app.cafsa.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:c9:d5:a6:81:49:33:08:af:5a:32:fe:f7:3e:0f:bb:ff:df was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=app.cafsa.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:c9:d5:a6:81:49:33:08:af:5a:32:fe:f7:3e:0f:bb:ff:df
Serial Number (int): 330017603653000363927917084531689923543007
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 40:99:fc:02:1e:fc:46:d3:9e:65:63:71:32:38:18:02:cc:53:f9:0e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 48:f7:34:16:41:d3:3b:2a:a0:fc:61:b3:00:cc:b2:89:ad:c6:03:d9
Fingerprint (sha256): d9:fd:06:23:da:0a:b7:8d:cc:f7:60:f8:87:3a:da:b0:70:7e:2e:25:86:11:28:aa:ee:a7:97:09:46:e6:7c:60

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org/

Check the revocation status for certificate app.cafsa.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for app.cafsa.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

app.cafsa.org

Other certificates including the domain name cafsa.org

(limited to 100 certificates)
app.cafsa.org
app.cafsa.org
cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
cafsa.org.knechted.digital
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
cafsa.org
app.cafsa.org
app.cafsa.org
cafsa.org
app.cafsa.org
cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org
app.cafsa.org

Certificate

The complete raw certificate details for app.cafsa.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 330017603653000363927917084531689923543007
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-04-23 11:25:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-07-22 11:25:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'app.cafsa.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 795204828128896467421285616749476255915580404177275141159504531472515156261978534415771699105089218098359642107012614594183449170494436438422278908516624042827429798615297173764462060720904108242182608145722250333659434800854808590616640933942320063777514769057228240534218769486687569522521642347932470993860215724947000391179557444215758310835851400755732026789261111599693931810166585351285007706121803526500982632761726801567532965309888340772466920754802788693227947319554689222999619354632520141692497760100036585370565588363825889576170638757541114230760243420779092396458638382642522084838404231299887570305114800184955064354226533598231012802906070970157092997919571381795978745455238094815028653754905938633345206002458125773123773423929829321770106351328687631849879238798495654497556989567034555179746106999169200352908638511400757739796164333396088194797685738305952105004071142404996361593745952382853751978947543391588295246998338343309278202329290012532421326292573398811426184983793964561275615263803239462861638715516374054553226531209353295223627586519425511644853033924768595239642925491854857050511316119690136194722919342842476497960720433415863921416103107242670832447126277568860968878533296833851921749828681
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							4099fc021efc46d39e65637132381802cc53f90e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'app.cafsa.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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