www.38217.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:67:f5:66:86:af:2b:1d:90:57:66:b6:20:1b:c5:4a:a3:bf was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.38217.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:67:f5:66:86:af:2b:1d:90:57:66:b6:20:1b:c5:4a:a3:bf
Serial Number (int): 296712134793105435543103049869450390709183
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: cd:4e:07:63:3e:cd:44:71:a0:3b:25:98:f1:8c:da:15:6b:b8:bb:e6
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): f5:65:aa:06:9e:94:f7:48:6f:e2:8c:48:09:5f:c7:cf:d3:0e:d2:46
Fingerprint (sha256): c3:39:9d:d7:e3:03:c3:3f:3b:8d:0e:4c:00:01:b4:15:bd:21:d4:e8:99:f2:ed:a5:e1:aa:dc:aa:99:d4:f7:37

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.38217.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.38217.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.38217.com

Other certificates including the domain name 38217.com

(limited to 100 certificates)
www.38217.com
www.38217.com
38217.com
38217.com
www.38217.com
29857.com
38217.com
38217.com
www.38217.com
www.baratti.com
39287.com
www.38217.com
38217.com
38217.com
www.38217.com
38217.com

Certificate

The complete raw certificate details for www.38217.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtuFN1KWq1sRaODlAWYK8
2xkRzUmDInI/T+DVJF7+DG7tRRZDmtrw29GxVJpGVCyhnepTDLGQofkiTD4WDTzl
RvywtMX8iMEcCd1FulSMd0kKVoWYrJtlf4XXKAcvqOnxY2fOs7/0f/IopXzD0FmE
ImO/aGT/aeU9Sx/0NFUH21X8ZNoqVXtZwcDVSDxHFahVGaHSeXInMQTz1TTjnY5M
Y+OHDJKmdawC5HWS6ZnzczBr3TGp95bj6cznEkH8XwCzzBwlbV2ujK3eCm7WiN80
0AUYVldtdhT5Gzf3kTKDknFhIwTiJf+QHwtUsNkFqZs2cJViSp9jj7pCqHDm/lBk
0ryQdKi87VLx8DyrykV31d8qxO3YS0VaZGfzy/zSG977fMLTqSET453v1FM/NHIV
mUTJizY0ZUTS56TR1rYcaPiAoGRBtsCJcqXVEBNzOU7YJ/SkfjiiQiCGvVsUiYTZ
V3yTJu3TLRDb/obl8aaJuJuJ6O9ECtVKjbePYi7aGr0e1NkEgJ3rvaTWzFiZ13Gh
n5zzi6ywmLvI9hQiHjdcaN3WQ3ZpzC+ZokuPdGPUP7CVT6NJMo3YZp8xKNNS6cs8
fvxWNl6Tah0o/ExHfNV+djI97VbbgvcPelXx0vOhW01n8i38KWkTafd+F4O8U9V8
d8Ytso6Ne9OuMMq1LqxAqfUCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 296712134793105435543103049869450390709183
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-23 19:32:28 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-21 19:32:28 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.38217.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 746085690040297014259809110671730078514698073208043767042159914781893839728422851372647906061966785774479958948048188212812731944228519344086182224832129881953673500688276770708865068991088542948875719855837650972988783982367239138461788080873393161648045181125152965908503054276939094526576955524768690275164412004163893304556032291400693046029981374465133410493055129358590139331771127080872666607236865556868687963019350905872573166012620165353201146756667039715981485934113363893722816382330680963312906512704803648415196274468797881537841023228959760624001556707241239341220122979275278638650337218273975950334314537284349097731693955346375870951336882307297330395817945041609845509292897918559095518320649933466877744438033738087957421050282657057936743993323857311457777827676959604519056296201360278129423056390266126444166163044312712789362894561452525564453537540584380114840759202541865956646332914869380988823904320064210160637358725341337922229108772451701708979695318152532625450314712429277534740722121365961499150265474090903243957193300548227674429822861652810602561755711029651992348742762647751592999241214111526578840062833828734636176237432836503099896240947230237279934421828639504018079746224133032525189655029
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							cd4e07633ecd4471a03b2598f18cda156bb8bbe6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.38217.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f2007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000169ac4135540000040300483046022100ddf79aa43755bd7075db20a92dd82c9034d0f8de8e3a7a50ba1a82c95d7b6f6d022100f9129d10175ba5159ba52dce572270358bdc78c17d49df8d06d16276fff92d9d00770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000169ac41354a0000040300483046022100c5b132643fb89bda8519d6a827ea4fc0dc0bbcd02e7bbfa493938b6cc5885f97022100d953036e071a05a46d5569624077951a21cc1fa075eac82d28755975c55fcfaf
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		000b9e36ef6f841df153afefbb2ec7f0e80599636784683c5470cfa9b7b7f85d67021ed3f3e0a72ecefc1a14508c654c3338b80ab7e6e626658ade391c25b81b32f9614fd515905dabe73172a286c03a664803c773c8ec26265e65159339e166ca8e9f1ddae94e28747fd1e16a5c5ace4b69809d3e6e8b535c5e9edc9d1e7b77d1e8da1f228ca3cf5792ebfb68059fb2217263b8ba48873e640c373a0f182846208b8b415089f56932e1c809b0e110634a5fad5f81914e457109237b9ded1f25b6654a5e4055e34a0eb6ff6d95fa50fddb90433fa2963dfb5130414dad017751f7a1610dbb8a5056bcb14f0f762bd58a5b8837ce4bc5e87d31f993e70a349f3b12