parsley.co
Issued by R3
About this certificate
This digital certificate with serial number 04:83:05:b4:a0:be:f7:90:b5:01:f8:f1:92:40:9a:10:de:2d was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=parsley.co
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:83:05:b4:a0:be:f7:90:b5:01:f8:f1:92:40:9a:10:de:2dSerial Number (int): 393033717807412891348041433244319127494189
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: f2:e9:68:8a:af:93:ff:08:d6:4a:02:30:c1:9f:2a:97:f2:7c:6d:a6
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 8b:2a:ae:65:ee:36:37:ed:35:5c:2b:dd:42:03:58:4e:c7:a7:5a:92
Fingerprint (sha256): db:d3:ff:9b:f1:1b:75:99:80:31:e9:f6:59:f0:43:d5:90:c5:d8:8f:10:e9:8a:c1:f5:28:10:e9:8f:98:2b:21
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate parsley.co
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for parsley.co
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
parsley.co
Other certificates including the domain name parsley.co
(limited to 100 certificates)
Certificate
The complete raw certificate details for parsley.co in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4TCCBMmgAwIBAgISBIMFtKC+95C1AfjxkkCaEN4tMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MjYyMzE1NDJaFw0yMzEyMjUyMzE1NDFaMBUxEzARBgNVBAMT CnBhcnNsZXkuY28wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCyRpiy ZpT84I1Qzh/x6w+CaphojykOf8PG5wquDgL7glCokB1TUqDnmk8tCQTBvRRFU1th LTUnfcKS5jM5wBxH0Fvhv38xRVZuYzZGmDCSeclEZF8q3i400RZZ0wwCzgooIvkc yR8O/n/mA3hpK5rIK70VW8sRhdUE7qpzpm9zT3+LNuU+ps/RlIDxm1pZ4m4DpZ8s mqmW+k3zmGJruCRhuff9ANlC9Bp5rwUBYQMEvceFHqdaD/3U8flOGZSq27UkiV35 rKYU9fr0XRP9kpPvzdI8wMP2t1v6w9MZ+CcWfBXkXKZ9SWGkGeljIIt1MNMt4lOu caV4PEHQtyCMcqwwkRfFnR74PA2mITU40afFG+8bOXx/Op225hY7CLDsRoo4WuSM Ap0CuPFk8gX+enr74+G6cyKihLUmrCZQ6OiFX9DvzqI+XRaDX+tS/XZ5CZ2TVj0W inUe4/s0k0WkGu46G9wkQIXFYWyvoFnqysJzFV9kTYxZE5wiSHsloeJTTZ6SZKzE CyeZrnGUFAZxW1mWKq11h2N24hAmau1uVtIEgHcUGnz5c9xl4yMC6w7o9W67ApaB dTVd/IHe3a4QVlQ20yT+U8LWku/1aMC0D6BaSQyjXjI7rKaun5dyUDse0AwfUOl0 qtHvXDTrHIMVvUe+kPgQZzaX56LR39itlUApOwIDAQABo4ICDDCCAggwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBTy6WiKr5P/CNZKAjDBnyqX8nxtpjAfBgNVHSMEGDAW gBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUH MAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3Iz LmkubGVuY3Iub3JnLzAVBgNVHREEDjAMggpwYXJzbGV5LmNvMBMGA1UdIAQMMAow CAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAtz77JN+cTbp18jnF ulj0bF38Qs96nzXEnh0JgSXttJkAAAGK0/3V5gAABAMARzBFAiEAtslskS0+9I4g 8AxxNn0rhF3RqbUwTEfteASGWtiHKwICIFy2AFt3K8rTzOFdavk1XcC5qoJa/Lqq Mg0SWAdlh9REAHYAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGK 0/3V/AAABAMARzBFAiBf/L6vlkGxD3gjGYQIJdWHoM5VeF9Rimxya47Z270isQIh AMXJNH3TNTkuIyWwsKXeNKwsUhizpLrdqXwTF4SOHjAVMA0GCSqGSIb3DQEBCwUA A4IBAQA14vxV9Aikh7T6s96XL3Ilvdc7em4lY5qBy1xsKrpXiO75sL7qu+o8PHMQ /OMy3mQoqMc1L9VOC6D71lvZzPu5Vmfxz2R+jC9b7CxAvV+GOoTnGi3LayPtRSyj i+9uHrCrFmORbVTwOMqaZucKAhNBcANszv87zkqILej4Natz9jNBzYfEWbkEXphf 3/pSj+edvsOx3jbL6KBIuzspTz0iXRxa/SwOqz0KO/Kp9fgcYOwO7Vwx1TBVU5ad A19W0Ws/bsCrZu8GhHxfkseT/a2g8j5DKf23ANm38cgV/Lw0X7FvoKFPCJifNCFJ yWJ0DMJlZNpYIzKPUCu3wav6MkzU -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAskaYsmaU/OCNUM4f8esP gmqYaI8pDn/DxucKrg4C+4JQqJAdU1Kg55pPLQkEwb0URVNbYS01J33CkuYzOcAc R9Bb4b9/MUVWbmM2RpgwknnJRGRfKt4uNNEWWdMMAs4KKCL5HMkfDv5/5gN4aSua yCu9FVvLEYXVBO6qc6Zvc09/izblPqbP0ZSA8ZtaWeJuA6WfLJqplvpN85hia7gk Ybn3/QDZQvQaea8FAWEDBL3HhR6nWg/91PH5ThmUqtu1JIld+aymFPX69F0T/ZKT 783SPMDD9rdb+sPTGfgnFnwV5FymfUlhpBnpYyCLdTDTLeJTrnGleDxB0LcgjHKs MJEXxZ0e+DwNpiE1ONGnxRvvGzl8fzqdtuYWOwiw7EaKOFrkjAKdArjxZPIF/np6 ++PhunMiooS1JqwmUOjohV/Q786iPl0Wg1/rUv12eQmdk1Y9Fop1HuP7NJNFpBru OhvcJECFxWFsr6BZ6srCcxVfZE2MWROcIkh7JaHiU02ekmSsxAsnma5xlBQGcVtZ liqtdYdjduIQJmrtblbSBIB3FBp8+XPcZeMjAusO6PVuuwKWgXU1XfyB3t2uEFZU NtMk/lPC1pLv9WjAtA+gWkkMo14yO6ymrp+XclA7HtAMH1DpdKrR71w06xyDFb1H vpD4EGc2l+ei0d/YrZVAKTsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 393033717807412891348041433244319127494189 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-26 23:15:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-25 23:15:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'parsley.co' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 727301677228471094027940192590549796775536183420032143413707407799682410054726846918639975837447536295853345583040003491326738280301949799115933789727620581146893966820797559791466304730674285741413409879109166694556037279059946194914369627268569529145612252379387150039039801929956650119423602169343298594540468598590853046125494573409302655128583323673871047320305932936065671903323544928640748262387448105729040054285091190744520876111068260349805591694001182619560463198887019961906990527852118839074581646545011603265641129820245773974444598334317286340803456191811476201243628146519168252280180245848084308581378761814051855829028736637710777508349218390630496452154147177811205611548524319495882430733795736846612641727992550569541165828873926592309073488643808228915937442924222220651393775074155272122942663784781087138527832817516094873522283940039119191518077636259975670367166721916753845070021491128303841405151025108955569621087877785101087224154762675472828502388059765702759809856131648948316587486402878689625962856710291742219901053338555499641841132212043967245498069800307212173721178202161877826405203774371445749211131787056633871325961836140924649023931221322313101014992058790125306276147503479332320518875451 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f2e9688aaf93ff08d64a0230c19f2a97f27c6da6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'parsley.co' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018ad3fdd5e60000040300473045022100b6c96c912d3ef48e20f00c71367d2b845dd1a9b5304c47ed7804865ad8872b0202205cb6005b772bcad3cce15d6af9355dc0b9aa825afcbaaa320d1258076587d4440076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018ad3fdd5fc000004030047304502205ffcbeaf9641b10f782319840825d587a0ce55785f518a6c726b8ed9dbbd22b1022100c5c9347dd335392e2325b0b0a5de34ac2c5218b3a4badda97c1317848e1e3015 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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