www.jaquan.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:a8:9a:a4:d6:16:2e:05:08:6c:14:2c:31:78:29:67:e8:02 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.jaquan.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a8:9a:a4:d6:16:2e:05:08:6c:14:2c:31:78:29:67:e8:02Serial Number (int): 318709852428226995709501697756982854281218
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d0:4c:73:9a:6f:f3:8d:0d:d7:7b:21:b7:94:26:d9:18:21:18:81:3d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): d2:84:5e:ce:65:20:3d:2a:4a:a3:bc:f6:06:10:c8:6c:66:d1:c0:92
Fingerprint (sha256): d9:52:93:1a:b6:2a:06:38:96:ab:e2:a0:0b:b6:af:67:9d:5c:30:b4:5c:f7:da:a5:13:50:ca:54:42:b7:6b:49
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.jaquan.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.jaquan.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.jaquan.org
Other certificates including the domain name jaquan.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.jaquan.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgISA6iapNYWLgUIbBQsMXgpZ+gCMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MTcxNTI1MTRaFw0x OTA5MTUxNTI1MTRaMBkxFzAVBgNVBAMTDnd3dy5qYXF1YW4ub3JnMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4hmHVKHdQUyWCBrGnEZ6n+LtLsgnePuq RB8rVqdi6ZpDTte9V7ANI9vDHI+Eu0/Bkp+G+1TkhjMnE7dLFNsYUcoVKDDdm3md 59yvy6Vjsh57vpj5a9GpdqJYOlm8gZvRH6+fGNArwgow60iQ7Hppjss1jJ9FlRcz Ntx/TS4eVf0j3MnQT/Ng6HsrhS/P9cE67YWCjbiD7VdMwnsyB5QoLBgLkQJAdbuw hJkWuJaIfAc0pRr0bClW7h2HIk4CDn+gFhSYbcM5fDr8b/vgd2yQ4e+9FFADjSPa 5Dt/HbGVqkf2OZoFAzDf2tF3sQt3azkktOcRcR0rBz411JWnSDiZLBCH4YVFLRUv 9HtxERjV722eP0Kf0L6Hyyuh5OtWcEh3DLIqvJei/Uzx9ejUNyQ1cjZSCwNGXg2e nm5zMZoFtQkZYUemv/0Jle4ZtF1Tu9tedUcOXLrJXocVvUuPAyfF/qDuC4uNXxtl gDWRNnxDXxcj/PtoPy5eEg9qPIzQENdHads3DvEq6j1TM7DDOpwj4vUahFUzQ4Yd co6+VW8EwFZTbL2mih5V8HhVuPHW/nX+jNJPn1Oe00X41NuO9J8xmjOalaz80Uet EVzMAfmCoYk9NTt04IVVzcbC3yjKv3oiUa5/rrleJMMidNgfYW252voqSGBrvv8H pAlaop/fKGsCAwEAAaOCAmEwggJdMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU0Exz mm/zjQ3XeyG3lCbZGCEYgT0wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAZBgNVHREEEjAQgg53d3cuamFxdWFuLm9yZzBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQIGCisGAQQB1nkCBAIEgfME gfAA7gB1AGPy283oO8wszwtyhCdXazOkjWF3j711pjixx2hUS9iNAAABa2ZBwzcA AAQDAEYwRAIgTJROQ681XOWIcd0il8ZQZHvA9Tq+sdN+ZHr31E0LATsCIFOyHsh7 TzoAUqAE+z2tlFjEBNc04uwDYIHswMhRQ2r9AHUAb1N2rDHwMRnYmQCkURX/dxUc EdkCwQApBo2yCJo32RMAAAFrZkHECwAABAMARjBEAiASg5KVwY9JzJbSAQ4xeqWn tNZJ/rVejDxJt9LYxbHzRwIgZ3eC46oGnVgQkMsldZeOACqEt6N0v9TRfXGcxOA4 yhIwDQYJKoZIhvcNAQELBQADggEBACzKpMjHYJZJka0XnK8Lcw6VRypLKJXHSDRF rZ/uKcAWwlVwjycGvcVoU6COXx6O0kAtvyHCqqyRouFMYYUafjFb6vvLu+pyPxXm /EjPYPJ4VqHvUyqmbo4DF0ypzYpdfQefotVUPFvGBOeF0xSbgdDYB69ZKDfVRh4f hlHkN7hLCfzURgwrZ8ANBEurnByUqHFW/1G7fjEHEOEnfs7IBtWkNL2uupljj4c0 Q8+qIJckgjCwNIBn5Our29WCxxOFZHFeVmDsZ2okkgyYQ+rhg4GfuEtJvDhiFNuy 7Gitxy+o3UjLYzg9wJdE2BJhzbEdZV6dx8QAJhgExyYVxWdGwI8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4hmHVKHdQUyWCBrGnEZ6 n+LtLsgnePuqRB8rVqdi6ZpDTte9V7ANI9vDHI+Eu0/Bkp+G+1TkhjMnE7dLFNsY UcoVKDDdm3md59yvy6Vjsh57vpj5a9GpdqJYOlm8gZvRH6+fGNArwgow60iQ7Hpp jss1jJ9FlRczNtx/TS4eVf0j3MnQT/Ng6HsrhS/P9cE67YWCjbiD7VdMwnsyB5Qo LBgLkQJAdbuwhJkWuJaIfAc0pRr0bClW7h2HIk4CDn+gFhSYbcM5fDr8b/vgd2yQ 4e+9FFADjSPa5Dt/HbGVqkf2OZoFAzDf2tF3sQt3azkktOcRcR0rBz411JWnSDiZ LBCH4YVFLRUv9HtxERjV722eP0Kf0L6Hyyuh5OtWcEh3DLIqvJei/Uzx9ejUNyQ1 cjZSCwNGXg2enm5zMZoFtQkZYUemv/0Jle4ZtF1Tu9tedUcOXLrJXocVvUuPAyfF /qDuC4uNXxtlgDWRNnxDXxcj/PtoPy5eEg9qPIzQENdHads3DvEq6j1TM7DDOpwj 4vUahFUzQ4Ydco6+VW8EwFZTbL2mih5V8HhVuPHW/nX+jNJPn1Oe00X41NuO9J8x mjOalaz80UetEVzMAfmCoYk9NTt04IVVzcbC3yjKv3oiUa5/rrleJMMidNgfYW25 2voqSGBrvv8HpAlaop/fKGsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 318709852428226995709501697756982854281218 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-17 15:25:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-15 15:25:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.jaquan.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 922406386501055807232720665153723240266130710332149853297643543808079942621862784170437794564192836557588040365724571870746220989751816080842386472329000980461198843509765641402232549853421475120993039189598556169025898315645603503407535674905373256747944076842030344820688096311502196958338857241703566498798159163172225084094913965833887257211389606066816531338445547792810158150945332790868612428805802939031156649284354838768551384517376974046953154142155291128141979549684951307807568997786198505759614282707654305101905095670281149227213180260489295568018299962821608797641046364939507158166262950141872176267378278000677304546602461434382269041892240752467206540790009567306777144157833671356458791691192340703633395332134576372353549964123281401372211676076750458826114862514876164047467212198352758606419449787282528479627516257243687712111430866510399020663768032471242687349355474806288296571937282383227453896581876457935931750251097074661377393821524342899202773929881448788397233570750589916829479914080192017121973418648545912892643369915402606676544315849432824038913863774942378436546853779386920853093152067728964346082218448062160713285062664892204330110161510399977384655281897114080189350123628200208734984546411 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d04c739a6ff38d0dd77b21b79426d9182118813d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jaquan.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee00750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016b6641c337000004030046304402204c944e43af355ce58871dd2297c650647bc0f53abeb1d37e647af7d44d0b013b022053b21ec87b4f3a0052a004fb3dad9458c404d734e2ec036081ecc0c851436afd0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016b6641c40b0000040300463044022012839295c18f49cc96d2010e317aa5a7b4d649feb55e8c3c49b7d2d8c5b1f3470220677782e3aa069d581090cb2575978e002a84b7a374bfd4d17d719cc4e038ca12 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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