terramate.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:a3:28:93:05:cc:76:86:a5:47:f8:32:99:64:79:e9:ab:fc was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=terramate.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a3:28:93:05:cc:76:86:a5:47:f8:32:99:64:79:e9:ab:fcSerial Number (int): 316856816108474585917884402880037872315388
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: c2:31:2d:01:ef:9c:c6:7c:f3:fc:11:ff:e1:4f:40:7c:6b:0e:6a:c1
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 91:99:b3:85:a2:d5:59:0f:c5:9d:12:74:89:23:95:da:ab:d3:3d:dd
Fingerprint (sha256): e4:37:fc:a6:bc:a0:8b:b4:7b:8f:e9:67:c6:9d:de:e3:88:f6:21:6e:98:ea:f1:6a:bd:65:67:92:1b:19:db:32
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate terramate.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for terramate.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
terramate.com
Other certificates including the domain name terramate.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for terramate.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUDCCBTigAwIBAgISA6MokwXMdoalR/gymWR56av8MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMTcwNzA5MzBaFw0y MDA1MTcwNzA5MzBaMBgxFjAUBgNVBAMTDXRlcnJhbWF0ZS5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQC727Tb/l4XIjiHVjld81w2Vx9XFJGc9lmf 85soJaxmaFJx/NU762yk7lErTTYeMCBx5ZfW8nvT/oaZXjtDbgAnIDb68V8WvMic C9bbd8G66ZhgL8KlcYMEsvpEoN80rQLN5sg9nKSUboBhg1s4sIP5MO4Jclk/hu3J fzlEltJyfm18A3p13AvnnBIaPQak1oaoFTj8FX7mSGJrV26/KrHeT7Vo8Vzfk5HM G5yd31YRx12wXlIwlR8gPuCPcfosclB7+dfHNObo7GHQhCfu9Drsf3KEVGCtexJz kdqNsOImhEFDD5gPZngONYBtqhD8KV2E0wIaIbc4OHSuKMp37yEORyBbebaknUNA KZS2YSQqYZAFsf+MMIKv4101lRd9tFu97/T2/nqDff+299IOexKLnI11OnLCA9/d 80X6cTTWat9PcLr6dwcZGKLvLNs86+h2656y/P9CAHiJRdLkj0fQrEMY/lpZWdXL wzBNJ2EIysuvq+0XLlQ+WnnEPNIm7Lal3IiyAqjqgw5U+M8+dya7PsGA4KiWgnBU gNCQKtbtkZA05y7cgNymi6GX9Dt6FelcoYIEM2unHyW6eJXH/Xybk64JFI/FGuQh /hSiCpqmqv0olyt1VEna0/gMo7e9uN715LMsuGsqMVuGZvd6kIFu7VsJ92VxPIrQ nPOp0qrtZQIDAQABo4ICYDCCAlwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTCMS0B 75zGfPP8Ef/hT0B8aw5qwTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXRlcnJhbWF0ZS5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggECBgorBgEEAdZ5AgQCBIHzBIHw AO4AdQAHt1wb5X1o//Gwxh0jFce65ld8V5S3au68YToaadOiHAAAAXBSMfSXAAAE AwBGMEQCIANZnCG6sXv9nHWhdejq5cu7dF68rhOTEtFSfzcWlaNdAiA13srM4h7d h5Sdl7h0u7JKOaa64PI1HQ3mkgu9Fa17TQB1AG9Tdqwx8DEZ2JkApFEV/3cVHBHZ AsEAKQaNsgiaN9kTAAABcFIx9O8AAAQDAEYwRAIgTUqa2qWW9P8I4kweYrVJnZpU 0krq5XTyzCavJaLtyBkCIAVQRsuFm9cGyxBiKnmOYXwKsv1UYep+lcFoe+KniGLN MA0GCSqGSIb3DQEBCwUAA4IBAQAUHkGWDztm4GH2rWr4cx2bYTe0kz5PYIcjdU0E cP7zyCCEMlbNkCZMeTEktw21oX9taMkifRz9CoPUhmE1u8IbTAA1Z/r36fr1W3mg ow2TZPuzRjNq7jY3DVejAl7Kfe9Kh/LaJVDp381wy+5y9SUnN+z4Q9rqshIcCzUo wpnE22rdAlfOwURjYBfMqc0kzcWEfW+ygUbCNNbCL4xh/fEEfvqVbEb9jBXB9D81 mw7HVeCQmFBt5PuwM1Q80/6WV2CB1REhv9VqRPAYsRG2E+C9XBekbBof3yQKKX2z lReUr3AAwFp4EMfhQTYF6WEgLNXqL+cJkwEwlZWwREQcIWRB -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAu9u02/5eFyI4h1Y5XfNc NlcfVxSRnPZZn/ObKCWsZmhScfzVO+tspO5RK002HjAgceWX1vJ70/6GmV47Q24A JyA2+vFfFrzInAvW23fBuumYYC/CpXGDBLL6RKDfNK0CzebIPZyklG6AYYNbOLCD +TDuCXJZP4btyX85RJbScn5tfAN6ddwL55wSGj0GpNaGqBU4/BV+5khia1duvyqx 3k+1aPFc35ORzBucnd9WEcddsF5SMJUfID7gj3H6LHJQe/nXxzTm6Oxh0IQn7vQ6 7H9yhFRgrXsSc5HajbDiJoRBQw+YD2Z4DjWAbaoQ/CldhNMCGiG3ODh0rijKd+8h DkcgW3m2pJ1DQCmUtmEkKmGQBbH/jDCCr+NdNZUXfbRbve/09v56g33/tvfSDnsS i5yNdTpywgPf3fNF+nE01mrfT3C6+ncHGRii7yzbPOvoduuesvz/QgB4iUXS5I9H 0KxDGP5aWVnVy8MwTSdhCMrLr6vtFy5UPlp5xDzSJuy2pdyIsgKo6oMOVPjPPncm uz7BgOColoJwVIDQkCrW7ZGQNOcu3IDcpouhl/Q7ehXpXKGCBDNrpx8luniVx/18 m5OuCRSPxRrkIf4Uogqapqr9KJcrdVRJ2tP4DKO3vbje9eSzLLhrKjFbhmb3epCB bu1bCfdlcTyK0JzzqdKq7WUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 316856816108474585917884402880037872315388 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-17 07:09:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-17 07:09:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'terramate.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 766394707303080146384101337456445039119780770199116744118676722497810848466695180567032589456214606482596248133704919046548234897720343674081434364891486106623449880999580811028850586777949310782356942740436196106821992626114480502178180986474516511604864125965462056920218959961623054298447865378294525043267251616300370231092528354132264772783726565565890057436055491513397448997788634793764662860483084380718794348241037992877992264183367782269099956628855214310101592503948552788064138612792582947169127749121231489172739555821266648102998866100169976301699433515445696059429985061591546408433711278526419433773467025404859169957045257519187671256552399118935804664529940225822216181426434831954640645396600728854252030717346481418571417020380808190385210250465234110400971330891838891463339426086413773884109827346473710282626988995473915117032263996337739979027814065617180495275645810152954182401512973200064899980602877244603786884915507841175373628723564470491167913377121322622516710758974082735510444233721449005362491067289671786070946775993803857239164969098684334220579741572046562417324191337920710984149000793084741356858399590590011685631199767146521329790759899272388293678614072610219566022818309479183393330228581 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c2312d01ef9cc67cf3fc11ffe14f407c6b0e6ac1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'terramate.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c000001705231f4970000040300463044022003599c21bab17bfd9c75a175e8eae5cbbb745ebcae139312d1527f371695a35d022035decacce21edd87949d97b874bbb24a39a6bae0f2351d0de6920bbd15ad7b4d0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d913000001705231f4ef000004030046304402204d4a9adaa596f4ff08e24c1e62b5499d9a54d24aeae574f2cc26af25a2edc8190220055046cb859bd706cb10622a798e617c0ab2fd5461ea7e95c1687be2a78862cd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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