durabank.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:e8:2b:f4:97:3f:48:07:d3:e5:d2:14:b1:64:a9:c7:12:3c was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=durabank.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e8:2b:f4:97:3f:48:07:d3:e5:d2:14:b1:64:a9:c7:12:3cSerial Number (int): 340340793712848214117498364205913245946428
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d7:1a:3c:26:c8:a0:7c:78:78:ae:be:b1:11:ba:8b:ca:a7:a9:62:38
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): be:61:d0:7f:d6:a4:a5:bd:30:f3:12:07:c2:e2:e3:d2:4d:f6:20:6e
Fingerprint (sha256): e1:e2:9c:e7:9f:c9:ac:0d:fd:a9:33:92:6a:36:a1:8f:79:18:db:69:40:c3:b4:89:1e:40:7b:07:65:98:94:74
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate durabank.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for durabank.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
durabank.com
Other certificates including the domain name durabank.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for durabank.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISA+gr9Jc/SAfT5dIUsWSpxxI8MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMTExOTMwNDVaFw0y MDAzMTAxOTMwNDVaMBcxFTATBgNVBAMTDGR1cmFiYW5rLmNvbTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBANy4zxP7m2suqffbgmQh+iVk/+0bmn9t/yNJ fZbz3fRgrbaIPqsRnvF/A46PBVDi7ZFrTd5fA73YNRchys6FBjo7euiAgK7ecicx 6MB73j5oB5r9TdDqq3kcMDlViT6oCG6iNy8GWAZJ6P9rEHUDK6CdqbmeRV0OzxJt YXqCceKk4FS5eyRbUUEZ+Nom4+p4iOjWAPcYrdkrEHB70Y5OesIHErVAR7VIAHQ7 7YUOblxoOuDsFueEpgqArXHNq/gb2sjlT2+3fJHls7GGAsFXx4c4+LyeQwMpHNe+ tJ+fqTmn34tWEk1KbmCciTMWMf63YNjDfITIp750EU07X6EfJ3orkFoA6Gmrc7LT NZvRhTBprNuCFvOx8H593ELQdrxp97OJO7aoZGNz+sFfgFjjdmWkcgjtU6fqzKkh IvEznt9Xyv70gclGpfdqn39P7T/jQ/K6MkXQ9ZWAecteswaVSIPUln5TGN81Ov5s ujPM1WFIqyGgPBXezfx5PXVDVu0oLuTXbiiQDjPoiAuR/Gq0HaMcIDqfPu54QGpA g/Dh/HMy2SUt/LisOvS+t0nvZy3KvTY65HZBV6Cpzsp2ue6WeuNhY6uL+YVEtwWs XMl/CPmPBL0o6x27g2CL1HONxxUeeJcd24E4BlKCYLRF1K4FEnU63tjloU+ON/xp TK6Dk4vNAgMBAAGjggJiMIICXjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFNcaPCbI oHx4eK6+sRG6i8qnqWI4MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMZHVyYWJhbmsuY29tMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDx AHcAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFu9qgl9gAABAMA SDBGAiEA7JKx/FFy96kAozmGDHbS//BhXhlGHR54SQuW0UGFfhICIQDX/SWEnfVy 7iO/AMCs1AURIn4+uE4RwgB7YFEAdypQTwB2AG9Tdqwx8DEZ2JkApFEV/3cVHBHZ AsEAKQaNsgiaN9kTAAABbvaoJzYAAAQDAEcwRQIhAJ6Iw9s3xdkMjoFiMh2LqfUC bUZvlXzL0CeVDdW1bIU9AiAaGs8kbzwNv4CeMPGnekSAtEi99prVct6ZUraFETRN PTANBgkqhkiG9w0BAQsFAAOCAQEAXRrVGNjl21pz6PlYDbEL8mZxgVZSksS63RlS +sxF0+ygcorvTonadpQ5xkmCN6ZS3RuxA1cTeOe1LcppitAkjroQZtgHTMObBFvZ k6lCNVtWOQLL0T2YtiDm0apor6cq7GBcgoXTyV8cKBozkAxnbYlDTjcgbEwS7xzb mLVfC2eDivfk49Q9ZdYizh0HOGr2HiEqgFZhof9uOX3GyThnMCffpVhkdxfkMtkI yqVHFBY9m3tUMPP5rkG4dKBkg7hm0DbPSlFIcyuy6Q7GS66z0yRF8vCx7I2YoEMJ bnqK3xRR8n4P7MfC7Y1qsKP1D2jGvhhu+hW8prCDbdiAFzyjzQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3LjPE/ubay6p99uCZCH6 JWT/7Ruaf23/I0l9lvPd9GCttog+qxGe8X8Djo8FUOLtkWtN3l8Dvdg1FyHKzoUG Ojt66ICArt5yJzHowHvePmgHmv1N0OqreRwwOVWJPqgIbqI3LwZYBkno/2sQdQMr oJ2puZ5FXQ7PEm1heoJx4qTgVLl7JFtRQRn42ibj6niI6NYA9xit2SsQcHvRjk56 wgcStUBHtUgAdDvthQ5uXGg64OwW54SmCoCtcc2r+BvayOVPb7d8keWzsYYCwVfH hzj4vJ5DAykc1760n5+pOaffi1YSTUpuYJyJMxYx/rdg2MN8hMinvnQRTTtfoR8n eiuQWgDoaatzstM1m9GFMGms24IW87Hwfn3cQtB2vGn3s4k7tqhkY3P6wV+AWON2 ZaRyCO1Tp+rMqSEi8TOe31fK/vSByUal92qff0/tP+ND8royRdD1lYB5y16zBpVI g9SWflMY3zU6/my6M8zVYUirIaA8Fd7N/Hk9dUNW7Sgu5NduKJAOM+iIC5H8arQd oxwgOp8+7nhAakCD8OH8czLZJS38uKw69L63Se9nLcq9NjrkdkFXoKnOyna57pZ6 42Fjq4v5hUS3BaxcyX8I+Y8EvSjrHbuDYIvUc43HFR54lx3bgTgGUoJgtEXUrgUS dTre2OWhT443/GlMroOTi80CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 340340793712848214117498364205913245946428 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-11 19:30:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-10 19:30:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'durabank.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 900466829836114236066727781601449846388764960797976124110085589509840916245846912548305501102199779118452162405746521165231352895473739945183889418330549156514313825247784283653683237106038128694457497755019355121680042895545388357527185156143760318171270316434870654123301529770823720830846268693876251398887925041281111459754175006306577049192782720035257504625020483374446627588967647392931257498250597096002985155302746888004164258327455907143363176715784047202253532417961247914342551179909783158442089998784098016970438325729655091607748169258744067731118312355569042341787171481525223274834085170844188885973747248899667287305323819352408338513738668756784315980165404762231965326199824541625331653082194472871782607942935638317630166774406647047852962471870547958296631033910051524112456600425747657046800861628452763448835080960251191992594428886923060251104310284392942116365573938612673802669341912468507318140880427604578200432735557161672761526517424477517199067588247219856466946606735484370970743983034829362206959619588149002246390829913660240268344381521182373036677357997589849756636938703115295716494931816030660621759006708096284532960711955413384228505238782559076760261899065934701535330516874026708686507051981 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d71a3c26c8a07c7878aebeb111ba8bcaa7a96238 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'durabank.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016ef6a825f60000040300483046022100ec92b1fc5172f7a900a339860c76d2fff0615e19461d1e78490b96d141857e12022100d7fd25849df572ee23bf00c0acd40511227e3eb84e11c2007b605100772a504f0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016ef6a8273600000403004730450221009e88c3db37c5d90c8e8162321d8ba9f5026d466f957ccbd027950dd5b56c853d02201a1acf246f3c0dbf809e30f1a77a4480b448bdf69ad572de9952b68511344d3d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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