bizmia.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:17:3c:b6:21:a1:82:63:50:8a:1d:86:4b:8f:d6:ca:5b:a4 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bizmia.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:17:3c:b6:21:a1:82:63:50:8a:1d:86:4b:8f:d6:ca:5b:a4Serial Number (int): 269244051594353277091103631285218450234276
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a6:59:71:c4:e1:85:43:ad:dc:ca:3a:d3:e1:87:23:fe:7d:d5:88:2c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 94:d6:38:7c:ef:5d:b2:cc:76:b1:41:4e:60:e5:3a:40:d5:b8:5f:a0
Fingerprint (sha256): c4:54:dc:ab:3b:7c:8a:69:eb:76:26:bb:0d:72:27:8b:af:24:a6:90:52:1d:ba:ef:31:76:4c:12:8d:47:16:5f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate bizmia.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bizmia.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bizmia.com
www.bizmia.com
www.bizmia.com
Other certificates including the domain name bizmia.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for bizmia.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWzCCBUOgAwIBAgISAxc8tiGhgmNQih2GS4/WylukMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDEyMjU4NTZaFw0y MDA1MDEyMjU4NTZaMBUxEzARBgNVBAMTCmJpem1pYS5jb20wggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQCrQuirZaL6mQHGR8nL/5k9rAfPnaN3g70PAUtJ XWt/h+c9Nl2uvZRxbj4cQrNAsdoNp/zBGSSYyJ0H/RzOS/Z7N8nReZjCzXhC8/Md m3hs3zg3oogT9uoTPM0mEBK06aEZuBWOz/gZoZ5FGA5vomBaxCEvfMYLRngteORQ WMqlZ83xu3ESVNtYvvFLMEFRRiAK6FJic0BS7NYjSmUNPqLmO304EoDEAbUZVK+K +OM3vMbsLBBgaGGoLba7xwpJOXB4/vdBqt7ts/Ma3tDZ6bC1/xpMEX3Hb5WrOCVl 4TBpMQ05al25TfdXVN6hj6grI2arR/CWDfu95v8Kb70YATkrrp7c/0sXlSoEu1KB BCQVZguKQ6egkx/OS+xoCFeWVC8pmrAPAr8Z+eSuqk9FIn5OIrQ6MaoWfsFSqoyu SoqurVzm/NacGYkeWhABt6hPpDONJHJYgAP2ML2VCdXWIcgS/qf9jnzlkWgqqnKK HGT2Pxsn59g+zIIGtKYVmNhvIwPCPHNd1ZUW1gXu8Mny74qpoqzFY4GE/3crZ6ff GLBOTF7rRtSgL95ipKuA/7igJ2BFDgM/yGYToGoFDnEpFrtPtRLfOhwf8Pb4vhnt PVc4eQXOpuKhV/ghaU3flS9gI9OizFHt+9gR0BzbZnnwMuCB/DdyjaDy5JDov5wR 0BYPdQIDAQABo4ICbjCCAmowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSmWXHE4YVD rdzKOtPhhyP+fdWILDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMCUGA1UdEQQeMByCCmJpem1pYS5jb22CDnd3dy5iaXpt aWEuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHW eQIEAgSB9ASB8QDvAHYAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgA AAFwAzFujQAABAMARzBFAiEA7751P5BU0j1o6te+2CJwQca/SPt/UgAERb5Oae8W c54CIBgLdZGH6JdmSgpT1q7bnANN9oZAFgC76X0m1RGA3hLQAHUAsh4FzIuizYog Todm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFwAzFuewAABAMARjBEAiBuAyZMMHQQ 6jYqdHhb12l9cn5TDnLsjgY2ZEFG1KNWeAIgTA+V5IbgDYs9ZTjY+FNodN101fmK gK+6XYWrI2S7/YowDQYJKoZIhvcNAQELBQADggEBAJwK2JugeztOl8TueDwGBBLg qSL1EaXnjCK6MKWCgo1umRtxqcxf7AveF2KmmJsAEFFUnj17HT0Hq4ZZ0N1O04/0 EbGw1LDMzyax77CriLoBMkjefeoP1QT8Df+4H0ivKdekz6Y/ggIKbLDZlgLgoQJX Ql1rdxgv5UFZT859hpOpWWvCKWjpC2kP1wpVbR3OBcI7zMtC9M2H/FsB/AL/tqsF zDnwpoX8gBAdW/ZemAJ+HpPemhfu+hgGbSm4ZJJQ1sR3x5w4Tm38baTJ5S9nk87c 1gpWhyEeWnwqorIEKQiKTTwEMaqwpXWPghfWgBRLCmtbHkBVjfZg7PNsH8AdF5Q= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAq0Loq2Wi+pkBxkfJy/+Z PawHz52jd4O9DwFLSV1rf4fnPTZdrr2UcW4+HEKzQLHaDaf8wRkkmMidB/0czkv2 ezfJ0XmYws14QvPzHZt4bN84N6KIE/bqEzzNJhAStOmhGbgVjs/4GaGeRRgOb6Jg WsQhL3zGC0Z4LXjkUFjKpWfN8btxElTbWL7xSzBBUUYgCuhSYnNAUuzWI0plDT6i 5jt9OBKAxAG1GVSvivjjN7zG7CwQYGhhqC22u8cKSTlweP73Qare7bPzGt7Q2emw tf8aTBF9x2+VqzglZeEwaTENOWpduU33V1TeoY+oKyNmq0fwlg37veb/Cm+9GAE5 K66e3P9LF5UqBLtSgQQkFWYLikOnoJMfzkvsaAhXllQvKZqwDwK/GfnkrqpPRSJ+ TiK0OjGqFn7BUqqMrkqKrq1c5vzWnBmJHloQAbeoT6QzjSRyWIAD9jC9lQnV1iHI Ev6n/Y585ZFoKqpyihxk9j8bJ+fYPsyCBrSmFZjYbyMDwjxzXdWVFtYF7vDJ8u+K qaKsxWOBhP93K2en3xiwTkxe60bUoC/eYqSrgP+4oCdgRQ4DP8hmE6BqBQ5xKRa7 T7US3zocH/D2+L4Z7T1XOHkFzqbioVf4IWlN35UvYCPTosxR7fvYEdAc22Z58DLg gfw3co2g8uSQ6L+cEdAWD3UCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 269244051594353277091103631285218450234276 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-01 22:58:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-01 22:58:56 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bizmia.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 698685402644972008792850428015131306325503120448660136781309936868036855840428212520664373076014435651684524035628620384318680662923706060275144845150139832295095319776432564264756599410562731838027315270134982032656542834458625859208879662406363779751892980298284283396424142813133287807095139655032478267927118248962263733310666933841840159865248185678136103102684444722848543419067187020976341614465451082724867790341882255509379663636010803129608209099642674718927307630007494079026340467156600395081480913944323155250959803086941133994458714330132942837045460486788282637352003968778257789111882516196255414735975935508609013456429304265737958513838050635143891530452285339496581979958587908150882551640810327451791553432228062770530806637818693938461605513503270190763979508732051793320497665636058363982972476323875021862282912603996689115563581611533471093598066913797336498032883498082096797879319623796947693497819432242615207047017477533540512525768089621788036094450177021948118685530810317913688590391705566900557157757025077438136590946973200756895793295924297320660117561033635707753568690626592790164095077128193822123050856619899414946781897233515656839476817034280653278228186715243270354026143689329161261047746421 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a65971c4e18543addcca3ad3e18723fe7dd5882c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bizmia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bizmia.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000017003316e8d0000040300473045022100efbe753f9054d23d68ead7bed8227041c6bf48fb7f52000445be4e69ef16739e0220180b759187e897664a0a53d6aedb9c034df686401600bbe97d26d51180de12d0007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000017003316e7b000004030046304402206e03264c307410ea362a74785bd7697d727e530e72ec8e0636644146d4a3567802204c0f95e486e00d8b3d6538d8f8536874dd74d5f98a80afba5d85ab2364bbfd8a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 009c0ad89ba07b3b4e97c4ee783c060412e0a922f511a5e78c22ba30a582828d6e991b71a9cc5fec0bde1762a6989b001051549e3d7b1d3d07ab8659d0dd4ed38ff411b1b0d4b0cccf26b1efb0ab88ba013248de7dea0fd504fc0dffb81f48af29d7a4cfa63f82020a6cb0d99602e0a10257425d6b77182fe541594fce7d8693a9596bc22968e90b690fd70a556d1dce05c23bcccb42f4cd87fc5b01fc02ffb6ab05cc39f0a685fc80101d5bf65e98027e1e93de9a17eefa18066d29b8649250d6c477c79c384e6dfc6da4c9e52f6793cedcd60a5687211e5a7c2aa2b20429088a4d3c0431aab0a5758f8217d680144b0a6b5b1e40558df660ecf36c1fc01d1794