xcgn.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:34:fe:ab:28:1e:10:57:6d:5d:43:56:98:ec:e9:79:3d:5a was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=xcgn.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:34:fe:ab:28:1e:10:57:6d:5d:43:56:98:ec:e9:79:3d:5aSerial Number (int): 366482339414300251248489664449738417192282
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a6:d1:f9:45:2f:5e:a1:67:a7:53:c3:33:11:44:09:bf:29:6f:3a:98
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): f0:b6:4d:39:7e:2b:ea:83:3d:eb:bf:1d:38:15:87:9c:70:7d:2a:d7
Fingerprint (sha256): dd:0e:65:34:e9:04:87:59:d5:8a:14:e4:12:5c:f8:ac:d4:31:40:be:78:96:78:b4:24:5f:88:0d:f5:4b:93:2a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate xcgn.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for xcgn.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.xcgn.com
xcgn.com
xcgn.com
Other certificates including the domain name xcgn.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for xcgn.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVzCCBT+gAwIBAgISBDT+qygeEFdtXUNWmOzpeT1aMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMDMxMDE0MTVaFw0y MDA0MDIxMDE0MTVaMBMxETAPBgNVBAMTCHhjZ24uY29tMIICIjANBgkqhkiG9w0B AQEFAAOCAg8AMIICCgKCAgEA0yn5ZOBG5x2ynD46i4gYYYxQ/T5zhJgxEvlRyVwf QUcFI/oIENmLGB7hbGMbFjUzidQDaUYZbmGTRYJrnuo4gSN+AieVpugh4KB5XRTl +3ZWbaV52iNlgZF98CP/iVJJMZmtLn6DK7h3LME7y/wuvissSF5+IkqtK1gD7oc5 qe51FL1ZvGgOud/TuwdOzckyfwbwtYu7bmRi11QabyTU1DUKTdiQv2MzsByx8BqQ pMX869Yx9RuuKezajJfQtacTRNO+SebknS4NrX3bTVtvfLm2Vo3D2R9J1Q1mvp6i c3O3wmzTSHsbtmj7oLjhxDdLiJ+0LXcbDHjnrvKzcvvQYKgA3A/fT5qnexFqiRXx +qv5ESHkdqHHU772RAB0NiaaxrJyWXbWC72d2a+8om5T4cXYWWYEFCIzF16O/HdF 8e5i5zdtMEoxAB8itGkKrYFfsaOVpNZYyMdwTaBw37GYX98wj2eR1eAUovvP+pkH 1NQY4WIs2J+lTYkNVDRihqwQgN80pJy23OLPqAsbCEAflMn1KuItoG5ZLztTrgrC rOMzkL3kwgcYfxeet9f0XIOvZJyNQWnltfjWKR6hVz09cimpod+JD9BZxm9qpcnB MTJRimQEMou6EGkXRQeTNCfzDfPZwG5ahDfpADEspY5N8oSX5dOrYZ7kvSewVS1Y 8SsCAwEAAaOCAmwwggJoMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUptH5RS9eoWen U8MzEUQJvylvOpgwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYI KwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0 c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0 c2VuY3J5cHQub3JnLzAhBgNVHREEGjAYggx3d3cueGNnbi5jb22CCHhjZ24uY29t MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB 9gSB8wDxAHYAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFvaxzu lgAABAMARzBFAiB6KZlpDU94kMkLXUauPi9xbugZnb/3xWfpEYXgwgYBqQIhAIoj tzTl2MUOYKcIONUr7HHb6ekBRecs9dcdxJGWNTzWAHcAsh4FzIuizYogTodm+Su5 iiUgZ2va+nDnsklTLe+LkF4AAAFvaxzu2QAABAMASDBGAiEA4+3qG9l5GL5vJLjv 3yKiWWmJEMrQTaWdutS2dQC8MQoCIQCgLuYQxdBMP0jvh5AH0soC0HbCEytNxpGL rHfMSM6A/jANBgkqhkiG9w0BAQsFAAOCAQEAKXk/thkQRrcQA25oMMQQQwlzkMRm k3Y/VX9hN6pqsK/on4mxg8OQSgzaT/rNOgNsCAPQUwwmWjhYa/+SDodb5B5NNhYB xNg7ppRDNOojWVxbXCvtC2Y4DEyjfiKxpfMI0ULOXJ0eyjBuCnSH5/fOOh+GFKkD qZG8Bi8BTEJhKXwRCMImlS+m7HIMA/6NW2aBio7SJzo9YiSl5uOla9lM8pOswsL5 9lBljcLbD7UI3cBp7bFDrrTVHIWa51CR+3LYvfk8zR0Xtax8Hvu1Pk0pvMpHwYZG kT3GdFnBK6ZrqLHMDPgSLMrM5F7KWA1ZaRT/U+ugoMr9yEh8ad60xYW2Aw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0yn5ZOBG5x2ynD46i4gY YYxQ/T5zhJgxEvlRyVwfQUcFI/oIENmLGB7hbGMbFjUzidQDaUYZbmGTRYJrnuo4 gSN+AieVpugh4KB5XRTl+3ZWbaV52iNlgZF98CP/iVJJMZmtLn6DK7h3LME7y/wu vissSF5+IkqtK1gD7oc5qe51FL1ZvGgOud/TuwdOzckyfwbwtYu7bmRi11QabyTU 1DUKTdiQv2MzsByx8BqQpMX869Yx9RuuKezajJfQtacTRNO+SebknS4NrX3bTVtv fLm2Vo3D2R9J1Q1mvp6ic3O3wmzTSHsbtmj7oLjhxDdLiJ+0LXcbDHjnrvKzcvvQ YKgA3A/fT5qnexFqiRXx+qv5ESHkdqHHU772RAB0NiaaxrJyWXbWC72d2a+8om5T 4cXYWWYEFCIzF16O/HdF8e5i5zdtMEoxAB8itGkKrYFfsaOVpNZYyMdwTaBw37GY X98wj2eR1eAUovvP+pkH1NQY4WIs2J+lTYkNVDRihqwQgN80pJy23OLPqAsbCEAf lMn1KuItoG5ZLztTrgrCrOMzkL3kwgcYfxeet9f0XIOvZJyNQWnltfjWKR6hVz09 cimpod+JD9BZxm9qpcnBMTJRimQEMou6EGkXRQeTNCfzDfPZwG5ahDfpADEspY5N 8oSX5dOrYZ7kvSewVS1Y8SsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 366482339414300251248489664449738417192282 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-03 10:14:15 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-02 10:14:15 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'xcgn.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 861473803733765002480895783556556008178066204847257269559294495285162661853468208848187871958584028232024873247105297996542861445232916508503004912758689041742544488980140474557536183419680005754859028046615094599102109415082732756510213062438041538945499669964994215326635727681450539524187871194749231461222027695251965028873146428459299571860448858052680989162694492905545855562343144479088908316228966817578692411341851316992625826263710059798277359343713079938914655181164582753161700285072387950683308145551214056735329894930399290448258384544004194388835370949239515946379392848772424534559181942461515801718648847491403389253413165151998703989380266045240984390169421025469218762006068561135197170490485572935781325420763900122616850064389707725794288852047422843302513459005023826292220744817997489516626740914348916919540988426559577351338337153152972605822588489436500777797059421145831971558611654394300504411844072147936271005110302333946128486538532841106741280712864985593331366401588880749581167280877344866669811469371303595717713785516974739913051276256811022104283058763721128130416127682167022732878810462036827094328131404686227493225768565468316436683873205128231416965782545917657640026968702745119272256205099 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a6d1f9452f5ea167a753c333114409bf296f3a98 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.xcgn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xcgn.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f6b1cee96000004030047304502207a2999690d4f7890c90b5d46ae3e2f716ee8199dbff7c567e91185e0c20601a90221008a23b734e5d8c50e60a70838d52bec71dbe9e90145e72cf5d71dc49196353cd6007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f6b1ceed90000040300483046022100e3edea1bd97918be6f24b8efdf22a259698910cad04da59dbad4b67500bc310a022100a02ee610c5d04c3f48ef879007d2ca02d076c2132b4dc6918bac77cc48ce80fe . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0029793fb6191046b710036e6830c41043097390c46693763f557f6137aa6ab0afe89f89b183c3904a0cda4ffacd3a036c0803d0530c265a38586bff920e875be41e4d361601c4d83ba6944334ea23595c5b5c2bed0b66380c4ca37e22b1a5f308d142ce5c9d1eca306e0a7487e7f7ce3a1f8614a903a991bc062f014c4261297c1108c226952fa6ec720c03fe8d5b66818a8ed2273a3d6224a5e6e3a56bd94cf293acc2c2f9f650658dc2db0fb508ddc069edb143aeb4d51c859ae75091fb72d8bdf93ccd1d17b5ac7c1efbb53e4d29bcca47c18646913dc67459c12ba66ba8b1cc0cf8122ccacce45eca580d596914ff53eba0a0cafdc8487c69deb4c585b603