mystudentloanapp.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:7d:61:34:73:23:75:7b:f4:5b:4a:d6:44:0a:90:0f:dd:b0 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=mystudentloanapp.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:7d:61:34:73:23:75:7b:f4:5b:4a:d6:44:0a:90:0f:dd:b0Serial Number (int): 391113647042472524876033505455212193635760
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: ee:db:13:c6:61:2a:11:1e:7c:b5:52:bb:55:b8:55:f3:19:a2:69:04
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 21:47:0d:dd:cf:c6:28:28:e4:80:a6:ba:be:5f:bf:eb:31:5c:98:5f
Fingerprint (sha256): da:c9:26:d5:e7:74:03:50:49:77:68:06:a3:1f:71:b8:d6:68:08:85:ef:2f:07:07:fe:07:b2:9f:1a:46:97:1f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate mystudentloanapp.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mystudentloanapp.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mystudentloanapp.com
www.mystudentloanapp.com
www.mystudentloanapp.com
Other certificates including the domain name mystudentloanapp.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for mystudentloanapp.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGejCCBWKgAwIBAgISBH1hNHMjdXv0W0rWRAqQD92wMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMTcxNzU2MzVaFw0y MDA0MTYxNzU2MzVaMB8xHTAbBgNVBAMTFG15c3R1ZGVudGxvYW5hcHAuY29tMIIC IjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1pn3pd2ToY46P23Xy9ePgidU P4Ar7kjlWiQNJkdNB/zgA8amggLU3e6hla8CLK28sXb1qA9xa0c2hdx9QTHCNRSH p7cgXIYseEglD6FWX+jpS4Y3E2uUu9cH451Bv1MM28OiXxD+Wb3doqtLmFZqzoCi 6WKfY2eSitIXKC8c9K27JOuGKcKXFtJJDXCACy7J5W6KH8TwB4MVkOx67e4pSZGB DNW4p8t+91jsAyUMiZRLZcIKvOlFH1oiANB8VYNboTrD2WOxzwRoDrtk4EXs62eb rJwkaARxGi2v8PHLngCn5zeh1v0IregMzEIh/D2qLZXtArR3z13koHDKNrHDam5j RlR8juPukdR9gXMG81neD8bCft/vpl87P4ekUNGWx78tl0p5dCE5qYG/6IHSivyQ x/sNcKgAGFNNW6xzO1lyjcwQ525MqrhhdmQOLBQ3hQhTl+JkAzYWy8fLmppG+kI6 iATiT/ug3eq+pkN+pkpCmTkzUJb1wCfbaCvVipmW+52Ye8o5+Z1PpjFtKseTHjnB OxQpTDGvmTLKaqyOpCvzMTA/uoQg9krqnc1he/P8RjKE+pPZAu5vDmmWDIBP2iZR tcjhxC+g39ZcTTa4U02ASrtmKT3k6F65GBi6Vmb/5I0dPE8AcjI18CJMSTkbBFsb 0RgJBk5ne/KK6txR5nMCAwEAAaOCAoMwggJ/MA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQU7tsTxmEqER58tVK7VbhV8xmiaQQwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3 pkVl7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2Nz cC5pbnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2Vy dC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzA5BgNVHREEMjAwghRteXN0dWRlbnRs b2FuYXBwLmNvbYIYd3d3Lm15c3R1ZGVudGxvYW5hcHAuY29tMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcA8JWk WfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMAAAFvtN0+qwAABAMASDBGAiEA z5YrOxequIlf/U21sEg3emI0SzvWMvWx3Ndwunwxc2UCIQDELn8rbbsVIpSrE1Iz u+uWpfHmI80rBLyF9bsKlRmL2AB1ALIeBcyLos2KIE6HZvkruYolIGdr2vpw57JJ Uy3vi5BeAAABb7TdPp0AAAQDAEYwRAIgDL411kBvTpJB9dJKdOKXBrQnXLBXd3d1 rnLdbmmCCPkCIBXFav0fBWEsKPniZO4aEyZeC/ZWnzb6jL7wRY9FwsWWMA0GCSqG SIb3DQEBCwUAA4IBAQBBQi9LHiPTqn2PFhE7JoJhPlKr3tlCJq9SjG2DkkDKASHV PW0U+O/0+ggnPhSFd7/OvZ5WUZuccKrkCRE+DYrSM7w7pgzH1e61BgUvhIyQMt/a HWvk2riXXfzIkZ0emu1CKKek6cohGef88C/8R4leOcsVae0VeVvL3DkRSTVexSav z+SmjjL9ctJ6aRyXdh9G//nvur7g/4OAq47bevGnRQSf5I7NHdZOEl7ws0Jmqv8s mbotpWf6dqLzS5jcrQaF7tbbP8lkvvh9ABib00MgmmSw6Y38P7OX5yS6ebA9jvo3 qPO74SNqPZ8jmUfrTLXGuJGsbDghfwCk/6aQSFdI -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1pn3pd2ToY46P23Xy9eP gidUP4Ar7kjlWiQNJkdNB/zgA8amggLU3e6hla8CLK28sXb1qA9xa0c2hdx9QTHC NRSHp7cgXIYseEglD6FWX+jpS4Y3E2uUu9cH451Bv1MM28OiXxD+Wb3doqtLmFZq zoCi6WKfY2eSitIXKC8c9K27JOuGKcKXFtJJDXCACy7J5W6KH8TwB4MVkOx67e4p SZGBDNW4p8t+91jsAyUMiZRLZcIKvOlFH1oiANB8VYNboTrD2WOxzwRoDrtk4EXs 62ebrJwkaARxGi2v8PHLngCn5zeh1v0IregMzEIh/D2qLZXtArR3z13koHDKNrHD am5jRlR8juPukdR9gXMG81neD8bCft/vpl87P4ekUNGWx78tl0p5dCE5qYG/6IHS ivyQx/sNcKgAGFNNW6xzO1lyjcwQ525MqrhhdmQOLBQ3hQhTl+JkAzYWy8fLmppG +kI6iATiT/ug3eq+pkN+pkpCmTkzUJb1wCfbaCvVipmW+52Ye8o5+Z1PpjFtKseT HjnBOxQpTDGvmTLKaqyOpCvzMTA/uoQg9krqnc1he/P8RjKE+pPZAu5vDmmWDIBP 2iZRtcjhxC+g39ZcTTa4U02ASrtmKT3k6F65GBi6Vmb/5I0dPE8AcjI18CJMSTkb BFsb0RgJBk5ne/KK6txR5nMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 391113647042472524876033505455212193635760 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-17 17:56:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-16 17:56:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mystudentloanapp.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 875497471519935522730102319194740930046027940271846042152665275003638557228006077652839296544664519453832723782768077128667411832475372799372500938335249784057338351367539527263471279607773985412402772977481614158662160316262788913082723953873660786397810517603397369746534738435374499028206323941178744953545061393822026384755303655293414691401884375823551627035093677504192371054347814369904890027570164142374007438614663282467549760257236971967935036828611254564747419058510392161066992551394841400172510718913741268267472523236043313084194601461048318424790083246705463498527143899971458168914178090230086634793980615267989625380437767400228292919995631040928969143658614628028912177752307762450768588717582924513274602476879703721030780838271761259455405539920004033779964552295477211946484066236937351683837524866191667671231265172851453667617839171947811173802177870231929182741179622085221566425391516055574732019915432814963901746537388143742197124024128602562435559806569047068277797686017563619495726753171493736937348338684670499910116201047074453018535169962297335508891544240345944343040527737870974172599866658319444796500643891429797871196026024819587989062024542739639472778367240128722325707532991937272659391407731 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) eedb13c6612a111e7cb552bb55b855f319a26904 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mystudentloanapp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mystudentloanapp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016fb4dd3eab0000040300483046022100cf962b3b17aab8895ffd4db5b048377a62344b3bd632f5b1dcd770ba7c317365022100c42e7f2b6dbb152294ab135233bbeb96a5f1e623cd2b04bc85f5bb0a95198bd8007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016fb4dd3e9d000004030046304402200cbe35d6406f4e9241f5d24a74e29706b4275cb057777775ae72dd6e698208f9022015c56afd1f05612c28f9e264ee1a13265e0bf6569f36fa8cbef0458f45c2c596 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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