durabank.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:01:ba:a0:b2:b8:cb:70:4a:16:48:e3:f4:7f:b6:d0:f7:de was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=durabank.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:01:ba:a0:b2:b8:cb:70:4a:16:48:e3:f4:7f:b6:d0:f7:deSerial Number (int): 349037496893585137533913349489823914719198
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 09:9d:59:93:c5:86:0a:c3:a8:2e:31:11:14:d8:dd:ec:ba:0f:9f:d5
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 15:c0:cd:44:17:52:e3:ae:8e:d7:39:96:06:a0:b0:78:b2:fd:66:c5
Fingerprint (sha256): ee:74:8e:9c:1c:c4:d8:a8:41:8f:eb:f8:80:4c:ac:d6:df:e9:2c:be:eb:23:8e:9c:18:38:c5:4e:37:d7:83:eb
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate durabank.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for durabank.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
durabank.com
Other certificates including the domain name durabank.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for durabank.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTzCCBTegAwIBAgISBAG6oLK4y3BKFkjj9H+20PfeMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTIxMDIyMDJaFw0y MDAxMTAxMDIyMDJaMBcxFTATBgNVBAMTDGR1cmFiYW5rLmNvbTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAL6Bo6vPyOReXw6KXjtugtFajs1RcNpSxIYv OcTfGorWO1cnDOCIPgp/Pt/uaQITNUH6aQtqUZKdyfyaVGxOmbhVlBHiBzIPtfen 1BV1Psi+Ua3Sh5yayztYlW1juORugsRKS06tDoKxU8ni9oJkXKien8Axxf0DEHfM 86TEu8UvWsPeVobe1/dMKyXHj7iKTqIGIsHEkqeCxsVNEnwRiEggBeX96m8Q3R73 vAnWLRPnnCWDSBHloID6f1QcwkVIVTQe4O09rblP3mMiW5PdjRaARMmPi/HFpQQk ogeSkEX8nyzjXkm5BD3GNul2EbVp72Vj9jZES+AO5IX8KJNeXop7RXr87lVJq1LY rZeW8zyLyhEBUbyLMPyb7dNcN/cQ0pozqXfJB5ZawPYYMC9a3RULunFB1Er93t+U 05FTsgrL/HWss486gjmKaTbsRa/m+eEDOQuwXZi5Xr5D1NPJy9LIbpZLugcfRNcE cn2Hf2la2C8BUULyxGhlUq7nnSKynULe3CaL11lJWU7s4jri9fsCCHL1Xw93o+Zq o5h5AmqmulFZbufVcOFOLW+DFoZ2VzfAAMqm6bUJ018/b8YWZXw7T1i7jRUFS7CD JlCDF/Bh6VX77K1Rpd6dFvcIS03R2sBD2ju7ykDRPnei3i+drmVcjiCTvs43fctH ZZKZRNx/AgMBAAGjggJgMIICXDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFAmdWZPF hgrDqC4xERTY3ey6D5/VMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMZHVyYWJhbmsuY29tMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDv AHUAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFtv7Q6agAABAMA RjBEAiAErS4tjvONRQy3tcV1MM5kD6O7BPeRU88d2C+cLTxuNgIge8m0sqhP6BCT 1NvhK2sBWAaCJ8hYRPFC683Ipld35tUAdgBep3P531bA57U2SH3QSeAyepGaDISh EhKEGHWWgXFFWAAAAW2/tDxqAAAEAwBHMEUCIDfGPIPIWHhnwMFhFhI/oTS5vlD9 dPyDS/bp91itLxhIAiEAutZ5umIVQoFj9D432rIZ529eoI83WtbAhn1Q4XGvKaEw DQYJKoZIhvcNAQELBQADggEBADnJub4BDD6BJtInYVmF6cCJbykXvl4v+poGeIeW 7agUYG2KAE7jZYoCDsLSvEev0yI2EeAOIUkqKYwmh8YQzDA0ht3kX8vP/Mkn1H42 g8CRqxjA8rZDRAQrxOHBogYP8wNOJJugr2H7SMQvogUCQj0VrhX/MYuTJqX2A/dR Nsk8TaQeOqmoGyTU5WMOJGpS9TOWFPONRCI1SbFa/iTRVFtO5p9EtFOSMsjGiEiZ Y6D60yLst5kow1E8g9folCuoOaAKxqWXHn+b2yKxRyFGo1ACe2lbPpd5I1ZwhP1E iYXdEE53tUtEdsbgGihhPyfRdF0qFXJMbEF4SuyuQuwqjHk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvoGjq8/I5F5fDopeO26C 0VqOzVFw2lLEhi85xN8aitY7VycM4Ig+Cn8+3+5pAhM1QfppC2pRkp3J/JpUbE6Z uFWUEeIHMg+196fUFXU+yL5RrdKHnJrLO1iVbWO45G6CxEpLTq0OgrFTyeL2gmRc qJ6fwDHF/QMQd8zzpMS7xS9aw95Wht7X90wrJcePuIpOogYiwcSSp4LGxU0SfBGI SCAF5f3qbxDdHve8CdYtE+ecJYNIEeWggPp/VBzCRUhVNB7g7T2tuU/eYyJbk92N FoBEyY+L8cWlBCSiB5KQRfyfLONeSbkEPcY26XYRtWnvZWP2NkRL4A7khfwok15e intFevzuVUmrUtitl5bzPIvKEQFRvIsw/Jvt01w39xDSmjOpd8kHllrA9hgwL1rd FQu6cUHUSv3e35TTkVOyCsv8dayzjzqCOYppNuxFr+b54QM5C7BdmLlevkPU08nL 0shulku6Bx9E1wRyfYd/aVrYLwFRQvLEaGVSruedIrKdQt7cJovXWUlZTuziOuL1 +wIIcvVfD3ej5mqjmHkCaqa6UVlu59Vw4U4tb4MWhnZXN8AAyqbptQnTXz9vxhZl fDtPWLuNFQVLsIMmUIMX8GHpVfvsrVGl3p0W9whLTdHawEPaO7vKQNE+d6LeL52u ZVyOIJO+zjd9y0dlkplE3H8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 349037496893585137533913349489823914719198 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-12 10:22:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-10 10:22:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'durabank.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 777198319665993639547597471068196096940807853814314973130786369301475105663504397294540804103881595360053658938394226499061606605440095583008499116595735569049045144090264098721910804305306000237785809413476467654707245855791474613474680458849140478079334576215797591849716415168404716466032846747210210148243804276028305787984484971692632693713010931732269459602705130279689881675854503659790725309090484952584343131715976571096135614833943461008495603637142964638539480479698492733191900628049082370945413298876288515128442761307477528729915379056562177988715355158579828321666279204636028208820934537492524220653510111081489091268946934920012314215961080879404313776052063662453227045408228126995740634022648782326287005567535831891534531973834858490704515877856128970290382000915476543900053987162631154997317601810839353841647224938455484949963405914888851077425779358554649378596441334778632482730905401739512797669146529567026417520286602907922517304035756457598368802268798520114192325754888649782236146222506771854215833354382204709930184596365726363682357633498711373275929927118823004746960530547898766611271135739970889189499460653790723522115800324531127485325074236758100972282887614705751715030479546307054682862050431 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 099d5993c5860ac3a82e311114d8ddecba0f9fd5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'durabank.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016dbfb43a6a0000040300463044022004ad2e2d8ef38d450cb7b5c57530ce640fa3bb04f79153cf1dd82f9c2d3c6e3602207bc9b4b2a84fe81093d4dbe12b6b0158068227c85844f142ebcdc8a65777e6d50076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016dbfb43c6a0000040300473045022037c63c83c8587867c0c16116123fa134b9be50fd74fc834bf6e9f758ad2f1848022100bad679ba6215428163f43e37dab219e76f5ea08f375ad6c0867d50e171af29a1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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