www.lawrencecounty.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:4d:44:e4:97:bd:f5:ee:5f:22:67:45:9a:fb:14:d5:f8:b3 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.lawrencecounty.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:4d:44:e4:97:bd:f5:ee:5f:22:67:45:9a:fb:14:d5:f8:b3Serial Number (int): 287630174473284206714217245453387063228595
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 45:17:8f:24:73:10:cb:4d:16:1b:86:66:26:bf:94:06:2c:a8:e6:8c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 34:3d:f5:ea:ff:24:06:48:04:32:aa:35:52:aa:18:18:26:e4:bc:ac
Fingerprint (sha256): d7:9e:ce:4e:a3:c0:5e:9d:98:14:39:59:ab:84:c6:35:63:6e:96:66:ba:a1:c8:c4:f8:7e:46:7e:2b:15:1a:75
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.lawrencecounty.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.lawrencecounty.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.lawrencecounty.org
Other certificates including the domain name lawrencecounty.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.lawrencecounty.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYzCCBUugAwIBAgISA01E5Je99e5fImdFmvsU1fizMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjQxOTU1MTlaFw0x OTA4MjIxOTU1MTlaMCExHzAdBgNVBAMTFnd3dy5sYXdyZW5jZWNvdW50eS5vcmcw ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDde5HrlhEpeizKzMUBqwPT e9fBQxhJCwGS22SKUnXMgMZ/+V5sz1svPIdxzFEZCo40/mz4HzoOF2nXARkaRqtL liYXHmb+auUIEwWALIZtztnwczcLb7zzgXhB2g/6Y0m+CICH1XDKkkXTgS+nuCMq OKzHWyh4bmIlqxR/I2USHWfA2Mv877qQk+EjCRAG2A7X9Fe/he7j9IetnDhzVv7a PqW3xGjjGiQ5qDeeMuSyZloFYZeuZEYtBNL0S8BLb1P7SxlSppw7JG0PbMnPpBQl Ycto7nECMmyPv+S1t30N9UQmNPjMpCD1269AMsxOLWEuZrTJSkI8T1jYYvpIsAgd uNfMtr8GIklXDXBMkQBZSyRX2PlKk7kZDxdywnzn7E/tPyDuErXalAUJf/dEvCVN +TasT7evYCORcTBVNrnW7dtsRGZ5KmjGJTB8KRv101EdNttGW3niboh7Kbvx8WCu 1AjMruUkEryrCCcZtc6iOmVN2eH2ReV3O6sC8cD4KbfhQg/JHP5Ssp8TS230jskk Fr48w8m+g3sEMUsNX/F1hboyeI55S65wowdMuhNEgXlQN7Ml7gFctrLJQgKPchWY 6xneHHC2henWWRk7tROgPb9KEaHj06htaLqlMqSHrSObeQ6B60uRRf0BWGtn+KDD iSzsK7CODLQzZNSN4Q1vVQIDAQABo4ICajCCAmYwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBRFF48kcxDLTRYbhmYmv5QGLKjmjDAfBgNVHSMEGDAWgBSoSmpjBH3duubR ObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9v Y3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9j ZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMCEGA1UdEQQaMBiCFnd3dy5sYXdy ZW5jZWNvdW50eS5vcmcwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMB AQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggED BgorBgEEAdZ5AgQCBIH0BIHxAO8AdQBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkG jbIImjfZEwAAAWrroGgkAAAEAwBGMEQCIA0WQD4ec7J4p3xy5olWZepHopZEDHr7 u9e3MdrnrCFoAiAWSbPV4beFOwI6wCTPZXfr91uVqwZvqROuJHKQKJDylgB2ACk8 UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVFR/R4AAABauugZ9sAAAQDAEcwRQIg X63t8uEkRajwczCHtVuWGWaqWsfO7i/+sd1L6Y2QnRMCIQCmDmNTjoN4fmVJKMr9 RRnBxIFvJCEQGU3urtbRJegHNzANBgkqhkiG9w0BAQsFAAOCAQEAWy5990se7jEF +41rJF4DjRSjjWdBCy9wtzkqnK0P7Ple06zdE3S/+DSPFLCeFWIlrQJprrXM5uan thcosnmfi+2Ivm9zJJh55Za4JcSe7TDj3px7FUflK6TPy2A7RXZU29RHCWaZIV7A i13cWsDcuMGMHR6ujJgUwSUDKFrWA0bAIa+UZC+ZOe1GoiDPYwiQclN7EOvxC7CK SDRPZrbUqMrRe4erACc+rAmO0FZY15YBaM78+bIzRC8VPxIZh5+JkBvDYNFiQpPt ZXOsBzVxKCFoGUso5nShXr0oqp/X+e0gNvu4FwqhuTOBaeR4q8EjAQ6E2tb8Bc5f fWq6og+g5A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3XuR65YRKXosyszFAasD 03vXwUMYSQsBkttkilJ1zIDGf/lebM9bLzyHccxRGQqONP5s+B86Dhdp1wEZGkar S5YmFx5m/mrlCBMFgCyGbc7Z8HM3C2+884F4QdoP+mNJvgiAh9VwypJF04Evp7gj Kjisx1soeG5iJasUfyNlEh1nwNjL/O+6kJPhIwkQBtgO1/RXv4Xu4/SHrZw4c1b+ 2j6lt8Ro4xokOag3njLksmZaBWGXrmRGLQTS9EvAS29T+0sZUqacOyRtD2zJz6QU JWHLaO5xAjJsj7/ktbd9DfVEJjT4zKQg9duvQDLMTi1hLma0yUpCPE9Y2GL6SLAI HbjXzLa/BiJJVw1wTJEAWUskV9j5SpO5GQ8XcsJ85+xP7T8g7hK12pQFCX/3RLwl Tfk2rE+3r2AjkXEwVTa51u3bbERmeSpoxiUwfCkb9dNRHTbbRlt54m6Ieym78fFg rtQIzK7lJBK8qwgnGbXOojplTdnh9kXldzurAvHA+Cm34UIPyRz+UrKfE0tt9I7J JBa+PMPJvoN7BDFLDV/xdYW6MniOeUuucKMHTLoTRIF5UDezJe4BXLayyUICj3IV mOsZ3hxwtoXp1lkZO7UToD2/ShGh49OobWi6pTKkh60jm3kOgetLkUX9AVhrZ/ig w4ks7Cuwjgy0M2TUjeENb1UCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 287630174473284206714217245453387063228595 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-24 19:55:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-22 19:55:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.lawrencecounty.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 903570564116847227762050669166112282164380080876415639316058374482797699005245543490698272205022492139980762424717005021114088952453827082451094540732578813708749961248336526311781275205325103149607769789561804351922582866054729153557916771981109480044443780512558199330503430864207325889554585910044508306419821113022622437475857719385166960095018276838609596646559738100579366461669434959038853930777313647236799263078524561084684099705089088359316717746657705489517047663901642298075129306348340690765033542808091323516409913395323059115782684972620766533951988003404379739331200019582432063413738506602648444829970600868442398293426314607049041260592163235398109294891944313944142185013910451797263421911174113833468623241072340062700163473845036156611034601345260924676529354279131614637584041818426102906015093508663802724348881858795083758447456114315563073196605634429481792047167296594627709289498323654337059765218741885092260746690506270614634363988549098343100490873305579929508968510835089341267459147071556521520031585724108510111462305266658096384841187337060633222937779666401052451183207328814337958169340493196193777916849812385857961762950235120912086729079360218145864655292111944099765675736350121088216707460949 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 45178f247310cb4d161b866626bf94062ca8e68c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lawrencecounty.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016aeba06824000004030046304402200d16403e1e73b278a77c72e6895665ea47a296440c7afbbbd7b731dae7ac216802201649b3d5e1b7853b023ac024cf6577ebf75b95ab066fa913ae2472902890f296007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016aeba067db000004030047304502205fadedf2e12445a8f0733087b55b961966aa5ac7ceee2ffeb1dd4be98d909d13022100a60e63538e83787e654928cafd4519c1c4816f242110194deeaed6d125e80737 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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