www.jayvion.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:5a:17:65:ab:bb:32:8f:8e:48:ac:38:22:ef:66:e4:fe:e9 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.jayvion.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:5a:17:65:ab:bb:32:8f:8e:48:ac:38:22:ef:66:e4:fe:e9Serial Number (int): 291993370967174323147645643937335281516265
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d3:bc:bd:27:80:69:55:ef:34:7a:75:05:be:27:db:5d:64:fe:f4:0b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 5a:34:eb:92:38:f5:3c:9d:66:4a:33:6f:a7:67:ab:fb:a6:c6:1c:69
Fingerprint (sha256): e4:b4:d7:26:20:b9:38:49:f1:0d:b8:98:2c:ba:e0:f2:87:d7:a9:8a:70:7a:14:8d:99:7e:d8:b1:0e:ef:37:38
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.jayvion.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.jayvion.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.jayvion.org
Other certificates including the domain name jayvion.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.jayvion.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVjCCBT6gAwIBAgISA1oXZau7Mo+OSKw4Iu9m5P7pMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MTcxNTMwMzRaFw0x OTA5MTUxNTMwMzRaMBoxGDAWBgNVBAMTD3d3dy5qYXl2aW9uLm9yZzCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBALYLQWr9yBjFPZ73sgar5UJqMVkfGkts xSIa1H4ETNA4pNrK6jrTuMmDd6SwCsDidCbWFcF51NpzcvpmVqMiIJNrvBg1nOo8 z9Daq4IR1U+WWBgBCsUZTtAp5s8bNkkaOxLKLqng55ag7oFsCyVd+THPjwjgCjUi oGU6x9Bu9KfKos0W5L0lB2s5zldkxEkAy10rAuyKVU/CxGrFGG1mSt4m2n37BZnI u1e68x6EbaAGk5E0adaq0MOPjiZqPF92h1Iy/UrV6ZqNuG21d6Z6CmB+NrM/vDBx l6rYygxuCdOOs+PKVfCq1hhLSxdDBXmQasRdsEyPilMSO6VCwFkvIDi0wEiFTuVG r2rcBKXnEU61VQQsBCML9Eib3Mhjx0tLN2uSaRLetFt89HuZ8JitoisgnizDyLAA feA4w9Z5YQp3MzSRdCC5JeTxsYBi1WbkBmK/jyc8gxtGxUlQog5V/Sp/Df8jAODF +W4xh9gp2daO89QA0iOhxnZzCu7kW/eSmetn9akxKW4GWc01haSh0mR3LkiHR/XR V4P/P/V38oAwh3o8IgoWGH2HZjqbY9dimpK9W983/BpRhfWdQ4XIB8NnksAQFnH+ gYnU5NA2Ypu9f9H6zTBJ5N2x3gInJCKoicvKOGWxHAtIc+Gj2onEFcMu9IJQCRE+ P6yatA0CghKzAgMBAAGjggJkMIICYDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFNO8 vSeAaVXvNHp1Bb4n211k/vQLMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPd3d3LmpheXZpb24ub3Jn MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB 9QSB8gDwAHYA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4AAAFrZkan 9QAABAMARzBFAiEAgBty4uTryxs3x6Ux73aHLnXO0CIdkOK3uhiKYasN6JECIBS4 ol6hF+DfaKoIjRLXyEV60z03XxcONUEHNwo1s3d0AHYAKTxRllTIOWW6qlD8WAfU t2+/WHopctykwwz05UVH9HgAAAFrZkaoGQAABAMARzBFAiBTIUIobZ2zV50bv34j okKI3DmslGwEFwaFL4XVTahcVQIhAO2284TxldwOe1BJT8nZ8tiC22rjAR9aFw6g i3oOQdZZMA0GCSqGSIb3DQEBCwUAA4IBAQACaWUjwSi+gWxsN2UpySoTUcUUmmz1 G//IGM60r1734AkEGHpqh7hXy2EoyJ/POsZKwyvGQ5/EA9K8FJYOWFDlj6fMiZLU S3fMDiO6gbZW8NGMtlbVJ5XcSOLt7QsFWBQnROsU7jEMWY1l7Ry4zsWwF+KH7vOk JxE7RKAVwwYM/FlY7qu3NIwNd2RR27xY0OFDiah8vVoZvcFIamSeCQyZWqdTb76L oVVKq092yqBblgdXgbK/1e9fs4L+vJdBwgEqIUdKG7ssLIWvRr85++txVzU8Ga4p QnfRbNMYiKkW3yRJ23YGTkO9O5OSQtSGxEXcKUyQJqI7n/E+iuM4RCn+ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtgtBav3IGMU9nveyBqvl QmoxWR8aS2zFIhrUfgRM0Dik2srqOtO4yYN3pLAKwOJ0JtYVwXnU2nNy+mZWoyIg k2u8GDWc6jzP0NqrghHVT5ZYGAEKxRlO0Cnmzxs2SRo7EsouqeDnlqDugWwLJV35 Mc+PCOAKNSKgZTrH0G70p8qizRbkvSUHaznOV2TESQDLXSsC7IpVT8LEasUYbWZK 3ibaffsFmci7V7rzHoRtoAaTkTRp1qrQw4+OJmo8X3aHUjL9StXpmo24bbV3pnoK YH42sz+8MHGXqtjKDG4J046z48pV8KrWGEtLF0MFeZBqxF2wTI+KUxI7pULAWS8g OLTASIVO5UavatwEpecRTrVVBCwEIwv0SJvcyGPHS0s3a5JpEt60W3z0e5nwmK2i KyCeLMPIsAB94DjD1nlhCnczNJF0ILkl5PGxgGLVZuQGYr+PJzyDG0bFSVCiDlX9 Kn8N/yMA4MX5bjGH2CnZ1o7z1ADSI6HGdnMK7uRb95KZ62f1qTEpbgZZzTWFpKHS ZHcuSIdH9dFXg/8/9XfygDCHejwiChYYfYdmOptj12Kakr1b3zf8GlGF9Z1DhcgH w2eSwBAWcf6BidTk0DZim71/0frNMEnk3bHeAickIqiJy8o4ZbEcC0hz4aPaicQV wy70glAJET4/rJq0DQKCErMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 291993370967174323147645643937335281516265 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-17 15:30:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-15 15:30:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.jayvion.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 742674589880175850277316948117795522972469147572923046124496858168988353057040765075259101330334636654375926036655341924807678439866890581618730652917976672758464734523986166023524683127470529067191134421305254694678323696760327309400644248881425781897723005196778564143407100861452506711474167003633914776745532844631100789482811391788793860343057551080424205705302722560523028089484536770332436885344784211521063056003645337679902868605799716315511478553079755924873176947773362351307824879142950571424460476734955627490097353929337762070429144471874073245684123957849171598224647083001758544058288343337593902521486502080644353888337825426839388017898560528426114279421056097855194822272807825673555828669282112922876635644591446792825574705273742025742004830229231546907129499970796704510012190040231988439875305080342441333075793050954816567369249572256289653892795695279887743961828284130403314380847718691514193021270014355430358164299815793072781107216393384486892833209551549648717006836208451489256392017655325184435444160647989807217017645445077025963729995283283201255585308157483771855242322222624992617612486620925665270117401834209606153275790241566124949202005228089624456484574885778569417228630261396039397948920499 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d3bcbd27806955ef347a7505be27db5d64fef40b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jayvion.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016b6646a7f50000040300473045022100801b72e2e4ebcb1b37c7a531ef76872e75ced0221d90e2b7ba188a61ab0de891022014b8a25ea117e0df68aa088d12d7c8457ad33d375f170e354107370a35b37774007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016b6646a81900000403004730450220532142286d9db3579d1bbf7e23a24288dc39ac946c041706852f85d54da85c55022100edb6f384f195dc0e7b50494fc9d9f2d882db6ae3011f5a170ea08b7a0e41d659 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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