www.cleantherm.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:e5:3e:25:88:32:19:e6:39:fe:62:65:2a:12:e5:87:c6:fb was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.cleantherm.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:e5:3e:25:88:32:19:e6:39:fe:62:65:2a:12:e5:87:c6:fb
Serial Number (int): 339344126833275208320118667441247160354555
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 8f:21:0e:03:8f:13:57:eb:70:93:d9:73:e7:c3:11:81:a3:3b:0e:32
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 2e:02:be:67:2f:95:8a:dc:e5:62:e2:c8:a3:80:ea:97:c4:1b:3d:ef
Fingerprint (sha256): f0:de:dd:eb:3b:7b:ac:a7:ad:d3:74:4b:09:7b:b9:43:70:3b:14:c1:94:01:a5:78:f2:9d:95:58:29:23:5d:a4

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.cleantherm.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.cleantherm.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.cleantherm.com

Other certificates including the domain name cleantherm.com

(limited to 100 certificates)
www.indianaaddictioncenter.org
www.bomstein.com
04682.com
exerpod.com
www.trucano.com
www.cleantherm.com
maryna.org
cleantherm.com
www.cleantherm.com
cleantherm.com
cleantherm.com
cleantherm.com
graodecafe.com
cleantherm.com
organicanti-ageingserum.com
islingtonhandyman.com
www.cleantherm.com

Certificate

The complete raw certificate details for www.cleantherm.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 339344126833275208320118667441247160354555
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-18 17:19:24 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-17 17:19:24 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.cleantherm.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 960888536427520162852372488185780461384221008150241515763325068276070264971295199677844648026178601212920329160549297507238637782902272111292972887916624301411460749188009093395322319313034052364674869135414240272115509885621430750833305323958997979719839906703918728963055264308332723506400702439271253472021332891650995989101908529380182429118421139572781632811638686684523467714323929347570193381275747119106750399128942515640474468794612587833737106919378631946591096504393448530332824578298125425652080249992934266183939755099999608145660094710548184186192047798457346667117040574325282097191169685782551869601723234012884618708993526666840415340824080520084207279705193323672615963065596865277004351338651864717602942044904562395868746105290141167740961831751885094179368101794503301818785195322547478393216547752105199013828885234697413444642578441791113427415448478308325888465135349032136561920502214842441565678754134777632381919938248832657074852372325448351208736798407792911143977119537945133473339285167147902489708113823229612558230602394047062765088460541911131317049203861142994138366607467214939120456337731932107780607854654252664040390929436504799858409377619129984574027708488654567700614533460324419974929048949
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							8f210e038f1357eb7093d973e7c31181a33b0e32
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cleantherm.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f1a3c6aef0000040300473045022100bf115a97d0bdf37a992038770f75e54d3dbc646b9b6fa9f76cdff4f616712ea302201308081deadb14f8b557687e7614b9849ae7f4aadf0176199deab0c0684c7d770075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016f1a3c6b2800000403004630440220710e654fa40ac0c826ca5c96a4b134e6bfe40243e50a3f177389cb490baee01602200b84f9eecf6d6391ce5772052725ccdd66881c4d01a1cb208692b8c702c5dc7f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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