bfa2.clf-vps-001.clf.uk

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:06:0e:03:66:63:11:4e:b6:c7:95:35:bb:b7:cd:2a:03:1c was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=bfa2.clf-vps-001.clf.uk

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:06:0e:03:66:63:11:4e:b6:c7:95:35:bb:b7:cd:2a:03:1c
Serial Number (int): 350509464774052905859895183675705742983964
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: d6:72:9a:6e:d7:da:0a:df:c5:fb:b2:7c:08:73:65:03:61:6e:68:d6
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): bb:1f:05:34:6f:5c:f8:70:6e:8e:58:d9:a6:0b:36:fe:ea:9a:eb:6c
Fingerprint (sha256): ce:90:7e:0d:27:29:9d:76:79:76:32:a5:2e:17:f8:5f:b6:6a:b4:f8:1f:fc:39:44:50:84:af:7c:7a:80:91:42

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate bfa2.clf-vps-001.clf.uk

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for bfa2.clf-vps-001.clf.uk

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

bfa2.clf-vps-001.clf.uk

Other certificates including the domain name clf.uk

(limited to 100 certificates)
clf.uk
jca1.clf-vps-001.clf.uk
hwa1.clf-vps-001.clf.uk
hwa1.clf-vps-001.clf.uk
clf.uk
tls.automattic.com
hpa1.clf-vps-001.clf.uk
clf.uk
clf.clf.academy
tls.automattic.com
staging.p161.clf-vps-001.clf.uk
clf.uk
*.clf.uk
staging.template1.clf-vps-001.clf.uk
clfhelpdesk.clf.uk
*.clf.uk
clf.uk
sa1.clf-vps-001.clf.uk
*.clf.uk
sni.cloudflaressl.com
bfa1.clf-vps-001.clf.uk
jca1.clf-vps-001.clf.uk
*.clf.uk
clf.uk
clf.uk
tls.automattic.com
wfa1.clf-vps-001.clf.uk
ba1.clf-vps-001.clf.uk
koa1.clf-vps-001.clf.uk
epa3.clf-vps-001.clf.uk
staging.p161.clf-vps-001.clf.uk
broadoakacademy.clf.uk
ba1.clf-vps-001.clf.uk
clf.uk
sts.clf.uk
tls.automattic.com
clf.clf.academy
clf.uk
clf.clf.academy
sni.cloudflaressl.com
staging.p161.clf-vps-001.clf.uk
tls.automattic.com
bpa1.clf-vps-001.clf.uk
ba1.clf-vps-001.clf.uk
dssb1.clf-vps-001.clf.uk
clfhelpdesk.clf.uk
jca1.clf-vps-001.clf.uk
bfa2.clf-vps-001.clf.uk
hwa1.clf-vps-001.clf.uk
tls.automattic.com
demoslider.clf-vps-001.clf.uk
broadoakacademy.clf.uk
bpa1.clf-vps-001.clf.uk
clfhelpdesk.clf.uk
clfhelpdesk.clf.uk
wfa1.clf-vps-001.clf.uk
bfa1.clf-vps-001.clf.uk
clf.uk
hpa1.clf-vps-001.clf.uk
hva1.clf-vps-001.clf.uk
clf.uk
sa1.clf-vps-001.clf.uk
tls.automattic.com
portal.clf.uk
clf.uk
clf.uk

Certificate

The complete raw certificate details for bfa2.clf-vps-001.clf.uk in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzV+uzJN5xUYUzyFU8Hy7
t/dh4OB9385vZKyObT6VSyAmH+MvsvNJikQjhCP5SO461HN1QoErlTEUtREBDgdA
wGsvI7sp3SaIASHHw6jm18ecLyzLMhHe8wIUFbPyIytzjQz/eUUbM25bDxsbRdim
L2BIGiIYEezWQFl3NRjTLq7f7yLtfljP5NgK2fV4gCpxFgFxidkmErJJkxpdwf/I
6N9tM4vcBFB3jeGavs0FSIFH/ETTp1oo95BVZDLP5f0VivVUmRqqavOOeAlxhwLg
00lgIjL2wI/MWIJpMP2zFXJrKzzCu/QiCa4G/5LZ/KmAyM7YRKxyHtAoIo7J+cm0
HwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 350509464774052905859895183675705742983964
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-20 23:49:34 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-19 23:49:34 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bfa2.clf-vps-001.clf.uk'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25926035469733637105285730949194602329822512873376215233500932288632504161076210326256765312290101236114683472245381186348304298068042495539246249764405650389690230861155753021199631589199443306786436679386447901361221180565583590410568371828952756482720631559296685728000703378839875608548191990850059343653296154306659918702078700142436136936605350485158699727231087329465857991746928801104859891065738742785858084262531190600649746616587558628837581800978723897804900565690072755948162664297186840040828131139022412936340914208474019005933860937105589679154273900920125914255239940491973572555311091806668474397727
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d6729a6ed7da0adfc5fbb27c08736503616e68d6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bfa2.clf-vps-001.clf.uk'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016d514ba2ef000004030047304502202d75d8dd3772f94166f7b71010c5e3f8876ed6b333b0fa845397425a8d2cd6d9022100c58c2e791c757311f88851edd8b7cb539888555ec0c94462c03f829794dd15c3007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d514ba2ca0000040300473045022100fb348bd87459f8f1f035a219f3b581ec38ef93b6f96c5ea9b0fb49c326367bc8022036b262233c3fe99ca7fc53d22bac49a7b1f264b721209822c0ac8048bbf75349
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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