lainate.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:db:93:5b:4b:00:b0:6a:67:ff:61:3e:dd:7a:87:98:31:23 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=lainate.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:db:93:5b:4b:00:b0:6a:67:ff:61:3e:dd:7a:87:98:31:23Serial Number (int): 336054566686596091013837185882972279550243
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 06:ea:31:34:78:2d:62:c3:2d:ce:88:6a:f0:44:87:ef:02:76:03:ed
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): dc:a1:f4:cf:e3:8e:f8:43:a3:c7:4b:70:d7:4d:e7:7c:f5:5e:3e:17
Fingerprint (sha256): f2:a8:51:99:57:c0:17:98:93:4d:42:a0:80:4c:54:04:4f:da:6a:7f:2e:a4:8e:ff:99:21:2b:b0:3f:76:59:93
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate lainate.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lainate.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lainate.org
Other certificates including the domain name lainate.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for lainate.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTjCCBTagAwIBAgISA9uTW0sAsGpn/2E+3XqHmDEjMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMTMwNzMxMDNaFw0y MDA1MTMwNzMxMDNaMBYxFDASBgNVBAMTC2xhaW5hdGUub3JnMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEA0xV1AaRbNtTAY5Do/CErO1bkJJ07dDqM+qgL lc4d/igY2k3SQcM7epCIQI95kGTVoRKFnLpRu2MVgq5chhRclzoyAjplma+WZk0c 8yKT4Qx0Xpj2hhiVl4xCuz/Tbf79FmxfxpMNkHK+5OxiwjVvj332H6u1mXWYh8px Sx8VIFhrmCzXn4Rsc53MItybscPexCIzsAh4oxB+SnVKrQ+582sBDqTY9V1wXwC8 jlnUbuRwgVDK0bG6rF2ibF4S22kZIZgH8Vrg7ekjPNPXG55rjsNcNyRuH8AQvnB1 CDyroRCmmY42IB423PhfzDtcilz7Qu8kuXq9dnN90pgODhkxGEi1G+fjDkTWe4UB YWUvNJSCOBgsih0yKSNQDwK8eYz2UKYjTYq6u4gGwQkAGer7Yy+xgwEr+q8WD7dt VPHQWoY1D7I4egKHZUVniFkzDZoWEv9/7ALNavvSj2AlMvLI/O+paAUfJABqDHQt Lx74xy6PJjz5zya1nwpTMrM7CVBW5AyC8wddrM1makHhvtU83qukIQ/hddww6VBq X+fLaik7Tw1rufeMh79A5aQQFmVWylwWh+FipbfTArgRUD4fxB10UEFQk94bzDAc yNFzFbMplkZM/eXHAdTFz23oK7IwzWrw8euWM0ObaCLAhNpUy5DaJbUnU1OsGPVS DMOxhtUCAwEAAaOCAmAwggJcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUBuoxNHgt YsMtzohq8ESH7wJ2A+0wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAWBgNVHREEDzANggtsYWluYXRlLm9yZzBMBgNVHSAE RTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRw Oi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2 AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABcD2sPeQAAAQDAEcw RQIhAIvJ9doIGzgm1DL/imrlPHqCsRyRqLGdcn08NTrK8FXuAiAUKV6jJvTXZxCO pJkzXnBtVQDjOoORA604+cAAPSLzHgB2AAe3XBvlfWj/8bDGHSMVx7rmV3xXlLdq 7rxhOhpp06IcAAABcD2sPesAAAQDAEcwRQIhANs+w8eVEF9mMFb5wQJFOR8/QSpZ ODRdyji+mbF+YarVAiA0z2VgBmuF/NYuSuo5+8bl3hjQoU1KCFVAveKv2eu9ujAN BgkqhkiG9w0BAQsFAAOCAQEAiY8igEfHV6lq5h+3QEorBA+zRzuC7nIvgLtPG93r r7UNGaeJsR1Ps7QUJ0gBTPzJlEUlxLmat7agdzx3LOPo2yavcfAmF2Ip5EoDaJBV CXV9+K68UpC6cz1FeTgd5vA8/OsHIHvlTBvXBw+jR2TEz8UCvx+njj+1G8ozFfST Z8dEg6dsIpYrOVpom9FrZTaPZZDJSpfx57QWm0xO2hrC5MKmUxZQbNIYZsgIPz14 fBXsHGk0Ky1XszSyMDKLKdmMRyCreukKM0KEEBgTp5+TQaKfIsQ+gXIHe9w8EuCJ zFD/cIezI8GXcoK9D8Bl0Ot/X/3+7yN28+Ds0Hu761zX1A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0xV1AaRbNtTAY5Do/CEr O1bkJJ07dDqM+qgLlc4d/igY2k3SQcM7epCIQI95kGTVoRKFnLpRu2MVgq5chhRc lzoyAjplma+WZk0c8yKT4Qx0Xpj2hhiVl4xCuz/Tbf79FmxfxpMNkHK+5OxiwjVv j332H6u1mXWYh8pxSx8VIFhrmCzXn4Rsc53MItybscPexCIzsAh4oxB+SnVKrQ+5 82sBDqTY9V1wXwC8jlnUbuRwgVDK0bG6rF2ibF4S22kZIZgH8Vrg7ekjPNPXG55r jsNcNyRuH8AQvnB1CDyroRCmmY42IB423PhfzDtcilz7Qu8kuXq9dnN90pgODhkx GEi1G+fjDkTWe4UBYWUvNJSCOBgsih0yKSNQDwK8eYz2UKYjTYq6u4gGwQkAGer7 Yy+xgwEr+q8WD7dtVPHQWoY1D7I4egKHZUVniFkzDZoWEv9/7ALNavvSj2AlMvLI /O+paAUfJABqDHQtLx74xy6PJjz5zya1nwpTMrM7CVBW5AyC8wddrM1makHhvtU8 3qukIQ/hddww6VBqX+fLaik7Tw1rufeMh79A5aQQFmVWylwWh+FipbfTArgRUD4f xB10UEFQk94bzDAcyNFzFbMplkZM/eXHAdTFz23oK7IwzWrw8euWM0ObaCLAhNpU y5DaJbUnU1OsGPVSDMOxhtUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 336054566686596091013837185882972279550243 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-13 07:31:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-13 07:31:03 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lainate.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 861146840354093023717284497091159852236011353035270042741132197368463219794978156813074726048372886612511674979494361005736676891946489679559608439454920026367608272496292883524331894141555015561063365399179672058565493682196448873088435333064443489929117922617178462954207299327994136837068961752303985861103468186482698517826496560827787640927027105905838629776266086585549257878610630009934921516330146617641059698024015773801369043901600386074020008967851075184483537479621657874660546550421869554502913915889769982258636398313116989964711753083204185836041745732030774435503420696744328924723044548989147350881602898314701015911245331668340763357136746963143345339864400179315810015518507070149882643366355002008090697394362337747125048987094585449609922481895253134478056144495005727723442872203093220786038815597087881489403775391997980075926051495154988098933714020094593466243485940654939322659667662167190384871176947948040259657181419090540444050439017998450712781205241707142674177477221873073905952557382918059183562917474402926024218372417451384897533935525913718825610396298921652199891649919599953132056753462416502668412288480932527499230723718439761274088368217331095487339774459435085507976458960433282684122400469 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 06ea3134782d62c32dce886af04487ef027603ed . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lainate.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d913000001703dac3de400000403004730450221008bc9f5da081b3826d432ff8a6ae53c7a82b11c91a8b19d727d3c353acaf055ee022014295ea326f4d767108ea499335e706d5500e33a839103ad38f9c0003d22f31e00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c000001703dac3deb0000040300473045022100db3ec3c795105f663056f9c10245391f3f412a5938345dca38be99b17e61aad5022034cf6560066b85fcd62e4aea39fbc6e5de18d0a14d4a085540bde2afd9ebbdba . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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