malgosia.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:fb:aa:33:44:bb:c7:23:af:04:fc:e5:e5:d3:69:c0:d6:0d was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=malgosia.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:fb:aa:33:44:bb:c7:23:af:04:fc:e5:e5:d3:69:c0:d6:0dSerial Number (int): 346973966852940665338126726070281558873613
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f8:e6:81:63:d9:de:40:dc:2e:9b:66:8d:05:ce:8e:95:a9:81:d3:8a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e9:e9:6a:26:df:1a:4d:6a:4e:ef:27:3a:09:94:2b:48:2f:eb:89:55
Fingerprint (sha256): cb:ee:f1:23:8d:b3:1f:e9:0f:e9:00:cb:85:d3:af:82:9d:a4:77:b6:e3:9c:42:61:04:b5:59:c4:e5:a7:cf:a6
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate malgosia.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for malgosia.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
malgosia.org
Other certificates including the domain name malgosia.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for malgosia.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUDCCBTigAwIBAgISA/uqM0S7xyOvBPzl5dNpwNYNMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MjYwNjQ2MjNaFw0x OTA5MjQwNjQ2MjNaMBcxFTATBgNVBAMTDG1hbGdvc2lhLm9yZzCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAMIuPB4dQWuPdv/jSrVp154EeDt+S+lRE/5Z SgXfyoB/kH5fytOPUGzFlhSICcwgdlKORpMyw7OJKOcWMGtUFeksA5sZ4CZLkpvo G6u28nb/jpEJxVdKmggvZgx9VRDumhDU8tSjdwB1a4f4M+k9y9piSqew1R9fxCra BsbWxRWz0OBaxFhV5vdSKrE/wuiM7OWBXx5XilDMAMXugm4WprKJntOd9Gwf2wIS fXKM3B7X877IxnsioOV7Mr4g8qV9VkgnB7sGxkyG9QOom7hkXFaKyM6We6WO1oHl NLNfmPv6MmjWNNqQdrTfLQCMx/gxli9Sj+SdQi1mEHQK2A0W/4cx/n0dTwhV/28X fQCZu/qtVUGEO7v7xH8p+OJrfOl3kxs++hQzuf13oEAAnIacopDYJYvYGVo5v79e k2IttLmYO8iBUO7Ptb0HV3aFEzmL3ml+RVOZuiym7zYmG1TzaXiSVH/jFJeprXzE f2msk56iCAjErBjzKtNp7G4fY0Wm0jViKlHqB6+W/bMj0kZwT8iycOO8uqf3CytC COofXQyHn2GjZKI1DruU4StLRLD4IqcUXAQQT0YHwkyNdzWgKVLSEgl2/b2Llq6B vqxGG4+NvBLvsDNQq/EhSgIDivymz2AY5APNT+XobctR8EY6nOTSACMGQDSgtBog nOBL9Q53AgMBAAGjggJhMIICXTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFPjmgWPZ 3kDcLptmjQXOjpWpgdOKMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMbWFsZ29zaWEub3JnMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHYA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4AAAFrkr/8QgAABAMA RzBFAiBksWC7/gdot3JZ42Y5tXr6gR2FIJjVNqF8JbnYc7e5kgIhALE6Sqsvtlj2 AYHMsvOd0FBszUheXhVbPXgNDWV8O0lVAHYAY/Lbzeg7zCzPC3KEJ1drM6SNYXeP vXWmOLHHaFRL2I0AAAFrkr/8OAAABAMARzBFAiAYcWDygdIjJGoa3L96TYV2JkLa 1FigaGsDBCN/kDAkPwIhAINj2JYrdGEm6pFjlKH19NaGnHhlMjy3tMQVvWfysx5g MA0GCSqGSIb3DQEBCwUAA4IBAQCI4BRHPaVO/nXZ/Nf42WXxB6fLP+z0DHH8+uCo BKe4Hk8jXvVoVlc70wh5c1JwzhC5W1M9+0DPaoNK7xX9i9wEGRzQ0Rjmv8lZ2omx 3uvheLjdBtgLG8pu4ralIXjLyUEQEW10RQco9++hdTw4GFfTrV3zW6hltLb/Kw2B ZITyMXkZLDv5OjA1rmox668Of9i+Ub4giTIvd1SpsTprvkKlnI0UFwZ4f/fFqmO3 +oD4TVH6vYrwkBSjfBUvCMEumJBTkQsCwFqVzYUktOtKLQTSQRVlc8wAG5lcP4dx ECxsEASJt8E8gyuFhbNAjHQNFmNNxyivDFtX6kPwTziFeVQq -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwi48Hh1Ba492/+NKtWnX ngR4O35L6VET/llKBd/KgH+Qfl/K049QbMWWFIgJzCB2Uo5GkzLDs4ko5xYwa1QV 6SwDmxngJkuSm+gbq7bydv+OkQnFV0qaCC9mDH1VEO6aENTy1KN3AHVrh/gz6T3L 2mJKp7DVH1/EKtoGxtbFFbPQ4FrEWFXm91IqsT/C6Izs5YFfHleKUMwAxe6Cbham some0530bB/bAhJ9cozcHtfzvsjGeyKg5XsyviDypX1WSCcHuwbGTIb1A6ibuGRc VorIzpZ7pY7WgeU0s1+Y+/oyaNY02pB2tN8tAIzH+DGWL1KP5J1CLWYQdArYDRb/ hzH+fR1PCFX/bxd9AJm7+q1VQYQ7u/vEfyn44mt86XeTGz76FDO5/XegQACchpyi kNgli9gZWjm/v16TYi20uZg7yIFQ7s+1vQdXdoUTOYveaX5FU5m6LKbvNiYbVPNp eJJUf+MUl6mtfMR/aayTnqIICMSsGPMq02nsbh9jRabSNWIqUeoHr5b9syPSRnBP yLJw47y6p/cLK0II6h9dDIefYaNkojUOu5ThK0tEsPgipxRcBBBPRgfCTI13NaAp UtISCXb9vYuWroG+rEYbj428Eu+wM1Cr8SFKAgOK/KbPYBjkA81P5ehty1HwRjqc 5NIAIwZANKC0GiCc4Ev1DncCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 346973966852940665338126726070281558873613 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-26 06:46:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-24 06:46:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'malgosia.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 792187752587834959372091852139303454595956932225757831994749993145169301389755446995456411641487098647777734142473174412938840613502634257730565292198268598356206406453300979502037327446946966910797062055110156695647150200310026363966361494240357981080958623200391475976113173915128107474526652352454592522136046876788292064847063535135112142222067272940906950168899681376328191472540888957729672229060157356826212823356539265002673256551330352071205255826379001241659319299491964262329234088867206476346221943538089986343414315090977475098519087901525681171249465441524542824328624493568684474361453192540928410303683483574723509657656604228893022140224099900628773005317643686336307290060787021646685965433288993348844476878642917527256894959220223865865519945539662367058672517356103753631103415597370877737499143191987869970238375446973332491227982838349700631481552992271956098856353570460698108149219822207492700407598768320703052186656616734547971697211581006496594533198395397677287916021653556562890251585221202328187587618530635204645347595145369811042719906681213190497510244268588452631749747843485719172197831991234147716766995754689081998892583545104770278631513662512691871181886545283306058990029082813252722274668151 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f8e68163d9de40dc2e9b668d05ce8e95a981d38a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'malgosia.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016b92bffc420000040300473045022064b160bbfe0768b77259e36639b57afa811d852098d536a17c25b9d873b7b992022100b13a4aab2fb658f60181ccb2f39dd0506ccd485e5e155b3d780d0d657c3b495500760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016b92bffc3800000403004730450220187160f281d223246a1adcbf7a4d85762642dad458a0686b0304237f9030243f0221008363d8962b746126ea916394a1f5f4d6869c7865323cb7b4c415bd67f2b31e60 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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