvSSMmfVtHtkjVK9NJGAL9hygZ iDx4aihFm7FayWYHX7f88Y4S0obzlf10Ke2zMNwMJqo5s4aB9RsAOMG6CjOHV+tL ZukpqJ292DFwRugfJed3X58bHbsKO8IMg2YdsXSzOzi0EE541mAVR2MLiNC2c0d5 kJEeJmFG/q8jazIIcTqrwRcnuLjXJ07LTmdCVBZhw3SVvifUMs6N0na2DkSkYi6x RVqvN43HQk6fUxSNhmpHGpYTacQNPnDWGD6iyyI5+JitNhdph4yLDQ/l10JWWsly iaiANtm2Vp2DwmAO+gZs2qim1ULGlcXseDjAruXptQudIFZ6q7LnzInSzWrLm+8m PCN+GyGuf7ZeDXKpPHklqyECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 373655326307032106343367808673964717546460 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-03 14:42:28 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-02 14:42:28 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'equitymargin.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 961958290498040925723816717932963895064347824915890076131272229717950035724409245111324155699107192700121961779202965485120006473615893626728819294773709255611458550361031646736664013051069650806297303074436708571109533068981159428336482960861844250362318662493723882754305633359852145980095339145096024424677852683205007414359246195650108440186374885573088436802478186260273048312725378060909987395880340059455829781187101855546599096557650974632877333167155096152578159980653542940004494306382395487728480198964857305853926793249216992626899661610980791861717613630332871987819841129403349987107042313505450730072620321200041042708798815860370558119860496203935637665627694518988404797284110365831486513867878224010268005891286130647940506725589921041347602524561458239908626199265343613326382338369711771807969070522760957201850086445258820301469709781501397671573414276199129615950164622310968369352550010837196136503750560133821570506299256153082440378849513061276788719348768500153937683913607248976465481431913778829219137006805585453295719483552960823516548166517435307982335640348048807979928631585405517064095474722203026666909982124111195999786854301746190585385974267166918549737324598633578935814190613848759383846398753 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b1701f79f07be903d494f89cbb1d9931d7f3697f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'equitymargin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.equitymargin.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016cf7caa8080000040300483046022100cc79c03e2cd2681af86505084ee66dbf69f7c82007a8b9045a1669806853883302210096f518cdf53362cc7e468f3cfa686ef7435f3578c939f5989bf70b95dc0fa86c00770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016cf7caa8850000040300483046022100f90e49e7b7b160bde5405fdfd42c0da2b48779d4b04e2beeecbbb220e3f9d63a022100acc91f3e8c11871a27f3a34cd4baa425c3f7c32707a0540b84a623e69fd7e403 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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