zstbio.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:41:94:f0:51:d0:50:e6:28:a9:d8:56:f3:56:bc:4e:e4:2a was issued on by Let's Encrypt.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=zstbio.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:41:94:f0:51:d0:50:e6:28:a9:d8:56:f3:56:bc:4e:e4:2aSerial Number (int): 370765471130903875363939811764585511183402
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: f4:34:ee:fd:12:85:cf:a7:80:2b:e6:4c:88:a7:04:22:5c:5c:da:aa
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ad:6f:87:df:6a:89:87:83:e2:78:62:1f:83:7e:8b:6a:ec:6e:ee:73
Fingerprint (sha256): c5:1c:4f:a4:d3:11:23:de:c6:62:da:b6:92:cb:80:7b:87:50:73:5a:00:6c:ec:18:a0:55:24:47:59:66:e5:5e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate zstbio.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for zstbio.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sumire-corp.com
sumire.hk
www.sumire-corp.com
www.sumire.hk
zstbio.com
sumire.hk
www.sumire-corp.com
www.sumire.hk
zstbio.com
Other certificates including the domain name zstbio.com
(limited to 100 certificates)
h.zstbio.com
sz.zstbio.com
h.zstbio.com
saiseido.cn
zstbio.com
zstbio.com
saiseido.cn
zstbio.com
zstbio.com
nbc.zstbio.com
zstbio.com
zstbio.com
saiseido.cn
zstbio.com
tk.zstbio.com
zstbio.com
tk.zstbio.com
zstbio.com
nbc.zstbio.com
tk.zstbio.com
saiseido.cn
nbc.zstbio.com
saiseido.cn
zstbio.com
nbc.zstbio.com
saiseido.cn
nbc.zstbio.com
nbc.zstbio.com
tk.zstbio.com
nbc.zstbio.com
nbc.zstbio.com
nbc.zstbio.com
tk.zstbio.com
zstbio.com
zstbio.com
zstbio.com
tk.zstbio.com
nbc.zstbio.com
zstbio.com
nbc.zstbio.com
tk.zstbio.com
zstbio.com
www.sumire-corp.com
zstbio.com
zstbio.com
zstbio.com
zstbio.com
tk.zstbio.com
zstbio.com
h.zstbio.com
tk.zstbio.com
zstbio.com
zstbio.com
tk.zstbio.com
h.zstbio.com
zstbio.com
tk.zstbio.com
tk.zstbio.com
kinten.net
saiseido.cn
zstbio.com
sz.zstbio.com
h.zstbio.com
saiseido.cn
zstbio.com
zstbio.com
saiseido.cn
zstbio.com
zstbio.com
nbc.zstbio.com
zstbio.com
zstbio.com
saiseido.cn
zstbio.com
tk.zstbio.com
zstbio.com
tk.zstbio.com
zstbio.com
nbc.zstbio.com
tk.zstbio.com
saiseido.cn
nbc.zstbio.com
saiseido.cn
zstbio.com
nbc.zstbio.com
saiseido.cn
nbc.zstbio.com
nbc.zstbio.com
tk.zstbio.com
nbc.zstbio.com
nbc.zstbio.com
nbc.zstbio.com
tk.zstbio.com
zstbio.com
zstbio.com
zstbio.com
tk.zstbio.com
nbc.zstbio.com
zstbio.com
nbc.zstbio.com
tk.zstbio.com
zstbio.com
www.sumire-corp.com
zstbio.com
zstbio.com
zstbio.com
zstbio.com
tk.zstbio.com
zstbio.com
h.zstbio.com
tk.zstbio.com
zstbio.com
zstbio.com
tk.zstbio.com
h.zstbio.com
zstbio.com
tk.zstbio.com
tk.zstbio.com
kinten.net
saiseido.cn
zstbio.com
Certificate
The complete raw certificate details for zstbio.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgISBEGU8FHQUOYoqdhW81a8TuQqMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODAxMDgwMTI5NTNaFw0x ODA0MDgwMTI5NTNaMBUxEzARBgNVBAMTCnpzdGJpby5jb20wggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQCoGllve5mispHKUP2xVMdS5a0QKdDiD+D8HmEL l7zVLPhbFYA075QiP0eOe6PgQZkX7gmFMUUiRJHHvspI4MYsU6j3RVYGtM/whB7a /BV4DmZOZNcuPGMk0g2MuRq4sZbpZu/opUdRw1Ohtm9ma6yP3O/LkEqREOB1OWaY 3lFduH8+SYzyFUmtdyuZXs9VzOYHPdtcb8QTaMjQgGw/oQ4jcxjfV9x1Uc9D1nGc R1Qmc0v9wmPKzTw5iT6u4DquostEkyQAr9nKyQ3D1pbuHH45AgRFSt483EHjQ6jO dD8kl+cnI18LNg2g+PmorYoctEpHCksGKXWp3tLV9YzbYOhtAgMBAAGjggJKMIIC RjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFPQ07v0Shc+ngCvmTIinBCJcXNqqMB8G A1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAu BggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAv BggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8w VQYDVR0RBE4wTIIPc3VtaXJlLWNvcnAuY29tgglzdW1pcmUuaGuCE3d3dy5zdW1p cmUtY29ycC5jb22CDXd3dy5zdW1pcmUuaGuCCnpzdGJpby5jb20wgf4GA1UdIASB 9jCB8zAIBgZngQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYGCCsGAQUFBwIBFhpo dHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUHAgIwgZ4MgZtUaGlz IENlcnRpZmljYXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9uIGJ5IFJlbHlpbmcg UGFydGllcyBhbmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGggdGhlIENlcnRpZmlj YXRlIFBvbGljeSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNyeXB0Lm9yZy9yZXBv c2l0b3J5LzANBgkqhkiG9w0BAQsFAAOCAQEAbMmYTXGi8Wz1xWHRyUYt0BTMNUYN Zk5YhrFM2gx2yhZruh6uw9xnHDMoLErY8l9k3PBHIXabEN94qVT64KSDMd2eqLSW sSdqaWlp8O0FBst8Tv/raSb132I7Y/UCkLajkgR0ggnQPbWQn9JXqGDX/ZRIb0E8 Gb/6wr9Grs/Wrkbfmo3hTbcP/cy2f+oXVa9ViGY3abLE17NAGHOojaTc9Ejccbqv ZpvF+YJHp2axwfoMc7sUJ+nVvx0pvpr7TRKZ66BHgYVCN6NML/O98Ivj5WnYToBT lLvvfu+NrY2TM1hkqsrO4NOmz9mrzCQTHfi/qWk/pajLGzvhMuT//ym98A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBpZb3uZorKRylD9sVTH UuWtECnQ4g/g/B5hC5e81Sz4WxWANO+UIj9Hjnuj4EGZF+4JhTFFIkSRx77KSODG LFOo90VWBrTP8IQe2vwVeA5mTmTXLjxjJNINjLkauLGW6Wbv6KVHUcNTobZvZmus j9zvy5BKkRDgdTlmmN5RXbh/PkmM8hVJrXcrmV7PVczmBz3bXG/EE2jI0IBsP6EO I3MY31fcdVHPQ9ZxnEdUJnNL/cJjys08OYk+ruA6rqLLRJMkAK/ZyskNw9aW7hx+ OQIERUrePNxB40OoznQ/JJfnJyNfCzYNoPj5qK2KHLRKRwpLBil1qd7S1fWM22Do bQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 370765471130903875363939811764585511183402 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-01-08 01:29:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-08 01:29:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'zstbio.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21221028586672422728288633165130387060344949032591069646486116504084093597705570343865648292193846109410235518526330258279586140204622189845817223419949266448404249583386720774058651817579210492890192090396562982722204575711405386945810540768427650564068769113481328917349467045187500421235168226695873922187426646615674772763990184869347963298196761261260069280879975808045839405348079484323510702530690078306006185464364762514163411858809563411953243965810692111746638254678071665511980449567936945105693558847782249624687811425091085333883970108044081108896888810459202624156715563241505263403222750780392072079469 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f434eefd1285cfa7802be64c88a704225c5cdaaa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (78 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sumire-corp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sumire.hk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sumire-corp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sumire.hk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zstbio.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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