friendol.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:a5:7b:86:82:1b:49:e4:1c:ae:c3:09:18:73:8d:61:bf:de was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=friendol.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a5:7b:86:82:1b:49:e4:1c:ae:c3:09:18:73:8d:61:bf:deSerial Number (int): 317647641787371451769454071422571721637854
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ea:cf:19:1c:94:93:da:64:34:89:bf:6e:d3:2c:d2:bd:13:c4:15:07
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): de:59:d6:5a:4e:c0:ed:29:9e:72:ff:82:e9:2d:05:a8:f3:c0:b1:d4
Fingerprint (sha256): cf:a6:e1:a4:e8:e5:10:54:0e:dd:32:63:2f:55:60:65:6a:e0:4b:11:4c:f9:b0:f0:4b:7d:93:28:92:02:6f:f1
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate friendol.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for friendol.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
friendol.com
Other certificates including the domain name friendol.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for friendol.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTjCCBTagAwIBAgISA6V7hoIbSeQcrsMJGHONYb/eMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMTkwOTAwNDNaFw0y MDA1MTkwOTAwNDNaMBcxFTATBgNVBAMTDGZyaWVuZG9sLmNvbTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAKTWBgtSw6q/Ii8nWtuFmreSTmXTP48xm3qr QS0DhXzV/SoNf+XJYcxGuEr/EQsNwaq8DsoKQqZEZUH8iLvHF7Yuk+h5FgC7ugQF Y4cBIemdInHhx/HChOGxMvUwsgxUJUA8SiD/wykWbc3406e4BQOCjj1M3Ct4Ex1G CroeqvVK7O7VFZTGGM427HEybcwUhjsPqGnNWJ94ufLiVF6tTyILl6ytVQbiaeEw Vg0jWTK969FBoIYeDFZhhNwqkiejJTxLPp6ZF2VyQiyZIx/YSlrEwLQ+q3mvMRGA z9648hK1gBNTOJx4ZIuNoB/M4fb+QgVEgkEY03DJreDp+ulMU73eg0HTx3QlghQS FlzikUyAAiHdFI/xVXDYWfaK+z1sOmWlf0haziwR49ud0E8fx7wqiK4cD7nfomo3 2UyM+55MOefRhu4jfeON3Kc3AboksTG0K4UIsdhALpqg59sDcNxLYIbUoS/lN01j taaLBe3n5fiU9XHl5/9bZEDwuoPo5qzxoBOX8THKj+WyAP+Tv9NjR3VoUwQwXram bwTRNU/gu4mtYr2Zf2dWR8y8zSC3kWpw28qdHCFISEU54iG1+sCQECvQlOFdnlKL BYpQmWD5ihoxVGsHI9+gH6ZI0mfYxyJwQxFtHFuPwZ2eHS9LmM+GCDQ3wiqYitta 5sYiQryJAgMBAAGjggJfMIICWzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFOrPGRyU k9pkNIm/btMs0r0TxBUHMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMZnJpZW5kb2wuY29tMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADu AHUAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFwXOR+nwAABAMA RjBEAiBb5Nkfi5e53QJki0msWAq9VCCy/AgCY8bPBZjcel8LZgIgLeSDHKOIGwT8 UKS0DB4Or+GqRE9L83hpMX7yIurFVjQAdQAHt1wb5X1o//Gwxh0jFce65ld8V5S3 au68YToaadOiHAAAAXBc5H6nAAAEAwBGMEQCIAWhU8R6KlSx5PRhCfn2F4Q3OkRD 4BPMObvs/XwBeUZpAiBEIgnYFuCmnx31gJAbvJtwtB6X6wEk4e9rRlsOkxuaezAN BgkqhkiG9w0BAQsFAAOCAQEAi0+kIk2Xg95+3b0TsgAr/Q3ePrtE0UvKHeu7J1N3 YX8UjWmuFSLz5xEmsDxcSklbcjoePWMw1snuk8kkzOxx5bgfcqDJTQZSgPQc3b+W 7xHrPy5/H19DYe6SURQcv5wa54pn/aww+ufL4gtaHiX2bQXgmw5mQfBfdb3TiqPx EiMyFW7eq+2jjC4yuDeHxU3ijJRXTD4ZNDsHvTOSr3Vev582jPCsHorjtwEnF57x boE7cBl35l+g7pb62k4w2TP2HXJwyJ/cbA18AjDsn2KqorlftmZ+dTGtjkZCHHn4 0QgDfwuzWfuoT3LaXPDAt66uv0SRtK7Dt5KnboZzHY2Kmw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApNYGC1LDqr8iLyda24Wa t5JOZdM/jzGbeqtBLQOFfNX9Kg1/5clhzEa4Sv8RCw3BqrwOygpCpkRlQfyIu8cX ti6T6HkWALu6BAVjhwEh6Z0iceHH8cKE4bEy9TCyDFQlQDxKIP/DKRZtzfjTp7gF A4KOPUzcK3gTHUYKuh6q9Urs7tUVlMYYzjbscTJtzBSGOw+oac1Yn3i58uJUXq1P IguXrK1VBuJp4TBWDSNZMr3r0UGghh4MVmGE3CqSJ6MlPEs+npkXZXJCLJkjH9hK WsTAtD6rea8xEYDP3rjyErWAE1M4nHhki42gH8zh9v5CBUSCQRjTcMmt4On66UxT vd6DQdPHdCWCFBIWXOKRTIACId0Uj/FVcNhZ9or7PWw6ZaV/SFrOLBHj253QTx/H vCqIrhwPud+iajfZTIz7nkw559GG7iN9443cpzcBuiSxMbQrhQix2EAumqDn2wNw 3EtghtShL+U3TWO1posF7efl+JT1ceXn/1tkQPC6g+jmrPGgE5fxMcqP5bIA/5O/ 02NHdWhTBDBetqZvBNE1T+C7ia1ivZl/Z1ZHzLzNILeRanDbyp0cIUhIRTniIbX6 wJAQK9CU4V2eUosFilCZYPmKGjFUawcj36AfpkjSZ9jHInBDEW0cW4/BnZ4dL0uY z4YINDfCKpiK21rmxiJCvIkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 317647641787371451769454071422571721637854 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-19 09:00:43 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-19 09:00:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'friendol.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 672472330874419224090858435709008224054217761421715514883634854969043889564568978166013639926107221861904738740155727626416219798605447167534924314720874920430057660602121215062301547336647054278173992281692441918656705528334298134842036903730862978400545092341142214752920391164781868633052169489376765741234398619971605198404828809453767814134096556305708397624422682575950797534197758495771495395172100683628931648797031633742945801094635573782037009209064011983531274324279629130235935870377307815930957935664373573732340571678016287507271186468387895012756062818883639591894158265163621119841036471212526105710709170544244118732500716164514455396820221970155737492515618366310774013195738545658831268228267665118063846838391182249787760628393622348067664685592019478237488931379638365732414835883943841639312560108440286637642827375537470811709562178387789530634345982354974636474203417990123698219461188786096499219115439515415483025751363918431738483067419674628788587814755036367879415038950756308756840722333373204665293691999726609615122018656260341176020314485031460391908661291022879629119728248013321269789583538976024782938687233058787303385389469934990728151032182506614702646172356500499827335535516447286873192316041 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) eacf191c9493da643489bf6ed32cd2bd13c41507 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'friendol.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d913000001705ce47e9f000004030046304402205be4d91f8b97b9dd02648b49ac580abd5420b2fc080263c6cf0598dc7a5f0b6602202de4831ca3881b04fc50a4b40c1e0eafe1aa444f4bf37869317ef222eac5563400750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c000001705ce47ea70000040300463044022005a153c47a2a54b1e4f46109f9f61784373a4443e013cc39bbecfd7c017946690220442209d816e0a69f1df580901bbc9b70b41e97eb0124e1ef6b465b0e931b9a7b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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