www.ginnifer.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:9e:a6:57:71:4f:fc:03:13:0d:60:8b:8c:e9:c6:eb:1e:5b was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.ginnifer.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:9e:a6:57:71:4f:fc:03:13:0d:60:8b:8c:e9:c6:eb:1e:5bSerial Number (int): 315322577644165309722480406640606659157595
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 4e:4d:89:22:6d:20:12:01:a6:7e:3b:3c:4e:c0:9c:17:74:9b:bf:06
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 98:ff:37:2e:bf:2d:73:94:a6:35:e7:d4:95:15:d2:a3:34:f0:17:4b
Fingerprint (sha256): e4:e0:75:8c:eb:0d:6e:20:a8:5f:ba:05:49:37:28:2d:e9:7b:0b:5d:c7:2e:53:fc:1f:28:eb:ab:35:f4:19:b2
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.ginnifer.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.ginnifer.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.ginnifer.org
Other certificates including the domain name ginnifer.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.ginnifer.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWTCCBUGgAwIBAgISA56mV3FP/AMTDWCLjOnG6x5bMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMTMxNDU5NDFaFw0y MDA0MTIxNDU5NDFaMBsxGTAXBgNVBAMTEHd3dy5naW5uaWZlci5vcmcwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCo3flJjbnVTQGQJqoTtHe+drnJLcbJ dCuifC1a45PpYn69xttG3laD7zN8VD04PxpW12eyDHd0tUTNO/XNcRTzCLjqU8SA xoFOzswmrGLccW5RpZetttg/sk/j8pnCADpFy8pS4P6eillkBNADmiKffdRxrH75 Jyaiut/dor53QTg0RyUtybYInhj/STbIPHb2kHeCI6i9GeU9SCIuY0ZK4kHbA3oI /QVBJecTwYpIhxpVDh1MdBpFOn7dcG5pkYWnn/Ffd48EadbpqH/YJ/Ke+of72Dst YTDy1fpl7Vbx0X5GBCi9BEoqfi1pHDEoe3QzAfd5e9ZTUI7oB5ImvRoGDK1LN8m6 +di0NCe2yQv2yFwTmrz0xBeVMovbs4VVcXjxfhM+/ScCRkdPhR3IuP4oZQuUCPCh bW+cs/+gMc6CqwSCGfu+xPW9ZLaZTVxS+FkrnCnE5fsVYep1bpmTlpZCB4e8PWcW udaNrOpJdVdJqzkHpXXvIrs1OwWE2+cq+K92jaZicxqoBpr6+g5lCj+R6vQpX4k9 GhGmhhXYfuEKZaGMukXrwl+9Tb53a+xblHfY1uGhI8pg3X34arL0KiQ1ltCFB5vM zcULhoPgFhyrovSrobJEIfL338ars1vFayw3t8hFOK5Jq+N8JFSWBFMxdi5YDbX2 DzRDLK9WR23D9wIDAQABo4ICZjCCAmIwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRO TYkibSASAaZ+OzxOwJwXdJu/BjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHd3dy5naW5uaWZlci5v cmcwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQC BIH2BIHzAPEAdwDwlaRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAW+f odcgAAAEAwBIMEYCIQDSLFq+pcFq2RitEZmrkSzwz/3ORzp2/qlFXxvjZHIzvQIh AOHdmBLC4G1mFjGTwQEtN57w0Fpvza57HyriMafPRYQBAHYAB7dcG+V9aP/xsMYd IxXHuuZXfFeUt2ruvGE6GmnTohwAAAFvn6HXRwAABAMARzBFAiEAiP/rgPfGaiVc ZcWnvLkEvOaFOtwDxGgPlk/+MWdHbYQCIANSbffFudGtZ6n2N6w5K5jx5ri4B+8F 2XmldHDUkNc+MA0GCSqGSIb3DQEBCwUAA4IBAQBRwJUZn0DYKbazXxRJJZO8njLm a/YA1TMVeZdWDNaqafDNZOtjpVTaENsnq2t4Dn4zwvqtSHtabRjlnwNuV9g3ldSJ shNg/LZ5037pHHbnEHX+pgFm9VQ7Wxq4s4e5Ms5qpP/kQVeVJpxbEbeevmuUf2E0 IkpzCFw4KIYtHkCe7mYmwaH7PxUXs1QtVfD3PeQLsxXh4XOKctHh+BOpK2RcXbSo EME5qkqbhdMfjWFncqWl2bjeGhSPUFT6Sqi/iQw2DBKALwPBbQYfphi28aNDCH/h aOWOibzdBsQ4WCyYgn7V8jh54RrS6HS6k6Xl3LoCb1dnJLSTCYGO95vjujKx -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqN35SY251U0BkCaqE7R3 vna5yS3GyXQronwtWuOT6WJ+vcbbRt5Wg+8zfFQ9OD8aVtdnsgx3dLVEzTv1zXEU 8wi46lPEgMaBTs7MJqxi3HFuUaWXrbbYP7JP4/KZwgA6RcvKUuD+nopZZATQA5oi n33Ucax++Scmorrf3aK+d0E4NEclLcm2CJ4Y/0k2yDx29pB3giOovRnlPUgiLmNG SuJB2wN6CP0FQSXnE8GKSIcaVQ4dTHQaRTp+3XBuaZGFp5/xX3ePBGnW6ah/2Cfy nvqH+9g7LWEw8tX6Ze1W8dF+RgQovQRKKn4taRwxKHt0MwH3eXvWU1CO6AeSJr0a BgytSzfJuvnYtDQntskL9shcE5q89MQXlTKL27OFVXF48X4TPv0nAkZHT4UdyLj+ KGULlAjwoW1vnLP/oDHOgqsEghn7vsT1vWS2mU1cUvhZK5wpxOX7FWHqdW6Zk5aW QgeHvD1nFrnWjazqSXVXSas5B6V17yK7NTsFhNvnKvivdo2mYnMaqAaa+voOZQo/ ker0KV+JPRoRpoYV2H7hCmWhjLpF68JfvU2+d2vsW5R32NbhoSPKYN19+Gqy9Cok NZbQhQebzM3FC4aD4BYcq6L0q6GyRCHy99/Gq7NbxWssN7fIRTiuSavjfCRUlgRT MXYuWA219g80QyyvVkdtw/cCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 315322577644165309722480406640606659157595 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-13 14:59:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-12 14:59:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ginnifer.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 688917601900338884751644666844662652507199962613297547889555521058709657814844569919267356710512492736834243128068066502008701346372404280076275856005843204422756250189063784563064650239113998494688966855382061786374556313067658580212342424193335689052149176933559294297603009460855415386435100721771009710495629324321523219782333115768614619490844230333442670300119051864029946807627862433847732620594435585023459035597881581814059067055358419793856640805325428789698678199894297699623115285444956505915907733176731700771252482949723989938483644479186013618595730782503165186462254640483553075840969893542373634792789435433645397191372755054954109978079007753787425445120532288005251198999435265021017317136142994129723617990253119910735177379979052930484526655714485956497197309340044274121651905925671080720382348282728036068417450567091637133352299876687971434658585425641057221759446523352237516995907574636211772624345682630027113537774848811834521329336900186503104780500249080662671232071459796766655727032951045123330371868556960253678499796564343348093750689384488782761408556214942379160165837495684720149826056881287833392110623768031745812008551904883464523277452015979703387508916829026578092578468750503178463406310391 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4e4d89226d201201a67e3b3c4ec09c17749bbf06 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ginnifer.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016f9fa1d7200000040300483046022100d22c5abea5c16ad918ad1199ab912cf0cffdce473a76fea9455f1be3647233bd022100e1dd9812c2e06d66163193c1012d379ef0d05a6fcdae7b1f2ae231a7cf45840100760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016f9fa1d747000004030047304502210088ffeb80f7c66a255c65c5a7bcb904bce6853adc03c4680f964ffe3167476d84022003526df7c5b9d1ad67a9f637ac392b98f1e6b8b807ef05d979a57470d490d73e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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