www.sfiducia.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:42:12:06:5d:65:a8:95:6d:be:48:bb:a2:a7:a2:27:4a:09 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.sfiducia.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:42:12:06:5d:65:a8:95:6d:be:48:bb:a2:a7:a2:27:4a:09Serial Number (int): 283819453164086269906523687351721195424265
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a0:c2:6b:30:02:46:a5:4b:12:21:93:38:e6:9f:66:6c:2a:e6:cd:b0
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 38:ba:e9:bf:7a:80:54:c5:03:36:c1:95:f0:16:ae:44:85:d3:1d:f1
Fingerprint (sha256): e2:c3:18:69:89:eb:39:c3:a5:5c:35:7e:23:e0:ee:bc:67:4a:db:f2:7d:ed:4e:58:17:bf:99:fd:4b:ee:c6:3b
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.sfiducia.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.sfiducia.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.sfiducia.com
Other certificates including the domain name sfiducia.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.sfiducia.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWDCCBUCgAwIBAgISA0ISBl1lqJVtvki7oqeiJ0oJMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMjIxOTA1NDVaFw0x OTA2MjAxOTA1NDVaMBsxGTAXBgNVBAMTEHd3dy5zZmlkdWNpYS5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDRWX4JYvhbdp/kQ4yoRQxyvCME7M8x w9YxQolUFPctLjmfcbM1oNwjUbdL+nMOiJ1vrONDyoJrVhHJR1sF/FBc5ln3m554 SLYHA4cgRebFkSmUn4T4BEnooHuhwIMRyB9slRTwb3KE3hiVkX20lLGLu5QmNFwn sz0xLPxBCFYPGUz6tIAuAVugqez8LlquIOC0DLIrjFHXl7V1LzYzekMfTXzT0k+X 4NR0kc/uNng63beWwTUnDfadazDJiqmh5vSZiIqMUeOLjAa6D835T75vF2yg7vCn cP6yxLepfuld7yiF1hHOrn272nFJH3G6T8dgo/VeSI0NshImfgtzuJ9sryn+021o aHCAtFqv8crgMTvg+XNNzpkte/TbbLoVLqSgl73WZUfvr1EcvmdcPbYlx0ld0lGa 5VFSAreti1P3GHBh+jMrXVfFMElI+R3N1VpvVtf+83ENZblCS8DXYtwOe8SHWoAf XMyIYohftY4KRSYDk2qMfYafNeN7lTm3mqzmfrrKzbhkmErPFaUS7rAApS6GTmwR Okbmoz2qyL9kLacLiPBjMtwPcQhB2auosL10Ycv1TsZR8fFIQB79hLwJiB5W9ak7 BMIW4oD3F7XTsHydxthKlYAyyE4JjRKsW6qmRp0KiorlpD1i7S7NHOwX1AGDx6bF hmydRcXg/qYHJQIDAQABo4ICZTCCAmEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSg wmswAkalSxIhkzjmn2ZsKubNsDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHd3dy5zZmlkdWNpYS5j b20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQC BIH1BIHyAPAAdgB0ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWmn AmI8AAAEAwBHMEUCIQDqBxR4s33/ZfsKpHV2I2sQit+tgv7dVl7V441glXQgqwIg NGP24MTXMhQjwCf81mUnVAPSSlQS4sc+BWn3BrPueXsAdgApPFGWVMg5ZbqqUPxY B9S3b79Yeily3KTDDPTlRUf0eAAAAWmnAmJDAAAEAwBHMEUCIE1cE4XNu/hHbtF4 SqcfQUEDEmf2+CRFonXDJVJnjS8ZAiEAj2ZqpYFFfeOsBAGaB7oLA3GNYZsDupGf bRwzMPrloIYwDQYJKoZIhvcNAQELBQADggEBAES5PsyZQ77FKI78t4IFUFy3wXjB bnreRP4czwirmjdUmG+0mE/7OA230z47Lh/PHyd4W71r+2GE83dKSvsTy+C67DBI Gr6GVxa2vRy+Lb2Lmuc/gDu+ArF00AyFtTUiJyuiGtiV4E6rufuu48HK5mDPpH0t hxCAaf7KI5gx3z5mjDFipThRANDYUVAScxr62/QuLM+CDPazw+MhvFrC+zTPlsSx JTc+xBT0qZyJpkrP9tWA25+VKlSnmUf1MjRQY/L+jYA47T5u5T+VpXclaV086HGl B0ZneBtdccFP4+a2Xzgh7aBWmWjVOF0kvjWIU3/BO9u019jGfxMHNgRR5ks= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0Vl+CWL4W3af5EOMqEUM crwjBOzPMcPWMUKJVBT3LS45n3GzNaDcI1G3S/pzDoidb6zjQ8qCa1YRyUdbBfxQ XOZZ95ueeEi2BwOHIEXmxZEplJ+E+ARJ6KB7ocCDEcgfbJUU8G9yhN4YlZF9tJSx i7uUJjRcJ7M9MSz8QQhWDxlM+rSALgFboKns/C5ariDgtAyyK4xR15e1dS82M3pD H01809JPl+DUdJHP7jZ4Ot23lsE1Jw32nWswyYqpoeb0mYiKjFHji4wGug/N+U++ bxdsoO7wp3D+ssS3qX7pXe8ohdYRzq59u9pxSR9xuk/HYKP1XkiNDbISJn4Lc7if bK8p/tNtaGhwgLRar/HK4DE74PlzTc6ZLXv022y6FS6koJe91mVH769RHL5nXD22 JcdJXdJRmuVRUgK3rYtT9xhwYfozK11XxTBJSPkdzdVab1bX/vNxDWW5QkvA12Lc DnvEh1qAH1zMiGKIX7WOCkUmA5NqjH2GnzXje5U5t5qs5n66ys24ZJhKzxWlEu6w AKUuhk5sETpG5qM9qsi/ZC2nC4jwYzLcD3EIQdmrqLC9dGHL9U7GUfHxSEAe/YS8 CYgeVvWpOwTCFuKA9xe107B8ncbYSpWAMshOCY0SrFuqpkadCoqK5aQ9Yu0uzRzs F9QBg8emxYZsnUXF4P6mByUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 283819453164086269906523687351721195424265 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-22 19:05:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-20 19:05:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.sfiducia.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 854071769810692955713828472046146952489556183229424662568437360807836413473135341594201578848213423603386501092584031080838158483932724325412682498472255331296615964150510472882264897885871197797220128368301034765380062118931658030971970607856712528950785565771109587739520887403033063002144603045038154829273213878227072398414040825663644093313663310350716808340497622828809316388536285055760441964533960339887910245398678616748859065949282407600695916712129732108397479498101575264041540657148720341749219125669429668650412699919705013856609534055888796575056591406000365119913058735695329699877610967304889549472810617959965910309802157480715836689884718437945150049826291227679161459331796212696535939673283090244188287422506010712789963167792100927480203968579737864192911497295977991269974773179339528487585089884974698285418724950292097169137496030148672324231169961138562473635808396896411904466699457751660572416532613218988694615027592527908794449920513360111662679682104858585221834355318494495434674316682101963801855590670199997357808514368026543645649832009830084038334530627113669947519236091984177084551247078579293289824852373550467580963102993101653672273071162618812675397441100693112469098436214589288588010456869 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a0c26b300246a54b12219338e69f666c2ae6cdb0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sfiducia.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000169a702623c0000040300473045022100ea071478b37dff65fb0aa47576236b108adfad82fedd565ed5e38d60957420ab02203463f6e0c4d7321423c027fcd665275403d24a5412e2c73e0569f706b3ee797b007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000169a7026243000004030047304502204d5c1385cdbbf8476ed1784aa71f4141031267f6f82445a275c32552678d2f190221008f666aa581457de3ac04019a07ba0b03718d619b03ba919f6d1c3330fae5a086 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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