innomatic.be
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:48:cd:d6:c2:e1:6f:7e:0c:f0:59:88:d5:22:11:cb:62:28 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=innomatic.be
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:48:cd:d6:c2:e1:6f:7e:0c:f0:59:88:d5:22:11:cb:62:28Serial Number (int): 286110795056900248412271503179410370683432
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: bf:5e:44:ed:d1:d8:87:d6:1a:cc:ae:23:09:55:e9:9e:f7:b3:c0:7f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): b8:cc:d6:24:4b:8c:63:90:62:d8:d4:3e:11:c1:48:a0:39:15:d0:58
Fingerprint (sha256): d0:45:f1:7c:7f:2b:92:f2:3d:13:bc:7a:59:c4:61:10:3c:22:23:92:30:67:41:77:aa:50:a4:8b:ad:16:96:3e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate innomatic.be
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for innomatic.be
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
innomatic.be
www.innomatic.be
www.innomatic.be
Other certificates including the domain name innomatic.be
(limited to 100 certificates)
Certificate
The complete raw certificate details for innomatic.be in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGDTCCBPWgAwIBAgISA0jN1sLhb34M8FmI1SIRy2IoMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODAzMTYxMDI0MTBaFw0x ODA2MTQxMDI0MTBaMBcxFTATBgNVBAMTDGlubm9tYXRpYy5iZTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAK3gEIajRVRR3ZcwjEKc2efqZ6xVU5Qzk0aM Ur5XO6IkutSAWWZdQAt7t/g/Dh70YsM10Yui0jRsf0AVc6+hQdRwJO63wT8ZW4qU trsJkpe7YdHBN3gg/PmhkJcMAXV65bgGQCr1+kb9NYiIaECTRDEy4nKE7ZUQV01S obiWYbsXvIGk4VGuwckZ9KiGeeeRsPcoGioHwIK6MVTDLX5uoQgo0lEZcfWMDYhT 5L7tVMTjwCDAr2iVTD9LBzq3UE5Vfp6NzXPZtNITVM0CdEtY8Xzoow6xvQCO0eju AvsPhyQaLVIbfNHU5+WxoGGLYdkQmbH9tAxDtRFuAtZMGbP1jUxxEcIIOajZWbr2 xhj8qsG7U0vf1bY5RA910lJ8NNHgEjXB65+vfWRp0lrE7KEVesP8ptYhAgoo3GRm z/kqGgVXgeeoaIOGS7aZ2tAJKEUnUEqefU0JrJfEyWgr9xbGK2428TEZuICQuCPI Pcl0C/j2/KNvOzR5RanZDU/oRh0hnb3brLZE2vnjnWCFhgyCSaVRpl+BU7T3WJOj o2oKaZVFuQ9yVS+S5xjuoGXn2uSGhEABZuht3X7yF7BLZ3MzzJWQ/J8twSQ4SGki izKt1Pg0we8P2Ls1S6N/PDVBTVtirr5psHDON8x59w2X27EllJOXGS4bWF0NYmEW /jfNvREVAgMBAAGjggIeMIICGjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFL9eRO3R 2IfWGsyuIwlV6Z73s8B/MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wKQYDVR0RBCIwIIIMaW5ub21hdGljLmJlghB3d3cu aW5ub21hdGljLmJlMIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLf EwEBATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcw gasGCCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSBy ZWxpZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3Jk YW5jZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6 Ly9sZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEB AI1KM39+8m/X/dYS4l5o4WMURJRAbnth1wyGyMuoSeTwHkRbZh1rubiWcs8TISUd Qou2q9j+fKRc+1GG5cHR69ATcChGaYy0sblnCpaJjzH9dYnMxAl4AMOtQjO9ZtYx UDCNUr5u456pLsm8w0hPfK1o1R+tISoxzm09fmJex/lsuiq9ssioiel87FyOWvt/ 2BrA0qoR5vVNONHTy3KmpQYIrodQlWAKin71zDwMyLqJr/BADLopB9A1yZignMF4 ulrI8QKOvAiDBO+x96DKtUhvT9r3NzOe3YVQ1EqrwegnhFvwNe3r42BGwIexTeaP 3pFQvEv4FD3BkrhOGHZ9/Fk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAreAQhqNFVFHdlzCMQpzZ 5+pnrFVTlDOTRoxSvlc7oiS61IBZZl1AC3u3+D8OHvRiwzXRi6LSNGx/QBVzr6FB 1HAk7rfBPxlbipS2uwmSl7th0cE3eCD8+aGQlwwBdXrluAZAKvX6Rv01iIhoQJNE MTLicoTtlRBXTVKhuJZhuxe8gaThUa7ByRn0qIZ555Gw9ygaKgfAgroxVMMtfm6h CCjSURlx9YwNiFPkvu1UxOPAIMCvaJVMP0sHOrdQTlV+no3Nc9m00hNUzQJ0S1jx fOijDrG9AI7R6O4C+w+HJBotUht80dTn5bGgYYth2RCZsf20DEO1EW4C1kwZs/WN THERwgg5qNlZuvbGGPyqwbtTS9/VtjlED3XSUnw00eASNcHrn699ZGnSWsTsoRV6 w/ym1iECCijcZGbP+SoaBVeB56hog4ZLtpna0AkoRSdQSp59TQmsl8TJaCv3FsYr bjbxMRm4gJC4I8g9yXQL+Pb8o287NHlFqdkNT+hGHSGdvdustkTa+eOdYIWGDIJJ pVGmX4FTtPdYk6OjagpplUW5D3JVL5LnGO6gZefa5IaEQAFm6G3dfvIXsEtnczPM lZD8ny3BJDhIaSKLMq3U+DTB7w/YuzVLo388NUFNW2KuvmmwcM43zHn3DZfbsSWU k5cZLhtYXQ1iYRb+N829ERUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 286110795056900248412271503179410370683432 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-16 10:24:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-14 10:24:10 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'innomatic.be' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 709349141073146101268502741565343677334644028936908775765998094899436333334796818607517995906501197600190664798773664849953874806424807904371418686476145874888468738454528773692517148583676294916488164084158161165573533537452437015544230162309620424742905689828715197101510672812403834288362831993759743444797089966397060694757647186482679589581863459224960447614028422177568780889677594991923342898818123365090500843330741353537825917228666796413053262019148206407365437315902409664476611020203455027017919163924881185163407060562774389669718160713899339120636244150860380706766273773931702592675873629102726856296095175039217479723900742890779175966116921765554455514055592214930653449914016937206414803939134858772066203639119351276128611291049739643320932406694331590788433349615466272778627025566727686531320392286214035570884810812012012296229107858022867602011699973174704814876531292834624469429889769133513611033094747367376377263257985412145457152309376146815161132924643809004415309323614769911460749299820947234010631472767867601260769650751996226664563379648075404832183257881836569243316177852186684663653585956378252314319124293328209986513539247320589683717025812017622383247515437336888291740717701101952725960954133 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bf5e44edd1d887d61accae230955e99ef7b3c07f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'innomatic.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.innomatic.be' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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