www.cailyn.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:a2:33:e2:27:e8:55:80:bd:83:e0:80:fc:be:45:a0:b4:40 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.cailyn.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a2:33:e2:27:e8:55:80:bd:83:e0:80:fc:be:45:a0:b4:40Serial Number (int): 316531566132769200710524690766584656999488
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 85:4e:eb:9d:7e:83:12:4f:99:d1:1e:b6:6a:93:1b:98:67:b6:27:ff
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): d7:13:2d:3d:bc:25:11:45:7a:11:9b:74:a3:3a:40:22:5b:a4:30:0b
Fingerprint (sha256): cc:54:14:e6:16:bc:33:bd:c2:de:cb:7e:e1:94:1f:28:9d:0c:0a:52:03:98:fe:4d:b9:13:bc:fd:d5:a0:d3:f1
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.cailyn.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.cailyn.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.cailyn.org
Other certificates including the domain name cailyn.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.cailyn.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUzCCBTugAwIBAgISA6Iz4ifoVYC9g+CA/L5FoLRAMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMjMyMzE2MDZaFw0x OTA2MjEyMzE2MDZaMBkxFzAVBgNVBAMTDnd3dy5jYWlseW4ub3JnMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0Z2RzcT8MiZREulx7PuEt5yNxPsZUDhB Xixw6+0NyZ8klUu7h3xfvBujXKfD2nVphOOYUqMR5aNS1B6kKD8vxWD5ZwZcVD1a nNyR7xRe8ueI7sb0DFYgBacpQQLoyyoSxNxWjmg8/3Zfa4MnZO5MAbDcpcdi06YZ Spc2yIwsMi1ngOSL6gxNuJt8BT973LPEekYyDLIZMFaQL2cCtYYBeVxyud3rAyX4 69RM8P6Fk5fo1VJYRibiLEDd6LRrBAJhGPFsU8V8tzYk0SFCNORWb4VwZ1u0npRS Mqa6Kjjh3nKInoo6ObB+MJmQRKShJGHuVgfo1M0NKI4A8BMjA6odrVOTiW6aSV9t wPkIYJA/R37Z8EJNzO4Hn6kgWSxH7OYoVZ0Pe2dyC0x0mWWBnphfA6YKYULU/H9O WS/OGqx9EieI+m1ocKzDrax8l7NbxdJGiW6lNBIbWLDho5cotXokFrjtIYwCpr09 TAKz/81YFlAfEsX7/DfCIs/d+RplRfzBQAOQF96HI7YfYFkx1xRNd+OgmG2LYBQl QF1ICLIhdQLiMUfboN6rRXZRq/+MrvS9vab/Q+R5IUJhWnTsLiBdkRlvmDcKcabu mwBSgNJWt19MDS2jxMX9s2xLRlB2GljDWKh1FHgDewFruyPWfwpeI8tx+1yAXOAF x8RnlsWNPXsCAwEAAaOCAmIwggJeMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUhU7r nX6DEk+Z0R62apMbmGe2J/8wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAZBgNVHREEEjAQgg53d3cuY2FpbHluLm9yZzBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQE gfEA7wB2AOJpS64m6OlACeiGG7Y7g9Q+5/50iPukjyiTAZ3d8dv+AAABaa0N8q8A AAQDAEcwRQIgdPYXVZ94vBlaCcdvBHUaalD2cWXMVjzbKp2QG9suegMCIQD27scl DZgIYQ1y0ZuYoe6OEQZGUl7q1Fv67xoVPcwMyAB1AGPy283oO8wszwtyhCdXazOk jWF3j711pjixx2hUS9iNAAABaa0N9KkAAAQDAEYwRAIgEXQIrjLCvAAznq+2l2a7 qT524amtnv8IZBQQKq5j5AgCIFIotn8pEWeILChUg5bkM3FHSSMjwZzGUj+omw7Q sL5QMA0GCSqGSIb3DQEBCwUAA4IBAQA/9VOgWCtpAvpI/X7YQKy6K1eb1iZDBelt h+wVjEIGjrN/whypmTezCfyy4sKbpt5jJcDEePxWAghB6pyV71HSVxTVkbFqGs++ Y6bdZys101DvHdZMU7i8Dm5ap54BjobA9p6ShZjX2P9zjD55UnHs+7SGiJjQclvC x2QBpW/E4XIlhXVKf5RS4NG0LVRpz6qbkyM6ugo28l9WM+G7QPx8Vi4Q+sU1EVd0 KAoPNsFIZKAsqLKISzN47VFUR0+A63v/jhQ6vfX4DDbzXfhq7jRrYdyo86SaSIsG zXhv5aGk4LKtqknFWH+kud8yoLj/R30cKVUn4oEek7sh27QZKrhz -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0Z2RzcT8MiZREulx7PuE t5yNxPsZUDhBXixw6+0NyZ8klUu7h3xfvBujXKfD2nVphOOYUqMR5aNS1B6kKD8v xWD5ZwZcVD1anNyR7xRe8ueI7sb0DFYgBacpQQLoyyoSxNxWjmg8/3Zfa4MnZO5M AbDcpcdi06YZSpc2yIwsMi1ngOSL6gxNuJt8BT973LPEekYyDLIZMFaQL2cCtYYB eVxyud3rAyX469RM8P6Fk5fo1VJYRibiLEDd6LRrBAJhGPFsU8V8tzYk0SFCNORW b4VwZ1u0npRSMqa6Kjjh3nKInoo6ObB+MJmQRKShJGHuVgfo1M0NKI4A8BMjA6od rVOTiW6aSV9twPkIYJA/R37Z8EJNzO4Hn6kgWSxH7OYoVZ0Pe2dyC0x0mWWBnphf A6YKYULU/H9OWS/OGqx9EieI+m1ocKzDrax8l7NbxdJGiW6lNBIbWLDho5cotXok FrjtIYwCpr09TAKz/81YFlAfEsX7/DfCIs/d+RplRfzBQAOQF96HI7YfYFkx1xRN d+OgmG2LYBQlQF1ICLIhdQLiMUfboN6rRXZRq/+MrvS9vab/Q+R5IUJhWnTsLiBd kRlvmDcKcabumwBSgNJWt19MDS2jxMX9s2xLRlB2GljDWKh1FHgDewFruyPWfwpe I8tx+1yAXOAFx8RnlsWNPXsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 316531566132769200710524690766584656999488 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-23 23:16:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-21 23:16:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.cailyn.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 855156655777983478831859623025265596963093596561427297269538004067187263526395333627959432337271078495033469415494491014544432906780144322117490270582097548648704417465899567139028729974695287321069309617279196808360130865289066628861954290864695690171050277041923515003381836970257465454092965380775978297972274872995389995078733860759729975661918966792085370320477401315667966966794445389708428655587575061301054755464033493928018701748730519941404873427626644827263233776524494276885367322027973406055223475795996475771189403228249174042413909178964331797794347872385731034957191773890493533116887522854122527064223588768055602460734782414865101478321761242731777584347109898956057327401121685457504401282897944401283614844337050238849835779423683022840241709311571041086739089859218720870720674606699842745728601547974945924483528186415911855870622505981307809019523737300079952038758110726916494478027225972697729417650206510295397294418705685574344753867702017860162137232632555793721888550261120158052547641138605232932736937092940957282573527701222591113419067046531601673964954499275451426784071914920241585973004482797215745976401012717576636256876695911326325102301942720462626845757131298541225723058708906212967618264443 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 854eeb9d7e83124f99d11eb66a931b9867b627ff . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cailyn.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000169ad0df2af0000040300473045022074f617559f78bc195a09c76f04751a6a50f67165cc563cdb2a9d901bdb2e7a03022100f6eec7250d9808610d72d19b98a1ee8e110646525eead45bfaef1a153dcc0cc800750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000169ad0df4a900000403004630440220117408ae32c2bc00339eafb69766bba93e76e1a9ad9eff086414102aae63e40802205228b67f291167882c28548396e4337147492323c19cc6523fa89b0ed0b0be50 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 003ff553a0582b6902fa48fd7ed840acba2b579bd6264305e96d87ec158c42068eb37fc21ca99937b309fcb2e2c29ba6de6325c0c478fc56020841ea9c95ef51d25714d591b16a1acfbe63a6dd672b35d350ef1dd64c53b8bc0e6e5aa79e018e86c0f69e928598d7d8ff738c3e795271ecfbb4868898d0725bc2c76401a56fc4e1722585754a7f9452e0d1b42d5469cfaa9b93233aba0a36f25f5633e1bb40fc7c562e10fac535115774280a0f36c14864a02ca8b2884b3378ed5154474f80eb7bff8e143abdf5f80c36f35df86aee346b61dca8f3a49a488b06cd786fe5a1a4e0b2adaa49c5587fa4b9df32a0b8ff477d1c295527e2811e93bb21dbb4192ab873