ofjco.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:6b:bf:76:17:07:71:4c:98:ec:b8:3a:81:2a:e4:5d:d1:1e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ofjco.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:6b:bf:76:17:07:71:4c:98:ec:b8:3a:81:2a:e4:5d:d1:1eSerial Number (int): 298001566761130464000064360130856718553374
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 30:db:63:d5:2d:4b:32:90:28:1c:0a:45:f8:0e:8d:32:e2:d1:77:95
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 48:35:e6:4a:99:73:46:89:ef:b0:ba:6a:30:25:48:57:a0:2e:07:63
Fingerprint (sha256): c4:12:d8:b2:be:f7:e8:18:c2:92:f9:96:6b:82:60:c5:eb:a1:91:ba:3d:c5:00:25:fa:3f:db:a4:28:7b:27:84
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate ofjco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ofjco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ofjco.com
Other certificates including the domain name ofjco.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for ofjco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSjCCBTKgAwIBAgISA2u/dhcHcUyY7Lg6gSrkXdEeMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMDExOTAyMDRaFw0y MDAzMzExOTAyMDRaMBQxEjAQBgNVBAMTCW9mamNvLmNvbTCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBAJ7YEu6I9zjJhW6250ENJpi+e/eO2dlzId1m/U03 o4bmL4hAEjRxQa3pD+w0Xy2p4AgtBCVjBnD/eFADx+vZMqI0J0XzCRBW/9fGZz9J i5OMAEhiMBlj3fdwN9Bw2C+LnZpMbn3VY99ZOaR9+xGXcGVP5ffVp0bB+c/uJVYU AMSLe5ihxeXRhBMcAVC6yuWIugVa3EMwtLba1BBCT2DSEkURFss1ysm/YYjjqt6j 9UB/zEE2aXYzLIHS7G1dsada5DUpirZAblC1oLcd733pnHaJDl95wllzb9NgP6ZZ aa2yWVxdYKJmZNKshB7z5/AdP8NTfBPekQOR87GzDsX/RHta0T9OpP7b47IgaMY0 rjRi9Y6ePLYc16ZVUlP6fWxepXxj/fVhT8LKhHRj03shi7DJDZ6jNAHLsJ7gtveO z336Bl+qSjau1hND9Efxi3mc/UGbkarbDHT8Lw/yjEG9VapTLGfPVSwpKPmUmXNb MUZ6WeyWIuAsHc5SP8tHoKyg9XXhghfoqfkzqSGJ1WgBhPjIwKioBx08EIkjgyCQ azmsyVb4f01CS82Wfi9JwkdSrVQEwYQnqGUBj1XPC5SmffpFzY/vHDDUlz0gJpDq Kp7s6BpVGdoXugIvGEPHqBmEF4po4GBf/wGeeKHvlokoJ9LFWgo+IVpa3w+SLXrH +aprAgMBAAGjggJeMIICWjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFDDbY9UtSzKQ KBwKRfgOjTLi0XeVMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wFAYDVR0RBA0wC4IJb2ZqY28uY29tMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAXqdz +d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFvYrNuxwAABAMARzBFAiEA l9kxVurP+5BC2qCZFF5Cy+LNptiyWhv48yldRKJn9pcCIF1oWRy/19BoDDK69hyO GhTwFoLzzTT/aHJgOkZCxFfQAHYAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklT Le+LkF4AAAFvYrNwuwAABAMARzBFAiA/J5EU7j2ODXcX/oQT5rUtCns5fTVsfiqa xQ3OAlc3NAIhAPRmR34XFMfHdHNNk7poTlfv74p6/EHiiYw/o6N9ltmoMA0GCSqG SIb3DQEBCwUAA4IBAQAzy71kLc90sXZwy+IfI8tAL2jV6wNmrO+vy2WZEvGG6yIb a1fNTP9e3yiwWEKrj27TZZKE905jpYJvlFuWthdJIf85nhL/YbF5OlSDta5VtNpp 7og/G8eczAL1sXzASvSjWc1HkGuvfoygOQevGa0xY87M4MnLA4qrg1g87mr6mG8r idipGWieGIKrf1xVv/hf1q/SH8dQftcysNxzQnAm3dyM7fuseSpXL7BCrg3TIvH2 mm4v8kyUQOGOMJKjV4lXSuwVPLau6AFQLFm9xmpZ6tnigR6xkALlhQVTCfstrd4m ACedDB4s0zuRRm6uAkATpBKyhodD21cANN5cUFSo -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAntgS7oj3OMmFbrbnQQ0m mL57947Z2XMh3Wb9TTejhuYviEASNHFBrekP7DRfLangCC0EJWMGcP94UAPH69ky ojQnRfMJEFb/18ZnP0mLk4wASGIwGWPd93A30HDYL4udmkxufdVj31k5pH37EZdw ZU/l99WnRsH5z+4lVhQAxIt7mKHF5dGEExwBULrK5Yi6BVrcQzC0ttrUEEJPYNIS RREWyzXKyb9hiOOq3qP1QH/MQTZpdjMsgdLsbV2xp1rkNSmKtkBuULWgtx3vfemc dokOX3nCWXNv02A/pllprbJZXF1gomZk0qyEHvPn8B0/w1N8E96RA5HzsbMOxf9E e1rRP06k/tvjsiBoxjSuNGL1jp48thzXplVSU/p9bF6lfGP99WFPwsqEdGPTeyGL sMkNnqM0AcuwnuC2947PffoGX6pKNq7WE0P0R/GLeZz9QZuRqtsMdPwvD/KMQb1V qlMsZ89VLCko+ZSZc1sxRnpZ7JYi4CwdzlI/y0egrKD1deGCF+ip+TOpIYnVaAGE +MjAqKgHHTwQiSODIJBrOazJVvh/TUJLzZZ+L0nCR1KtVATBhCeoZQGPVc8LlKZ9 +kXNj+8cMNSXPSAmkOoqnuzoGlUZ2he6Ai8YQ8eoGYQXimjgYF//AZ54oe+WiSgn 0sVaCj4hWlrfD5Itesf5qmsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 298001566761130464000064360130856718553374 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-01 19:02:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-31 19:02:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ofjco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 648027140940825294576739919768549006961914250776683847462891234598201000915825266429857236714202987767655588666593736096633754148864882348856708375490955772774931654485852865814510277867345038310599607098145508252972394541189255977703249945530440245958114019401348786258740287059249914510031125379941229389442181892664320038379377098517714935801372503560669097761950206575563127035552827350303831123499995191094384894559600969623554826408828426321540408322540483739390211485042228488562210666500465766140837473697145663312536253656410732192307917984327295031311860275139273980648318790120728663695201415610408820481285597432935656877369069384215214852347817643080258886690241125370540788397741585275561036154816729885350816627738091345082045616117124213711811623345267691425292735156898544291618392726903579662719873769345507715129568897566890858423392057696893728528074867186746239566816494877254375215458036092047553532274657130274648559967073587656118892469338050318331693293489939263631080548518676831270402060831132651175308184975046271534187387786290611708451784982039209703065133324297487326486052854783392178058075025112832972179673772634053341081767612542556072435536740614427269685912966776582696712852364882153313645734507 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 30db63d52d4b3290281c0a45f80e8d32e2d17795 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ofjco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f62b36ec7000004030047304502210097d93156eacffb9042daa099145e42cbe2cda6d8b25a1bf8f3295d44a267f69702205d68591cbfd7d0680c32baf61c8e1a14f01682f3cd34ff6872603a4642c457d0007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f62b370bb000004030047304502203f279114ee3d8e0d7717fe8413e6b52d0a7b397d356c7e2a9ac50dce02573734022100f466477e1714c7c774734d93ba684e57efef8a7afc41e2898c3fa3a37d96d9a8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0033cbbd642dcf74b17670cbe21f23cb402f68d5eb0366acefafcb659912f186eb221b6b57cd4cff5edf28b05842ab8f6ed3659284f74e63a5826f945b96b6174921ff399e12ff61b1793a5483b5ae55b4da69ee883f1bc79ccc02f5b17cc04af4a359cd47906baf7e8ca03907af19ad3163cecce0c9cb038aab83583cee6afa986f2b89d8a919689e1882ab7f5c55bff85fd6afd21fc7507ed732b0dc73427026dddc8cedfbac792a572fb042ae0dd322f1f69a6e2ff24c9440e18e3092a35789574aec153cb6aee801502c59bdc66a59ead9e2811eb19002e585055309fb2dadde2600279d0c1e2cd33b91466eae024013a412b2868743db570034de5c5054a8