sarahrohrer.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:05:92:5f:c6:62:8b:87:da:cc:69:6c:1d:d5:49:58:96:45 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=sarahrohrer.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:05:92:5f:c6:62:8b:87:da:cc:69:6c:1d:d5:49:58:96:45Serial Number (int): 350345120140956481533907226776548855551557
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 36:62:f7:b5:70:ab:b9:64:8f:3e:8b:04:1e:ca:b7:5b:5a:7c:1f:e3
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): cc:a5:d4:d4:6c:fc:08:6c:83:fa:26:d3:76:4b:b9:b1:b0:d9:6b:4e
Fingerprint (sha256): f0:f0:32:75:a0:79:31:06:97:69:c8:da:cc:97:65:78:c2:04:d3:1e:87:c9:61:8d:c5:cd:e1:4a:76:5c:0e:2a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate sarahrohrer.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sarahrohrer.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sarahrohrer.com
www.sarahrohrer.com
www.sarahrohrer.com
Other certificates including the domain name sarahrohrer.com
(limited to 100 certificates)
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
*.hilfe-bei-konflikten.de
smtp3.woeschka.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
*.sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
*.hilfe-bei-konflikten.de
smtp3.woeschka.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
*.sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
sarahrohrer.com
Certificate
The complete raw certificate details for sarahrohrer.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGHTCCBQWgAwIBAgISBAWSX8Zii4fazGlsHdVJWJZFMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA1MDIxMTA2MjhaFw0x ODA3MzExMTA2MjhaMBoxGDAWBgNVBAMTD3NhcmFocm9ocmVyLmNvbTCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBANfuWC/7ttcCTjL7TR7ZdZIFSA5xDUcf k95AbpVBHrmoZrOaUjlDXVPMwv4CXUqjHYnMG6XISE4HUBEtxwsKkkE+3T27Qe+q VhsD5o6Q8GadgLDdzuhQHZ3wXZBEiRpJfQVCdJ1F/3iArIsbrCHl6r+VIrUptbhL KFKiy1PYOwi3+LHqzNZrlMVO/eZz5FrYT0s63EpRPUVZS2R7m2oyUjfywhQV0MtF Xpmx70FvaeAssuwndP8xOuVal4Sz2lBFGGIdtxOfN0MpDBzVx5+GJzX6hWaxLJDt fi5CJ/sW9IEZY+V1TTiN2yZWH/YpaXeYIWLWFJKyjfILmgy3nbqKADkCAwEAAaOC AyswggMnMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUNmL3tXCruWSPPosEHsq3W1p8 H+MwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEE YzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQu b3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQu b3JnLzAvBgNVHREEKDAmgg9zYXJhaHJvaHJlci5jb22CE3d3dy5zYXJhaHJvaHJl ci5jb20wgf4GA1UdIASB9jCB8zAIBgZngQwBAgEwgeYGCysGAQQBgt8TAQEBMIHW MCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYB BQUHAgIwgZ4MgZtUaGlzIENlcnRpZmljYXRlIG1heSBvbmx5IGJlIHJlbGllZCB1 cG9uIGJ5IFJlbHlpbmcgUGFydGllcyBhbmQgb25seSBpbiBhY2NvcmRhbmNlIHdp dGggdGhlIENlcnRpZmljYXRlIFBvbGljeSBmb3VuZCBhdCBodHRwczovL2xldHNl bmNyeXB0Lm9yZy9yZXBvc2l0b3J5LzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2 ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVFR/R4AAABYyC/JqoAAAQDAEcw RQIhAIDor7OcRtXGCb4n/E/rM666BMMpfs7Y2bLS5fTd/KbaAiA5l+mxDgd4Ueco 7QrPBCp45Pv2I3aAJaWnSPyuKL4r4QB1ANt0r+7LKeyx/so+cW0s5bmquzb3hHGD x12dTze2H79kAAABYyC/JyYAAAQDAEYwRAIgZO+GL2Mpoo1aDN6Lt2di5sr8Nf08 j96JPBkxIMQIZGQCIFo3mjMOcT//Wd5oZRamFYds1ikHCjWKPdad6W9tBzPaMA0G CSqGSIb3DQEBCwUAA4IBAQANruXtU5+iwLtX4eeo3yekezlwNjdZ9HM2ZcU+fpdv 6wj5Ei2KUaOEhRl8jE3fXU7Rs7RATvCvJrZjn7nVoK6JbE9/CohoqM76Bnw98Q6F rzjlYNSQO1nseWipo+kZrs5m4tFN9eN+oCjlmUcpxvR0mV24ym0iL4FYz+7jhXB1 I26f1+I4rq0xut0P4F4COE7AlDuHe0xS+DAw4wdeixoV+th1k4sjZGNqk5sNx2Cs 0IzyIDHUGloCEWZke3Mi6pkgIGy5TGWNwEPvS2OvxEJWjBCgMT4CTryi8F5m0IXM B3zE6YDsETNALi4AKluwxiWkE/zx+arz0mlamUMZAu+V -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1+5YL/u21wJOMvtNHtl1 kgVIDnENRx+T3kBulUEeuahms5pSOUNdU8zC/gJdSqMdicwbpchITgdQES3HCwqS QT7dPbtB76pWGwPmjpDwZp2AsN3O6FAdnfBdkESJGkl9BUJ0nUX/eICsixusIeXq v5UitSm1uEsoUqLLU9g7CLf4serM1muUxU795nPkWthPSzrcSlE9RVlLZHubajJS N/LCFBXQy0VembHvQW9p4Cyy7Cd0/zE65VqXhLPaUEUYYh23E583QykMHNXHn4Yn NfqFZrEskO1+LkIn+xb0gRlj5XVNOI3bJlYf9ilpd5ghYtYUkrKN8guaDLeduooA OQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 350345120140956481533907226776548855551557 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-02 11:06:28 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-31 11:06:28 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sarahrohrer.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27258767612338159118062704610049821148802005530197716908903785767060922635467135711004322197735218189251857884849371562935081491756431546986863662170254125788364158696294567256592974913116094818513740690142747385137747692583421707539760392277958902779213576665371687287574219075375050432182716425541799738062283905661847403565656071071705582779276994437946410127864572099991585175437905169775374397673728682673742628231019635094828925146781876990498410948119163820253823628174335802021422228491229178199166485817740196499333333202743179076948933111563337613545125176578266098777459108080486537083572343908929337163833 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3662f7b570abb9648f3e8b041ecab75b5a7c1fe3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sarahrohrer.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sarahrohrer.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016320bf26aa000004030047304502210080e8afb39c46d5c609be27fc4feb33aeba04c3297eced8d9b2d2e5f4ddfca6da02203997e9b10e077851e728ed0acf042a78e4fbf623768025a5a748fcae28be2be1007500db74afeecb29ecb1feca3e716d2ce5b9aabb36f7847183c75d9d4f37b61fbf640000016320bf27260000040300463044022064ef862f6329a28d5a0cde8bb76762e6cafc35fd3c8fde893c193120c408646402205a379a330e713fff59de686516a615876cd629070a358a3dd69de96f6d0733da . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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