www.travicard.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:92:9a:29:58:90:6b:50:0e:05:dc:b4:f5:8e:c9:8d:5a:76 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.travicard.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:92:9a:29:58:90:6b:50:0e:05:dc:b4:f5:8e:c9:8d:5a:76Serial Number (int): 311222999157553944777623130330506134903414
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 94:db:b4:b8:2e:97:77:f6:66:63:8e:1a:11:e4:3d:ff:20:93:47:79
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): eb:ba:de:06:16:63:68:5d:48:6c:ec:2c:9c:89:63:37:d1:f7:a4:fa
Fingerprint (sha256): df:18:d1:7d:90:f9:f8:75:1e:50:77:14:7c:22:28:0d:30:f9:71:96:54:d7:93:2b:f7:a0:00:10:42:27:4c:77
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.travicard.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.travicard.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.travicard.com
Other certificates including the domain name travicard.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.travicard.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWjCCBUKgAwIBAgISA5KaKViQa1AOBdy09Y7JjVp2MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTIwNTAyMjVaFw0y MDAxMTAwNTAyMjVaMBwxGjAYBgNVBAMTEXd3dy50cmF2aWNhcmQuY29tMIICIjAN BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtZ6y5e6BlplsS3VDDe5yU3Sng9WT J7qUZpGWAahQtn92mXNdjspNj4nKwOTDd961L8yNOBNYOMIGFQmt9iyGY+lc0NfF V4LPbO5EZNmjBdvB9ktg2B6wqydNVQ4+AeFQWR6+kvgz4HQ/1t4W4j/9MeXlXO2x r6Z6C+ATO6DAEaT8ed3aesPSVNLOR3DJbQWTwPA1STaNzxvRFjEFXdRXGzK1q6Ck 1nK0BWrtEqfIZFG5ID4chhJlY6ji4IwbAdAt7QitM7fe+C/zH2QuN79NJ+7g0H8F WLAwHvTEKK68ws1qrwVxxr/2Pc5RcFfj/0jq2Z8kk5KeY1RPR1PwBkcZyj3cO5Bu QX6KCv5YZ9aoyQFOozvgjnzTm+GdgNCdYgKOHt8SC759YTsaiKgCQ0fQqYwrMcj5 FoPLo/qWkiWIYf9t3vEFpvy1IZa2xj1pJI25S4HH5ewZhxeCZz1HsMTKEbEHKZQQ rKFLuF4WDF1M3uvilp8gwASg3w0snEk9lQA5/tZ/IPMOqa0Jz8LtAUMv22Z4/L+4 t/S9Sl2z9tC9lPapXqVI9h0iF64zY9a7PnMncIaN5eZBfwyCARhYfUOc1zWRQLuT bNHUy+d1Oz1RXs4wl3o1/Dlcz2eFGoZZYP6aYUHjtlLO2UkyVyYBzENi1lEoAYNw ZO5YY4AD9TO4UxcCAwEAAaOCAmYwggJiMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU lNu0uC6Xd/ZmY44aEeQ9/yCTR3kwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl 7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5p bnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5p bnQteDMubGV0c2VuY3J5cHQub3JnLzAcBgNVHREEFTATghF3d3cudHJhdmljYXJk LmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsG AQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkC BAIEgfUEgfIA8AB2ALIeBcyLos2KIE6HZvkruYolIGdr2vpw57JJUy3vi5BeAAAB bb6PnKMAAAQDAEcwRQIgFm5UQ7C+/6zp08agxLOtR+R4fZU41TkI3aJ++nmNmKkC IQDydRTe4aclFfgmzUiCFhV/QggLu8qk8rHjM8v7c/oSKwB2AG9Tdqwx8DEZ2JkA pFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABbb6PoDAAAAQDAEcwRQIgL34P0zmHR7IW MIOxME8nmSzirfx90EyuGH7bB2zOe7YCIQDKIZwycpU0q2nWzNTlGcQOZft5HRXL mIqcezz8pLirpTANBgkqhkiG9w0BAQsFAAOCAQEAAxn657InPVB7rmSwIR+KtEo5 jCNtUmF6ET4P+Y6UJw/Veio/1ZMQGfz11FYxRNiTt5nM1uDsL0cUa+Ybn5pjyvgc c+42BAwgzztTOZ2MC8/z+mpDkg0clqhlxaodqJ7dq6tWvQkom3UHYxQjSKQgoUu2 Y6xctZYVQx7B6xslaae/9noRhbYHtEFjaYsbqOJK24QxwqT1ubqQoPy/0K7nOxCH BgOUkpCMF1Bjridw7dYd5c9TD8mYs27L6ARQlwqTFxwVHztzSax+5GTYCBjsTgJH Be522xUQPA7PmY/zzJI44TlBGh/4muwxAly+puRrM83v76agoyuJ5jhecyvHbQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtZ6y5e6BlplsS3VDDe5y U3Sng9WTJ7qUZpGWAahQtn92mXNdjspNj4nKwOTDd961L8yNOBNYOMIGFQmt9iyG Y+lc0NfFV4LPbO5EZNmjBdvB9ktg2B6wqydNVQ4+AeFQWR6+kvgz4HQ/1t4W4j/9 MeXlXO2xr6Z6C+ATO6DAEaT8ed3aesPSVNLOR3DJbQWTwPA1STaNzxvRFjEFXdRX GzK1q6Ck1nK0BWrtEqfIZFG5ID4chhJlY6ji4IwbAdAt7QitM7fe+C/zH2QuN79N J+7g0H8FWLAwHvTEKK68ws1qrwVxxr/2Pc5RcFfj/0jq2Z8kk5KeY1RPR1PwBkcZ yj3cO5BuQX6KCv5YZ9aoyQFOozvgjnzTm+GdgNCdYgKOHt8SC759YTsaiKgCQ0fQ qYwrMcj5FoPLo/qWkiWIYf9t3vEFpvy1IZa2xj1pJI25S4HH5ewZhxeCZz1HsMTK EbEHKZQQrKFLuF4WDF1M3uvilp8gwASg3w0snEk9lQA5/tZ/IPMOqa0Jz8LtAUMv 22Z4/L+4t/S9Sl2z9tC9lPapXqVI9h0iF64zY9a7PnMncIaN5eZBfwyCARhYfUOc 1zWRQLuTbNHUy+d1Oz1RXs4wl3o1/Dlcz2eFGoZZYP6aYUHjtlLO2UkyVyYBzENi 1lEoAYNwZO5YY4AD9TO4UxcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 311222999157553944777623130330506134903414 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-12 05:02:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-10 05:02:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.travicard.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 740944618122611103981219258405997361550537828316006891594599102208591163174014069502262083932730641205493577669722495449462519977209312978205179260892448870150084762587646192801169390978831593669891097229546184755702686851193910123144192980201822267894885566887274058397901900365853586749896440257128301544799379406523151506395170773840650922439561830188245377842320250780400049187020291442082645992958071689082938124009586295173965635563652889163351611229486425990864224734074478809758375683422988461022744354753075378069200449895346613280841228678349655104641756159099031290386967980429280448076292662865002814115169077114693895858349015512680853346890560137285524469738348399103084024304560400175992660558773696182591326094663403180028203089536679735054563163753330071885609852280868913911897123633247074244254803888942107733282849655873791934024347883033656687339473410126832040846959316655554791816779618530006503870031747900872104232632658257785157591076122854449583818981646830058248523651779255928652736180728306217686168820476277447058018360679651381556716241934579659056198460861579027480909366050867991582503321566961612777948236857332840189299074400438835966248235449070641982624392946603829898517212275863998783246848791 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 94dbb4b82e9777f666638e1a11e43dff20934779 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.travicard.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016dbe8f9ca300000403004730450220166e5443b0befface9d3c6a0c4b3ad47e4787d9538d53908dda27efa798d98a9022100f27514dee1a72515f826cd488216157f42080bbbcaa4f2b1e333cbfb73fa122b0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016dbe8fa030000004030047304502202f7e0fd3398747b2163083b1304f27992ce2adfc7dd04cae187edb076cce7bb6022100ca219c32729534ab69d6ccd4e519c40e65fb791d15cb988a9c7b3cfca4b8aba5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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