almeno.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:7a:50:b0:2f:ae:49:6c:bc:b1:ec:61:38:57:9a:db:9a:e3 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=almeno.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:7a:50:b0:2f:ae:49:6c:bc:b1:ec:61:38:57:9a:db:9a:e3Serial Number (int): 302958559610626803391801313220969807715043
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 75:5d:fd:e5:24:57:f0:20:86:e7:13:ee:ea:2d:bb:a7:12:07:ef:2f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 57:49:b1:f8:71:80:b7:78:46:3d:8c:52:80:16:a1:e9:e7:73:8a:4b
Fingerprint (sha256): d1:4b:2b:6d:ed:71:61:23:c4:05:b8:c7:d7:07:11:5c:b1:af:27:c5:3a:ad:02:b3:2f:b8:11:6a:43:58:46:53
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate almeno.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for almeno.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
almeno.com
Other certificates including the domain name almeno.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for almeno.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTTCCBTWgAwIBAgISA3pQsC+uSWy8sexhOFea25rjMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjcxNjA1MjhaFw0x OTA4MjUxNjA1MjhaMBUxEzARBgNVBAMTCmFsbWVuby5jb20wggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQC8uk8rtlwalLQVC7QSgtzOhgVZZ2cIDsAm4fTU W+iT+vhtBcBr2PsaNePUKEC/pd8NMZaneVwKcvESQZ5LQIHTafRjxmGKNl06JFAW JUxcNgrgeDLFEmxpRgg2GdPhcxT50OtgQvpYh9LU0MH90BFcidG1NH5j2EFGr5Pb RDGOssxutC6smV2lHYLfjkD/4z64WnE5BMhQRj2S8j5DLZe8vBi6nfhwKOW8ltsU U2AbYS0Fk7SKYNfSzDnckedSGPt0vN/1DB/thceHsnvncx5gmzUAjXP6C8ffQjI3 GkauLufgH0h6eY95XCjqPWbYH5P/ZpWJFE4YG23Jej5wrYWSUzo6gzPi5IZYyswX 6TOlDdJcRUU2VL8qjj9jh1319lkKa5GoCNMJvPaCXhE52w17SMLbeiJXYhcB4FE7 u0uboPnztAyKG8XUIFH3VedKZ4DPMO8IkkEkGFIaZCDqE5ORy2wcuoF74183lwqM lUwyH82fhi2GxBMI3fCLa/jqYp0zpcf7KIofVTzk1+KvW9kGXCzh4VINwPIo7LXX buqadZLASpjw76V6GG7aNXVhRRxox9JuBl9fjLWkYPQWWRhTpdVrdSrbnDdWpXdT 7RsXPRecOajZE//HvKpUQpfmtHMjTAcwb9tU3DUhyUIi0O85h59V4Ws2/PNC1x4R hca1AwIDAQABo4ICYDCCAlwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBR1Xf3lJFfw IIbnE+7qLbunEgfvLzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMBUGA1UdEQQOMAyCCmFsbWVuby5jb20wTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwBv U3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAWr6QQ09AAAEAwBIMEYC IQCCePduXFOP7xImC+7zpi/abY1Eezemxfklpca2QT6R9AIhAKJMTPKThKpigSY4 5lJKp0MUgYutxk23Z2RslNBrEKhAAHYAY/Lbzeg7zCzPC3KEJ1drM6SNYXePvXWm OLHHaFRL2I0AAAFq+kEMKQAABAMARzBFAiBfg/S5h/EIBAyEcr7ds5lvDAF5M+0V g/NGn3PyqNIXGAIhAMQYTS/taWZLVxXm839RWWFkFnftnXE89JxNI4tvZ4PaMA0G CSqGSIb3DQEBCwUAA4IBAQA72GCgGI5XNJP+r9bvXLU+IyQUv2IkJPd50R6gmtpY gxXBG1Snz7vipAk/+qD7IqfEXLGtM55d0rmckkfC/mGgc+mYxBaP/5Cj0xcWmmWs T6vh/CyELj3HlTA99BzJSyjcjDIdcUvmadHyt4WDKazZfyzax7D5TFMaTu5w7xmc n5F3HaUb5v6KiF01fjsn6IeeUVCEBYbDDjL8dX9R4QIqRnMMrGE6RxW+nAqNg0Ux pdAc6cuuTTx1iSqhMbgQOYVU5uzsPFXop6DjWCcztD/5sZg51qpkr4xHbNaY+ALA PFPDWeLIhVqRkPgjaUQ2WCRNbcd93pd9YQUkT8U2zbkZ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvLpPK7ZcGpS0FQu0EoLc zoYFWWdnCA7AJuH01Fvok/r4bQXAa9j7GjXj1ChAv6XfDTGWp3lcCnLxEkGeS0CB 02n0Y8ZhijZdOiRQFiVMXDYK4HgyxRJsaUYINhnT4XMU+dDrYEL6WIfS1NDB/dAR XInRtTR+Y9hBRq+T20QxjrLMbrQurJldpR2C345A/+M+uFpxOQTIUEY9kvI+Qy2X vLwYup34cCjlvJbbFFNgG2EtBZO0imDX0sw53JHnUhj7dLzf9Qwf7YXHh7J753Me YJs1AI1z+gvH30IyNxpGri7n4B9IenmPeVwo6j1m2B+T/2aViRROGBttyXo+cK2F klM6OoMz4uSGWMrMF+kzpQ3SXEVFNlS/Ko4/Y4dd9fZZCmuRqAjTCbz2gl4ROdsN e0jC23oiV2IXAeBRO7tLm6D587QMihvF1CBR91XnSmeAzzDvCJJBJBhSGmQg6hOT kctsHLqBe+NfN5cKjJVMMh/Nn4YthsQTCN3wi2v46mKdM6XH+yiKH1U85Nfir1vZ Blws4eFSDcDyKOy1127qmnWSwEqY8O+lehhu2jV1YUUcaMfSbgZfX4y1pGD0FlkY U6XVa3Uq25w3VqV3U+0bFz0XnDmo2RP/x7yqVEKX5rRzI0wHMG/bVNw1IclCItDv OYefVeFrNvzzQtceEYXGtQMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 302958559610626803391801313220969807715043 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-27 16:05:28 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-25 16:05:28 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'almeno.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 769942129594133190799196713978462548710794229831975168166747036560656513528112146226256424744516413025112400816866454834584197511870159345627042621241193222481995882728497720283512860004469018267226337886103178009095139657068797901133553349072234205509201042192410278638249248116884626536129807744886417910153461027786084276285265196283706868770678066535440171252428702048351781541106697065595807948658913944054723085233526113623625720476578537702962807060430771686144857714391486481062001755260000769260801168601937717559761225963692534838825969711409030947297831691833144694289252545540456925783347371745294829478683261765930263690133024427376389670705883594139919915687944961504284009348822639040198559165988011537402537542446598972723044349372854481814245813490797260278014054689705030385587544362731153319499166834627337435002009486763705178552876008765083867697027707907105600993144270258027933220453007313843721948660219251409912072968886265963917997570791166289004353790120289676554340597064141996806684547668729117949186610735236434572092923029193097084448687057265886887241925747812239690605452413372748886715845171897408787886549598622430243390242486651626350972410974495302516858872401693431561680363278134121964226655491 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 755dfde52457f02086e713eeea2dbba71207ef2f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'almeno.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016afa410d3d00000403004830460221008278f76e5c538fef12260beef3a62fda6d8d447b37a6c5f925a5c6b6413e91f4022100a24c4cf29384aa62812638e6524aa74314818badc64db767646c94d06b10a84000760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016afa410c29000004030047304502205f83f4b987f108040c8472beddb3996f0c017933ed1583f3469f73f2a8d21718022100c4184d2fed69664b5715e6f37f515961641677ed9d713cf49c4d238b6f6783da . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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