www.thandie.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:04:a5:2f:11:61:6c:d6:0c:8e:b1:61:1d:54:9c:7a:a8:7a was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.thandie.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:04:a5:2f:11:61:6c:d6:0c:8e:b1:61:1d:54:9c:7a:a8:7a
Serial Number (int): 262917554272741134226101623769710680778874
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 6c:11:2d:1a:26:a9:dc:75:4c:a5:6b:6b:6b:a4:cb:73:02:6d:24:95
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): b7:8d:ae:6d:5d:60:ae:ce:fa:bf:51:b4:bb:00:8f:ac:f2:67:2f:b9
Fingerprint (sha256): ea:62:22:5e:6d:ca:4f:b4:95:a8:4d:a4:35:2c:c6:40:2a:f6:df:ae:2f:31:cc:4a:a3:21:0c:08:8e:89:c6:07

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.thandie.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.thandie.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.thandie.org

Other certificates including the domain name thandie.org

(limited to 100 certificates)
www.thandie.org
thandie.org
thandie.org
thandie.org
thandie.org
thandie.org
www.thandie.org
www.thandie.org
thandie.org
www.thandie.org
thandie.org
thandie.org
thandie.org
www.thandie.org
www.thandie.org

Certificate

The complete raw certificate details for www.thandie.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 262917554272741134226101623769710680778874
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-28 10:27:33 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-27 10:27:33 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.thandie.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 664709303823969789250832869465050481400230618907687826472897042659419520962768878326107169477220699209196655951025072077272288431846135330838763041726287507479907265832548160440503106584234566274835356857636258183564899724026522144911465411671892843593699102381899967857251752961551259421779801795686690782344971604770576036250879484047270700150795360864852582240158475283194575891261653041272139043803531959755883018646603364833226756165792640173212402531909958818892509879457251410896826591109617771920238902847683364013401883643949559963690417940481684740534814204453968017164124313366516989715238942307281554858481359055606421115778665617402805220391564509336555064142691033918638594878662883601978006521380080677757605741405233447328410157628005117981734573979615367646319172726755598737477455781366145479765487999768663450450761156343366784247474896605671198336359626555237764604478724047431818087903253088760333150117179890693600486112065892804075429242634691141923994850307969558567708961311608369538483728932034629927605429424316860367287928395960088750572874869218376329279623247547816018835243844936296421923705715948600634149784526285814164776863422364872087344983152959325748608161395458495401373296699308608763650626939
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6c112d1a26a9dc754ca56b6b6ba4cb73026d2495
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thandie.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d77a03cd7000004030047304502210089d224b095b64022017b76c72064e9118175abf999e6535d339a29b08341e8bc02200f8ab891b562fb16c466eaa93e6e6f7e4a5a99e31a2caf762c9bf2e9e1721135007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016d77a03edc000004030046304402206c7663383ab0c809c13622dbe58d8a5443b63b81c483ad6debebc6032669342302207c2b7842dc2b0140189df3a1f70e9e35375060c664c5e60b49edda524742c179
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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